From 4873449e16f96859caefc2f76223d0457116b755 Mon Sep 17 00:00:00 2001
From: Nico <Nico>
Date: Wed, 11 Feb 2026 23:45:15 -0800
Subject: [PATCH] initial commit

---
 .gitea/workflows/deploy.yml                   |   69 +
 .github/copilot-instructions.md               |  123 +
 .gitignore                                    |  101 +
 DEBUGGING_INSTRUCTIONS.md                     |  137 +
 PROJECT_INSTRUCTIONS.md                       |   50 +
 README.md                                     |   22 +
 apps/web/__tests__/auth.test.ts               |  130 +
 apps/web/__tests__/bucket-usage.test.ts       |   65 +
 apps/web/__tests__/buckets.test.ts            |   85 +
 apps/web/__tests__/entries.test.ts            |    5 +
 apps/web/__tests__/group-ownership.test.ts    |  149 +
 apps/web/__tests__/group-settings.test.ts     |  118 +
 apps/web/__tests__/groups.test.ts             |  109 +
 apps/web/__tests__/invite-links.test.ts       |  128 +
 apps/web/__tests__/recurring-entries.test.ts  |   77 +
 apps/web/__tests__/run-tests.cjs              |   67 +
 apps/web/__tests__/server-only-loader.mjs     |   18 +
 apps/web/__tests__/server-only-stub.js        |    1 +
 apps/web/__tests__/server-only.cjs            |   17 +
 apps/web/__tests__/spendings.test.ts          |   98 +
 apps/web/__tests__/tags.test.ts               |   81 +
 apps/web/__tests__/test-helpers.ts            |   67 +
 apps/web/app/api/auth/login/route.ts          |   36 +
 apps/web/app/api/auth/logout/route.ts         |   20 +
 apps/web/app/api/auth/me/route.ts             |    9 +
 apps/web/app/api/auth/register/route.ts       |   38 +
 apps/web/app/api/buckets/[id]/route.ts        |   78 +
 apps/web/app/api/buckets/route.ts             |   67 +
 apps/web/app/api/entries/[id]/route.ts        |   99 +
 apps/web/app/api/entries/route.ts             |   88 +
 apps/web/app/api/groups/active/route.ts       |   35 +
 apps/web/app/api/groups/audit/route.ts        |   19 +
 apps/web/app/api/groups/delete/route.ts       |   18 +
 .../app/api/groups/invites/delete/route.ts    |   23 +
 .../app/api/groups/invites/revive/route.ts    |   27 +
 .../app/api/groups/invites/revoke/route.ts    |   23 +
 apps/web/app/api/groups/invites/route.ts      |   41 +
 apps/web/app/api/groups/join/route.ts         |   22 +
 .../app/api/groups/members/approve/route.ts   |   24 +
 .../app/api/groups/members/demote/route.ts    |   23 +
 apps/web/app/api/groups/members/deny/route.ts |   23 +
 apps/web/app/api/groups/members/kick/route.ts |   23 +
 .../web/app/api/groups/members/leave/route.ts |   19 +
 .../app/api/groups/members/promote/route.ts   |   23 +
 apps/web/app/api/groups/members/route.ts      |   20 +
 .../groups/members/transfer-owner/route.ts    |   23 +
 apps/web/app/api/groups/rename/route.ts       |   22 +
 apps/web/app/api/groups/route.ts              |   33 +
 apps/web/app/api/groups/settings/route.ts     |   38 +
 .../web/app/api/invite-links/[token]/route.ts |   41 +
 .../app/api/recurring-entries/[id]/route.ts   |   98 +
 apps/web/app/api/recurring-entries/route.ts   |   87 +
 apps/web/app/api/tags/[name]/route.ts         |   20 +
 apps/web/app/api/tags/route.ts                |   35 +
 apps/web/app/favicon.ico                      |  Bin 0 -> 901 bytes
 apps/web/app/globals.css                      |  179 +
 apps/web/app/groups/[id]/settings/page.tsx    |   14 +
 apps/web/app/groups/settings/page.tsx         |   16 +
 apps/web/app/invite/[token]/page.tsx          |  282 +
 apps/web/app/layout.tsx                       |   21 +
 apps/web/app/login/page.tsx                   |  141 +
 apps/web/app/page.tsx                         |   10 +
 apps/web/app/register/page.tsx                |   90 +
 apps/web/components/app-frame.tsx             |   26 +
 apps/web/components/app-providers.tsx         |   20 +
 apps/web/components/bucket-card.tsx           |  151 +
 apps/web/components/buckets-panel.tsx         |  230 +
 apps/web/components/confirm-slide-modal.tsx   |  105 +
 apps/web/components/dashboard-content.tsx     |   45 +
 apps/web/components/entries-panel.tsx         |  785 ++
 apps/web/components/entry-details-modal.tsx   |  387 +
 apps/web/components/group-dropdown.tsx        |  300 +
 .../web/components/group-settings-content.tsx | 1046 +++
 apps/web/components/navbar.tsx                |  186 +
 apps/web/components/new-bucket-modal.tsx      |  222 +
 apps/web/components/new-entry-modal.tsx       |  297 +
 apps/web/components/notifications-toaster.tsx |   55 +
 .../components/recurring-entries-panel.tsx    |   73 +
 apps/web/components/tag-input.tsx             |  260 +
 apps/web/e2e/auth.spec.ts                     |   21 +
 apps/web/e2e/groups.spec.ts                   |   28 +
 apps/web/e2e/smoke.spec.ts                    |    6 +
 apps/web/e2e/spendings.spec.ts                |   54 +
 apps/web/e2e/test-helpers.ts                  |   13 +
 apps/web/hooks/auth-context.tsx               |   21 +
 apps/web/hooks/entry-mutation-context.tsx     |   30 +
 apps/web/hooks/groups-context.tsx             |   21 +
 apps/web/hooks/notifications-context.tsx      |   83 +
 apps/web/hooks/use-auth.ts                    |   72 +
 apps/web/hooks/use-buckets.ts                 |  119 +
 apps/web/hooks/use-entries.ts                 |  124 +
 apps/web/hooks/use-group-audit.ts             |   33 +
 apps/web/hooks/use-group-invites.ts           |   82 +
 apps/web/hooks/use-group-members.ts           |  136 +
 apps/web/hooks/use-group-settings.ts          |   43 +
 apps/web/hooks/use-groups.ts                  |  100 +
 apps/web/hooks/use-invite-link.ts             |   64 +
 apps/web/hooks/use-recurring-entries.ts       |   99 +
 apps/web/hooks/use-tags.ts                    |   59 +
 apps/web/lib/auth.ts                          |    1 +
 apps/web/lib/client/auth.ts                   |   24 +
 apps/web/lib/client/buckets.ts                |   68 +
 apps/web/lib/client/entries.ts                |   76 +
 apps/web/lib/client/entry-mutation-events.ts  |   13 +
 apps/web/lib/client/fetch-json.ts             |   32 +
 apps/web/lib/client/group-audit.ts            |   20 +
 apps/web/lib/client/group-invites.ts          |   47 +
 apps/web/lib/client/group-members.ts          |   75 +
 apps/web/lib/client/group-settings.ts         |   17 +
 apps/web/lib/client/groups.ts                 |   44 +
 apps/web/lib/client/invite-links.ts           |   32 +
 apps/web/lib/client/recurring-entries.ts      |   73 +
 apps/web/lib/client/tags.ts                   |   18 +
 apps/web/lib/db.ts                            |    1 +
 apps/web/lib/groups.ts                        |    1 +
 apps/web/lib/server/auth-service.ts           |   63 +
 apps/web/lib/server/auth.ts                   |   45 +
 apps/web/lib/server/buckets.ts                |  220 +
 apps/web/lib/server/db.ts                     |   45 +
 apps/web/lib/server/entries.ts                |  208 +
 apps/web/lib/server/errors.ts                 |  107 +
 apps/web/lib/server/group-access.ts           |   37 +
 apps/web/lib/server/group-audit.ts            |   90 +
 apps/web/lib/server/group-invites.ts          |  353 +
 apps/web/lib/server/group-members.ts          |  371 +
 apps/web/lib/server/group-settings.ts         |   32 +
 apps/web/lib/server/groups.ts                 |  176 +
 apps/web/lib/server/recurring-entries.ts      |   23 +
 apps/web/lib/server/request.ts                |   13 +
 apps/web/lib/server/session.ts                |   35 +
 apps/web/lib/server/tags.ts                   |  152 +
 apps/web/lib/session.ts                       |    1 +
 apps/web/lib/shared/bucket-icons.ts           |  405 +
 apps/web/lib/shared/bucket-usage.ts           |   76 +
 apps/web/lib/shared/types.ts                  |   32 +
 apps/web/lib/spendings.ts                     |    1 +
 apps/web/next-env.d.ts                        |    6 +
 apps/web/next.config.mjs                      |    1 +
 apps/web/package.json                         |   39 +
 apps/web/playwright.config.ts                 |   17 +
 apps/web/postcss.config.js                    |    1 +
 apps/web/public/icons/icon-48.png             |  Bin 0 -> 2291 bytes
 apps/web/public/icons/navbar-settings.png     |  Bin 0 -> 30707 bytes
 apps/web/scripts/check-no-group-id-routes.cjs |   22 +
 apps/web/tailwind.config.ts                   |    7 +
 apps/web/tsconfig.json                        |   41 +
 apps/web/types/pg.d.ts                        |   17 +
 docker-compose.dev.yml                        |   20 +
 docker-compose.yml                            |   10 +
 docker/Dockerfile                             |   28 +
 docker/Dockerfile.dev                         |   12 +
 docs/01_inspect_then_lifecycle_restructure.md |   80 +
 docs/02_PLAN.md                               |  122 +
 ...IVOT_CHANGELOG_AND_IMPLEMENTATION_NOTES.md |  170 +
 docs/POSTGRES_RATELIMITTING_REFERENCE.md      |   65 +
 ...REDIS_RATELIMITTING_MIGRATION_REFERENCE.md |   95 +
 docs/SEED_DATA.md                             |   53 +
 ...INGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md |  138 +
 docs/app_dev_plan/01_auth.md                  |   83 +
 docs/app_dev_plan/02_login_ux_enhancements.md |   53 +
 docs/app_dev_plan/03_dashboard_dev_server.md  |   35 +
 docs/app_dev_plan/04_groups_switcher.md       |   53 +
 docs/app_dev_plan/05_invite_code_modal.md     |   27 +
 docs/app_dev_plan/06_groups_ui_alignment.md   |   14 +
 docs/app_dev_plan/07_invite_modal_root.md     |   13 +
 docs/app_dev_plan/08_spendings_crud.md        |   42 +
 docs/app_dev_plan/09_hooks_api_calls.md       |   24 +
 docs/bucket-usage-audit.md                    |   28 +
 docs/seed-ui.sql                              |  298 +
 package-lock.json                             | 7122 +++++++++++++++++
 package.json                                  |   18 +
 packages/db/migrations/001_init.sql           |   76 +
 packages/db/migrations/002_amount_dollars.sql |    6 +
 packages/db/migrations/002_tags.sql           |   26 +
 .../003_group_settings_owner_invites.sql      |   88 +
 packages/db/migrations/004_entries_pivot.sql  |   27 +
 packages/db/migrations/005_buckets.sql        |   23 +
 packages/db/migrations/006_bucket_usage.sql   |   11 +
 packages/db/package.json                      |   16 +
 packages/db/src/migrate.js                    |  102 +
 packages/db/src/selftest.js                   |   28 +
 packages/db/test-ui-seed/index.js             |  110 +
 packages/shared/package.json                  |    9 +
 packages/shared/src/index.ts                  |    4 +
 scripts/dev-rebuild.sh                        |    6 +
 185 files changed, 21374 insertions(+)
 create mode 100644 .gitea/workflows/deploy.yml
 create mode 100644 .github/copilot-instructions.md
 create mode 100644 .gitignore
 create mode 100644 DEBUGGING_INSTRUCTIONS.md
 create mode 100644 PROJECT_INSTRUCTIONS.md
 create mode 100644 README.md
 create mode 100644 apps/web/__tests__/auth.test.ts
 create mode 100644 apps/web/__tests__/bucket-usage.test.ts
 create mode 100644 apps/web/__tests__/buckets.test.ts
 create mode 100644 apps/web/__tests__/entries.test.ts
 create mode 100644 apps/web/__tests__/group-ownership.test.ts
 create mode 100644 apps/web/__tests__/group-settings.test.ts
 create mode 100644 apps/web/__tests__/groups.test.ts
 create mode 100644 apps/web/__tests__/invite-links.test.ts
 create mode 100644 apps/web/__tests__/recurring-entries.test.ts
 create mode 100644 apps/web/__tests__/run-tests.cjs
 create mode 100644 apps/web/__tests__/server-only-loader.mjs
 create mode 100644 apps/web/__tests__/server-only-stub.js
 create mode 100644 apps/web/__tests__/server-only.cjs
 create mode 100644 apps/web/__tests__/spendings.test.ts
 create mode 100644 apps/web/__tests__/tags.test.ts
 create mode 100644 apps/web/__tests__/test-helpers.ts
 create mode 100644 apps/web/app/api/auth/login/route.ts
 create mode 100644 apps/web/app/api/auth/logout/route.ts
 create mode 100644 apps/web/app/api/auth/me/route.ts
 create mode 100644 apps/web/app/api/auth/register/route.ts
 create mode 100644 apps/web/app/api/buckets/[id]/route.ts
 create mode 100644 apps/web/app/api/buckets/route.ts
 create mode 100644 apps/web/app/api/entries/[id]/route.ts
 create mode 100644 apps/web/app/api/entries/route.ts
 create mode 100644 apps/web/app/api/groups/active/route.ts
 create mode 100644 apps/web/app/api/groups/audit/route.ts
 create mode 100644 apps/web/app/api/groups/delete/route.ts
 create mode 100644 apps/web/app/api/groups/invites/delete/route.ts
 create mode 100644 apps/web/app/api/groups/invites/revive/route.ts
 create mode 100644 apps/web/app/api/groups/invites/revoke/route.ts
 create mode 100644 apps/web/app/api/groups/invites/route.ts
 create mode 100644 apps/web/app/api/groups/join/route.ts
 create mode 100644 apps/web/app/api/groups/members/approve/route.ts
 create mode 100644 apps/web/app/api/groups/members/demote/route.ts
 create mode 100644 apps/web/app/api/groups/members/deny/route.ts
 create mode 100644 apps/web/app/api/groups/members/kick/route.ts
 create mode 100644 apps/web/app/api/groups/members/leave/route.ts
 create mode 100644 apps/web/app/api/groups/members/promote/route.ts
 create mode 100644 apps/web/app/api/groups/members/route.ts
 create mode 100644 apps/web/app/api/groups/members/transfer-owner/route.ts
 create mode 100644 apps/web/app/api/groups/rename/route.ts
 create mode 100644 apps/web/app/api/groups/route.ts
 create mode 100644 apps/web/app/api/groups/settings/route.ts
 create mode 100644 apps/web/app/api/invite-links/[token]/route.ts
 create mode 100644 apps/web/app/api/recurring-entries/[id]/route.ts
 create mode 100644 apps/web/app/api/recurring-entries/route.ts
 create mode 100644 apps/web/app/api/tags/[name]/route.ts
 create mode 100644 apps/web/app/api/tags/route.ts
 create mode 100644 apps/web/app/favicon.ico
 create mode 100644 apps/web/app/globals.css
 create mode 100644 apps/web/app/groups/[id]/settings/page.tsx
 create mode 100644 apps/web/app/groups/settings/page.tsx
 create mode 100644 apps/web/app/invite/[token]/page.tsx
 create mode 100644 apps/web/app/layout.tsx
 create mode 100644 apps/web/app/login/page.tsx
 create mode 100644 apps/web/app/page.tsx
 create mode 100644 apps/web/app/register/page.tsx
 create mode 100644 apps/web/components/app-frame.tsx
 create mode 100644 apps/web/components/app-providers.tsx
 create mode 100644 apps/web/components/bucket-card.tsx
 create mode 100644 apps/web/components/buckets-panel.tsx
 create mode 100644 apps/web/components/confirm-slide-modal.tsx
 create mode 100644 apps/web/components/dashboard-content.tsx
 create mode 100644 apps/web/components/entries-panel.tsx
 create mode 100644 apps/web/components/entry-details-modal.tsx
 create mode 100644 apps/web/components/group-dropdown.tsx
 create mode 100644 apps/web/components/group-settings-content.tsx
 create mode 100644 apps/web/components/navbar.tsx
 create mode 100644 apps/web/components/new-bucket-modal.tsx
 create mode 100644 apps/web/components/new-entry-modal.tsx
 create mode 100644 apps/web/components/notifications-toaster.tsx
 create mode 100644 apps/web/components/recurring-entries-panel.tsx
 create mode 100644 apps/web/components/tag-input.tsx
 create mode 100644 apps/web/e2e/auth.spec.ts
 create mode 100644 apps/web/e2e/groups.spec.ts
 create mode 100644 apps/web/e2e/smoke.spec.ts
 create mode 100644 apps/web/e2e/spendings.spec.ts
 create mode 100644 apps/web/e2e/test-helpers.ts
 create mode 100644 apps/web/hooks/auth-context.tsx
 create mode 100644 apps/web/hooks/entry-mutation-context.tsx
 create mode 100644 apps/web/hooks/groups-context.tsx
 create mode 100644 apps/web/hooks/notifications-context.tsx
 create mode 100644 apps/web/hooks/use-auth.ts
 create mode 100644 apps/web/hooks/use-buckets.ts
 create mode 100644 apps/web/hooks/use-entries.ts
 create mode 100644 apps/web/hooks/use-group-audit.ts
 create mode 100644 apps/web/hooks/use-group-invites.ts
 create mode 100644 apps/web/hooks/use-group-members.ts
 create mode 100644 apps/web/hooks/use-group-settings.ts
 create mode 100644 apps/web/hooks/use-groups.ts
 create mode 100644 apps/web/hooks/use-invite-link.ts
 create mode 100644 apps/web/hooks/use-recurring-entries.ts
 create mode 100644 apps/web/hooks/use-tags.ts
 create mode 100644 apps/web/lib/auth.ts
 create mode 100644 apps/web/lib/client/auth.ts
 create mode 100644 apps/web/lib/client/buckets.ts
 create mode 100644 apps/web/lib/client/entries.ts
 create mode 100644 apps/web/lib/client/entry-mutation-events.ts
 create mode 100644 apps/web/lib/client/fetch-json.ts
 create mode 100644 apps/web/lib/client/group-audit.ts
 create mode 100644 apps/web/lib/client/group-invites.ts
 create mode 100644 apps/web/lib/client/group-members.ts
 create mode 100644 apps/web/lib/client/group-settings.ts
 create mode 100644 apps/web/lib/client/groups.ts
 create mode 100644 apps/web/lib/client/invite-links.ts
 create mode 100644 apps/web/lib/client/recurring-entries.ts
 create mode 100644 apps/web/lib/client/tags.ts
 create mode 100644 apps/web/lib/db.ts
 create mode 100644 apps/web/lib/groups.ts
 create mode 100644 apps/web/lib/server/auth-service.ts
 create mode 100644 apps/web/lib/server/auth.ts
 create mode 100644 apps/web/lib/server/buckets.ts
 create mode 100644 apps/web/lib/server/db.ts
 create mode 100644 apps/web/lib/server/entries.ts
 create mode 100644 apps/web/lib/server/errors.ts
 create mode 100644 apps/web/lib/server/group-access.ts
 create mode 100644 apps/web/lib/server/group-audit.ts
 create mode 100644 apps/web/lib/server/group-invites.ts
 create mode 100644 apps/web/lib/server/group-members.ts
 create mode 100644 apps/web/lib/server/group-settings.ts
 create mode 100644 apps/web/lib/server/groups.ts
 create mode 100644 apps/web/lib/server/recurring-entries.ts
 create mode 100644 apps/web/lib/server/request.ts
 create mode 100644 apps/web/lib/server/session.ts
 create mode 100644 apps/web/lib/server/tags.ts
 create mode 100644 apps/web/lib/session.ts
 create mode 100644 apps/web/lib/shared/bucket-icons.ts
 create mode 100644 apps/web/lib/shared/bucket-usage.ts
 create mode 100644 apps/web/lib/shared/types.ts
 create mode 100644 apps/web/lib/spendings.ts
 create mode 100644 apps/web/next-env.d.ts
 create mode 100644 apps/web/next.config.mjs
 create mode 100644 apps/web/package.json
 create mode 100644 apps/web/playwright.config.ts
 create mode 100644 apps/web/postcss.config.js
 create mode 100644 apps/web/public/icons/icon-48.png
 create mode 100644 apps/web/public/icons/navbar-settings.png
 create mode 100644 apps/web/scripts/check-no-group-id-routes.cjs
 create mode 100644 apps/web/tailwind.config.ts
 create mode 100644 apps/web/tsconfig.json
 create mode 100644 apps/web/types/pg.d.ts
 create mode 100644 docker-compose.dev.yml
 create mode 100644 docker-compose.yml
 create mode 100644 docker/Dockerfile
 create mode 100644 docker/Dockerfile.dev
 create mode 100644 docs/01_inspect_then_lifecycle_restructure.md
 create mode 100644 docs/02_PLAN.md
 create mode 100644 docs/ENTRIES_PIVOT_CHANGELOG_AND_IMPLEMENTATION_NOTES.md
 create mode 100644 docs/POSTGRES_RATELIMITTING_REFERENCE.md
 create mode 100644 docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md
 create mode 100644 docs/SEED_DATA.md
 create mode 100644 docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md
 create mode 100644 docs/app_dev_plan/01_auth.md
 create mode 100644 docs/app_dev_plan/02_login_ux_enhancements.md
 create mode 100644 docs/app_dev_plan/03_dashboard_dev_server.md
 create mode 100644 docs/app_dev_plan/04_groups_switcher.md
 create mode 100644 docs/app_dev_plan/05_invite_code_modal.md
 create mode 100644 docs/app_dev_plan/06_groups_ui_alignment.md
 create mode 100644 docs/app_dev_plan/07_invite_modal_root.md
 create mode 100644 docs/app_dev_plan/08_spendings_crud.md
 create mode 100644 docs/app_dev_plan/09_hooks_api_calls.md
 create mode 100644 docs/bucket-usage-audit.md
 create mode 100644 docs/seed-ui.sql
 create mode 100644 package-lock.json
 create mode 100644 package.json
 create mode 100644 packages/db/migrations/001_init.sql
 create mode 100644 packages/db/migrations/002_amount_dollars.sql
 create mode 100644 packages/db/migrations/002_tags.sql
 create mode 100644 packages/db/migrations/003_group_settings_owner_invites.sql
 create mode 100644 packages/db/migrations/004_entries_pivot.sql
 create mode 100644 packages/db/migrations/005_buckets.sql
 create mode 100644 packages/db/migrations/006_bucket_usage.sql
 create mode 100644 packages/db/package.json
 create mode 100644 packages/db/src/migrate.js
 create mode 100644 packages/db/src/selftest.js
 create mode 100644 packages/db/test-ui-seed/index.js
 create mode 100644 packages/shared/package.json
 create mode 100644 packages/shared/src/index.ts
 create mode 100644 scripts/dev-rebuild.sh

diff --git a/.gitea/workflows/deploy.yml b/.gitea/workflows/deploy.yml
new file mode 100644
index 0000000..e0a87d5
--- /dev/null
+++ b/.gitea/workflows/deploy.yml
@@ -0,0 +1,69 @@
+name: Build & Deploy Fiddy
+
+on:
+  push:
+    branches: [ "main" ]
+
+env:
+  REGISTRY: git.nicosaya.com/nalalangan/fiddy
+  IMAGE_TAG: main
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@v3
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: 20
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run tests
+        run: npm test --if-present
+
+      - name: Docker login
+        run: |
+          echo "${{ secrets.REGISTRY_PASS }}" | docker login $REGISTRY -u "${{ secrets.REGISTRY_USER }}" --password-stdin
+
+      - name: Build Web Image
+        run: |
+          docker build -t $REGISTRY/web:${{ github.sha }} -t $REGISTRY/web:${{ env.IMAGE_TAG }} -f docker/Dockerfile .
+
+      - name: Push Web Image
+        run: |
+          docker push $REGISTRY/web:${{ github.sha }}
+          docker push $REGISTRY/web:${{ env.IMAGE_TAG }}
+
+  deploy:
+    needs: build
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@v3
+
+      - name: Install SSH key
+        run: |
+          mkdir -p ~/.ssh
+          echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_ed25519
+          chmod 600 ~/.ssh/id_ed25519
+          ssh-keyscan -H "${{ secrets.DEPLOY_HOST }}" >> ~/.ssh/known_hosts
+
+      - name: Upload docker-compose.yml
+        run: |
+          ssh ${{ secrets.DEPLOY_USER }}@${{ secrets.DEPLOY_HOST }} "mkdir -p /opt/fiddy"
+          scp docker-compose.yml ${{ secrets.DEPLOY_USER }}@${{ secrets.DEPLOY_HOST }}:/opt/fiddy/docker-compose.yml
+
+      - name: Deploy via SSH
+        run: |
+          ssh ${{ secrets.DEPLOY_USER }}@${{ secrets.DEPLOY_HOST }} << 'EOF'
+          cd /opt/fiddy
+          export IMAGE_TAG=main
+          docker compose pull
+          docker compose up -d --remove-orphans
+          docker image prune -f
+          EOF
diff --git a/.github/copilot-instructions.md b/.github/copilot-instructions.md
new file mode 100644
index 0000000..0efb000
--- /dev/null
+++ b/.github/copilot-instructions.md
@@ -0,0 +1,123 @@
+# Copilot Instructions — Fiddy (External DB)
+
+## Source of truth
+- Always consult PROJECT_INSTRUCTIONS.md at the repo root.
+- If any guidance conflicts, PROJECT_INSTRUCTIONS.md takes precedence.
+- Keep this file focused on architecture/stack; keep checklists and project workflow rules in PROJECT_INSTRUCTIONS.md.
+- When asked to fix bugs, follow DEBUGGING_INSTRUCTIONS.md at the repo root.
+
+## Stack
+- Monorepo (npm workspaces)
+- Next.js (App Router) + TypeScript + Tailwind
+- External Postgres (on-prem server) via node-postgres (pg). No ORM.
+- Docker Compose dev/prod
+- Gitea + act-runner CI/CD
+
+## Environment
+- Dev and Prod must use the same schema/migrations (`packages/db/migrations`).
+- `DATABASE_URL` points to the external DB server (NOT a container).
+
+## Auth
+- Custom email/password auth.
+- Use HttpOnly session cookies backed by DB table `sessions`.
+- NEVER trust client-side RBAC checks.
+
+## Receipts
+- Store receipt images in Postgres `bytea` table `receipts`.
+- Entries list endpoints must not return image bytes.
+- Image bytes only fetched by separate endpoint when inspecting a single item.
+
+## UI
+- Dark mode, minimal, mobile-first.
+- Dodger Blue accent (#1E90FF).
+- Top navbar: left nav dropdown, middle group selector, right user menu.
+
+## Code Rules
+- Small files, minimal comments.
+- Prefer single-line `if` without braces when only one line follows.
+- Heavy logic lives in components/hooks/services, not page files.
+- Prefer API calls via exported hooks/services for reusability and cleanliness (avoid raw fetch in components when possible).
+- Add/update unit tests with changes (TDD).
+- Heavy focus on code readability and maintainability; prioritize clean code over clever code.
+  - ie. Separating different concerns into different files, and adding helper functions to avoid nested logic and improve readability, is preferred over clever one-liners or consolidating logic into fewer files.
+  - ie. Separate groups of related codes by adding 3 line breaks between them
+
+## Data Model
+- Users (system_role USER|SYS_ADMIN)
+- Groups + membership (group_role MEMBER|GROUP_ADMIN)
+- Entries (group-scoped) + optional receipt_id
+- User settings (jsonb)
+- Reports for system admins
+
+## Architecture Contract (Backend ↔ Client ↔ Hooks ↔ UI)
+
+### No-Assumptions Rule (Required)
+- Before making structural changes, first scan the repo and identify:
+  - the web app root (where `app/`, `components/`, `hooks/`, `lib/` live)
+  - existing API routes and helpers
+  - existing patterns already in use
+- Do not invent files, endpoints, or conventions. If something is missing, add it minimally and consistently.
+
+### Layering (Hard Boundaries)
+For every domain (auth, groups, entries, receipts, etc.), keep a consistent 4-layer flow:
+
+1) **API Route Handlers** (`app/api/.../route.ts`)
+- Thin: parse input, call a server service, return JSON.
+- No direct DB queries inside route files unless there is no existing server service.
+- Must enforce auth & membership checks on server.
+
+2) **Server Services (DB + authorization)** (`lib/server/*`)
+- Own all DB access and authorization helpers (sessions, requireGroupMember, etc.).
+- Server-only modules must include `import "server-only";`
+- Prefer small domain modules: `lib/server/auth.ts`, `lib/server/groups.ts`, `lib/server/entries.ts`, `lib/server/session.ts`.
+
+3) **Client API Wrappers** (`lib/client/*`)
+- Typed fetch helpers only (no React state).
+- Centralize `fetchJson()` / error normalization.
+- Always send credentials (cookies) and never trust client-side RBAC.
+
+4) **Hooks (UI-facing API layer)** (`hooks/use-*.ts`)
+- Hooks are the primary interface for components/pages to call APIs.
+- Components should not call `fetch()` directly unless there’s a strong reason.
+
+### Domain Blueprint (Consistency Rule)
+For any new feature/domain, prefer:
+- `app/api/<domain>/...`
+- `lib/server/<domain>.ts`
+- `lib/client/<domain>.ts`
+- `hooks/use-<domain>.ts`
+- `components/<domain>/*`
+- `__tests__/<domain>.test.ts`
+
+### API Conventions
+- Prefer consistent JSON response shape for errors:
+  - `{ error: { code: string, message: string } }`
+- Validate inputs at the route boundary (basic shape/type), and validate authorization in server services.
+- When adding endpoints, mirror existing REST style used in the project.
+
+### Non-Regression Contracts (Do Not Break)
+- Entries list endpoints must **never** include receipt image bytes; image bytes are fetched via a separate endpoint only.
+- Auth is DB-backed HttpOnly sessions; all auth checks are server-side.
+- Groups require server-side membership checks; active group persists per user.
+- Group invite codes:
+  - shown once immediately after group creation
+  - modal renders outside navbar/header so it overlays the viewport correctly
+  - avoid re-exposing invite code elsewhere without explicit “group settings” work
+
+### UI Structure
+- Page files stay thin; heavy logic stays in hooks/services/components.
+- Dark mode, minimal, mobile-first.
+- Dodger Blue accent (#1E90FF).
+- Navbar: left nav dropdown, middle group selector, right user menu.
+
+### Environment
+- Dev and Prod must use the same schema/migrations (`packages/db/migrations`).
+- `DATABASE_URL` points to external Postgres (NOT a container).
+- `DATABASE_URL` format must be a full connection string; URL-encode special chars in passwords.
+
+### Tests (Required)
+- Add/update tests for API behavior changes:
+  - auth
+  - groups
+  - entries (group scoping)
+- Tests must include negative cases: unauthorized, not-a-member, invalid inputs.
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..63632e1
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,101 @@
+node_modules
+.next
+dist
+.env
+db.env
+*.log
+.DS_Store
+.vscode/*
+!.vscode/settings.json
+
+# =========================
+# Dependencies
+# =========================
+node_modules/
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+.pnpm-store/
+
+# =========================
+# Next.js build output
+# =========================
+.next/
+out/
+
+# =========================
+# Production build output (common)
+# =========================
+dist/
+build/
+
+# =========================
+# Logs
+# =========================
+logs/
+*.log
+
+# =========================
+# Runtime / PID files
+# =========================
+pids/
+*.pid
+*.seed
+*.pid.lock
+
+# =========================
+# Env files (secrets)
+# =========================
+.env
+.env.*
+!.env.example
+!.env.local.example
+
+# =========================
+# Local config / caches
+# =========================
+.cache/
+.tmp/
+temp/
+tmp/
+
+# =========================
+# Testing
+# =========================
+coverage/
+.nyc_output/
+playwright-report/
+test-results/
+.cypress/
+*.lcov
+
+# =========================
+# TypeScript
+# =========================
+*.tsbuildinfo
+
+# =========================
+# Lint / format caches
+# =========================
+.eslintcache
+.stylelintcache
+
+# =========================
+# Vercel / Netlify / Deploy
+# =========================
+.vercel/
+.netlify/
+
+# =========================
+# OS / Editor
+# =========================
+.DS_Store
+Thumbs.db
+ehthumbs.db
+Desktop.ini
+
+# VS Code
+.vscode/*
+!.vscode/extensions.json
+!.vscode/settings.js
diff --git a/DEBUGGING_INSTRUCTIONS.md b/DEBUGGING_INSTRUCTIONS.md
new file mode 100644
index 0000000..d75ffb7
--- /dev/null
+++ b/DEBUGGING_INSTRUCTIONS.md
@@ -0,0 +1,137 @@
+# Debug Protocol (Repo)
+
+> You are debugging an issue in this repo. Do **not** implement features unless required to fix the bug.
+
+## 0) Non-negotiables
+
+- **Source of truth:** `PROJECT_INSTRUCTIONS.md` (repo root). If anything conflicts, follow it.
+- **No assumptions:** First scan the repo for existing patterns, locations, scripts, helpers, and conventions. Don’t invent missing files/endpoints unless truly necessary—and if needed, add minimally and consistently.
+- **External DB:** `DATABASE_URL` points to on-prem Postgres (**not** a container). Dev/Prod share schema via migrations in `packages/db/migrations`.
+- **Security:** Never log secrets, full invite codes, or receipt bytes. Invite codes in logs/audit: **last4 only**.
+- **No cron/worker jobs:** Any fix must work without background tasks.
+- **Server-side RBAC only:** Client checks are UX only.
+
+---
+
+## 1) Restate the bug precisely
+
+Start by writing a 4–6 line **Bug Definition**:
+
+- **Expected behavior**
+- **Actual behavior**
+- **Where it happens** (page / route / service)
+- **Impact** (blocker? regression? edge case?)
+
+If any of these are missing, ask for them explicitly.
+
+---
+
+## 2) Collect an evidence bundle before changing code
+
+Before editing anything, request/locate:
+
+### A) Runtime signals
+- Exact error text + stack trace (server + browser console)
+- Network capture: request URL, method, status, response body
+- Any `request_id` returned by the API for failing calls
+
+### B) Repo + environment
+- Current branch/commit
+- How app is started (`docker-compose` + which file)
+- Node version + package manager used
+- Relevant env vars (sanitized): `DATABASE_URL` **host/port/dbname only** (no password)
+
+### C) Involved code paths
+Identify actual files by searching the repo:
+- The page/component triggering the request
+- The hook used (`hooks/use-*.ts`)
+- The client wrapper (`lib/client/*`)
+- The API route (`app/api/**/route.ts`)
+- The server service (`lib/server/*.ts`)
+
+**Do not guess file names. Use repo search.**
+
+---
+
+## 3) Determine failure class (choose ONE primary)
+
+Pick the most likely bucket and focus there first:
+
+- DB connectivity / docker networking
+- Migrations/schema mismatch
+- Auth/session cookie flow (HttpOnly cookies, session table, logout)
+- RBAC / group membership / active group
+- Request validation / parsing (route boundary)
+- Client fetch wrapper / hook state
+- UI behavior / event handling / mobile UX
+- Playwright test failure (timing, selectors, baseURL, auth state)
+
+Write a **3–5 bullet** hypothesis list ordered by likelihood.
+
+---
+
+## 4) Reproduce locally with the smallest surface area
+
+Prefer reproducing via:
+1) A single API call (`curl` / minimal `fetch`) before full UI if possible
+2) Then UI repro
+3) Then Playwright repro (if it’s a test failure)
+
+If scripts are needed, inspect `package.json` for actual script names (**don’t assume**). Common ones may exist (`lint`, `test`, `db:migrate`) but confirm.
+
+---
+
+## 5) Add targeted observability (minimal + removable)
+
+If evidence is insufficient, add temporary, minimal logs in **server services** (not in UI):
+
+- Always include `request_id`
+- Log only safe metadata (`user_id`, `group_id`, route name, timing)
+- Never log secrets/full invite code/receipt bytes/passwords/tokens
+- If touching invite logic: log **last4 only**
+
+Prefer:
+- One log line at service entry (inputs summary)
+- One log line at decision points (auth fail / membership fail / db row missing)
+- One log line at service exit (success + timing)
+
+Remove or downgrade noisy logs before final PR unless clearly valuable.
+
+---
+
+## 6) Fix strategy rules
+
+- Make the smallest change that resolves the bug.
+- Respect layering:
+  - **Route:** parse + validate shape
+  - **Server service:** DB + authz + business rules
+  - **Client wrapper:** typed fetch + error normalization
+  - **Hook:** UI-facing API layer
+- Don’t introduce new dependencies unless absolutely necessary.
+- Keep touched files free of TS warnings and lint errors.
+
+---
+
+## 7) Verification checklist (must do)
+
+After the fix:
+- Re-run the minimal repro (API and/or UI)
+- Run relevant tests (unit + Playwright if applicable)
+- Add/adjust tests for the bug:
+  - At least **1 positive** + **2 negatives** (unauthorized, not-a-member, invalid input)
+- Confirm contracts:
+  - Spendings list never includes receipt bytes
+  - Sessions are HttpOnly + DB-backed
+  - Audit logs include `request_id` and never store full invite code
+
+---
+
+## 8) Next.js route params checklist (required)
+
+For `app/api/**/[param]/route.ts`:
+- Treat `context.params` as **async** and `await` it before reading properties.
+- If you see errors about sync dynamic APIs, update handlers to unwrap params:
+
+Example:
+```ts
+const { id } = await context.params;
diff --git a/PROJECT_INSTRUCTIONS.md b/PROJECT_INSTRUCTIONS.md
new file mode 100644
index 0000000..1ec9d2c
--- /dev/null
+++ b/PROJECT_INSTRUCTIONS.md
@@ -0,0 +1,50 @@
+# Project Instructions — Fiddy (External DB)
+
+## Core expectation
+This project connects to an external Postgres instance (on-prem server). Dev and Prod must share the same schema through migrations.
+
+## Decisions / constraints (Group Settings)
+- Add `GROUP_OWNER` role to group roles; migrate existing groups so the first admin becomes owner.
+- Join policy default is `NOT_ACCEPTING`. Policies: `NOT_ACCEPTING`, `AUTO_ACCEPT`, `APPROVAL_REQUIRED`.
+- Both owner and admins can approve join requests and manage invite links.
+- Invite links:
+	- TTL limited to 1–7 days.
+	- Settings are immutable after creation (policy, single-use, etc.).
+	- Single-use does not override approval-required.
+	- Expired links are retained and can be revived.
+	- Single-use links are deleted after successful use.
+	- Revive resets `used_at` and `revoked_at`, refreshes `expires_at`, and creates a new audit event.
+- No cron/worker jobs for now (auto ownership transfer and invite rotation are paused).
+- API must generate `request_id` and return it in responses; audit logs must include it.
+- Audit logs must never store full invite codes (store last4 only).
+
+## Do first (vertical slice)
+1) DB migrate command + schema
+2) Register/Login/Logout (custom sessions)
+3) Protected dashboard page
+4) Group create/join + group switcher (approval-based joins + optional join disable)
+5) Entries CRUD (no receipt bytes in list)
+6) Receipt upload/download endpoints
+7) Settings + Reports
+
+## Definition of done
+- Works via docker-compose.dev.yml with external DB
+- Migrations applied via `npm run db:migrate`
+- Tests + lint pass
+- RBAC enforced server-side
+- No large files
+- No TypeScript warnings or lint errors in touched files
+- No new cron/worker dependencies unless explicitly approved
+
+## Desktop + mobile UX checklist (required)
+- Touch: long-press affordance for item-level actions when no visible button.
+- Mouse: hover affordance on interactive rows/cards.
+- Tap targets remain >= 40px on mobile.
+- Modal overlays must close on outside click/tap.
+- Use bubble notifications for main actions (create/update/delete/join).
+- Add Playwright UI tests for new UI features and critical flows.
+- Group role icons must be consistent: 👑 owner, 🛡️ admin, 👤 member.
+
+## PR review checklist
+- Desktop + mobile UX checklist satisfied (hover + long-press where applicable).
+- No TypeScript warnings or lint errors introduced.
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..551c883
--- /dev/null
+++ b/README.md
@@ -0,0 +1,22 @@
+# Fiddy (External DB)
+
+Monorepo scaffold for a budgeting/collaboration app that connects to an external on-prem Postgres server.
+
+## Quick start (dev)
+1. Copy env template:
+   - `.env.example` -> `apps/web/.env`
+2. Edit `apps/web/.env`:
+   - Set `DATABASE_URL` to your DB server hostname/IP (NOT `db`).
+   - Set `ALLOWED_DB_NAMES` to a comma-separated allowlist (case-insensitive).
+3. Start web:
+   - `docker compose -f docker-compose.dev.yml up --build`
+4. Apply migrations:
+   - `npm run db:migrate` (ensure `DATABASE_URL` points to the DB you want)
+
+## Prod
+- Deploy folder: `/opt/fiddy`
+- Put `.env` in `/opt/fiddy/apps/web/.env` with the prod DB connection string and `ALLOWED_DB_NAMES`.
+- `docker compose up -d` will run only the web container; DB is external.
+
+## Copilot
+- See `copilot-instructions.md` and `PROJECT_INSTRUCTIONS.md`
diff --git a/apps/web/__tests__/auth.test.ts b/apps/web/__tests__/auth.test.ts
new file mode 100644
index 0000000..8cbafc9
--- /dev/null
+++ b/apps/web/__tests__/auth.test.ts
@@ -0,0 +1,130 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import { createSession, hashPassword, verifyPassword } from "../lib/server/auth";
+import { loginUser, registerUser } from "../lib/server/auth-service";
+import getPool from "../lib/server/db";
+import { cleanupTestData, cleanupTestDataFromPool } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("password hashing works", async () => {
+  const hash = await hashPassword("test-password");
+  assert.ok(await verifyPassword("test-password", hash));
+  assert.ok(!(await verifyPassword("wrong", hash)));
+});
+
+test("createSession inserts row", async t => {
+  if (!hasDb) {
+    t.skip("DATABASE_URL not set");
+    return;
+  }
+  if (envLoaded.error)
+    t.diagnostic(String(envLoaded.error));
+
+  const pool = getPool();
+  const client = await pool.connect();
+  const email = `test_${Date.now()}@example.com`;
+  try {
+    const { rows } = await client.query(
+      "insert into users(email, password_hash) values($1,$2) returning id",
+      [email, await hashPassword("test-password")]
+    );
+    const userId = rows[0].id as number;
+    const session = await createSession(userId);
+    const { rows: sessionRows } = await client.query(
+      "select id from sessions where user_id=$1 and expires_at > now()",
+      [userId]
+    );
+    assert.ok(session.token.length > 10);
+    assert.ok(sessionRows.length === 1);
+  } finally {
+    await cleanupTestData(client, { emails: [email] });
+    client.release();
+  }
+});
+
+test("createSession supports ttl override", async t => {
+  if (!hasDb) {
+    t.skip("DATABASE_URL not set");
+    return;
+  }
+  if (envLoaded.error)
+    t.diagnostic(String(envLoaded.error));
+
+  const pool = getPool();
+  const client = await pool.connect();
+  const email = `test_${Date.now()}_ttl@example.com`;
+  const ttlMs = 60 * 60 * 1000;
+  const nowMs = Date.now();
+  try {
+    const { rows } = await client.query(
+      "insert into users(email, password_hash) values($1,$2) returning id",
+      [email, await hashPassword("test-password")]
+    );
+    const userId = rows[0].id as number;
+    const session = await createSession(userId, { ttlMs });
+    const { rows: sessionRows } = await client.query(
+      "select expires_at from sessions where user_id=$1 order by created_at desc limit 1",
+      [userId]
+    );
+    const dbExpiresAt = new Date(sessionRows[0].expires_at).getTime();
+    const expectedMin = nowMs + ttlMs - 5000;
+    const expectedMax = nowMs + ttlMs + 5000;
+    assert.ok(session.expiresAt.getTime() >= expectedMin);
+    assert.ok(session.expiresAt.getTime() <= expectedMax);
+    assert.ok(dbExpiresAt >= expectedMin);
+    assert.ok(dbExpiresAt <= expectedMax);
+  } finally {
+    await cleanupTestData(client, { emails: [email] });
+    client.release();
+  }
+});
+
+test("loginUser respects remember flag", async t => {
+  if (!hasDb) {
+    t.skip("DATABASE_URL not set");
+    return;
+  }
+  if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+  const email = `remember_${Date.now()}@example.com`;
+  const password = "test-password";
+  const result = await registerUser({ email, password, displayName: "" });
+  try {
+    const rememberTrue = await loginUser({ email, password, remember: true });
+    const rememberFalse = await loginUser({ email, password, remember: false });
+    assert.ok(rememberTrue.session.ttlMs > rememberFalse.session.ttlMs);
+  } finally {
+    const pool = getPool();
+    await cleanupTestDataFromPool(pool, { userIds: [result.user.id] });
+  }
+});
+
+test("registerUser rejects duplicate email", async t => {
+  if (!hasDb) {
+    t.skip("DATABASE_URL not set");
+    return;
+  }
+  if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+  const pool = getPool();
+  const email = `dup_${Date.now()}@example.com`;
+  const password = "test-password";
+  const mixedCase = email.toUpperCase();
+  const result = await registerUser({ email, password, displayName: "" });
+  try {
+    await assert.rejects(
+      () => registerUser({ email: mixedCase, password, displayName: "" }),
+      { message: "EMAIL_EXISTS" }
+    );
+  } finally {
+    await cleanupTestDataFromPool(pool, { userIds: [result.user.id] });
+  }
+});
diff --git a/apps/web/__tests__/bucket-usage.test.ts b/apps/web/__tests__/bucket-usage.test.ts
new file mode 100644
index 0000000..a6db352
--- /dev/null
+++ b/apps/web/__tests__/bucket-usage.test.ts
@@ -0,0 +1,65 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import { calculateBucketUsage } from "../lib/shared/bucket-usage";
+
+const today = "2026-02-11";
+
+test("calculateBucketUsage matches tag subset", () => {
+    const bucket = { tags: ["groceries", "weekly"], necessity: "BOTH", windowDays: 30 };
+    const entries = [
+        { amountDollars: 20, occurredAt: "2026-02-10", necessity: "NECESSARY", tags: ["groceries", "weekly", "extra"], isRecurring: false, entryType: "SPENDING" as const },
+        { amountDollars: 15, occurredAt: "2026-02-10", necessity: "NECESSARY", tags: ["groceries"], isRecurring: false, entryType: "SPENDING" as const }
+    ];
+
+    const result = calculateBucketUsage(bucket, entries, today);
+    assert.equal(result.totalUsage, 20);
+    assert.equal(result.matchedCount, 1);
+});
+
+test("calculateBucketUsage excludes recurring entries", () => {
+    const bucket = { tags: ["rent"], necessity: "BOTH", windowDays: 30 };
+    const entries = [
+        { amountDollars: 500, occurredAt: "2026-02-10", necessity: "NECESSARY", tags: ["rent"], isRecurring: true, entryType: "SPENDING" as const }
+    ];
+
+    const result = calculateBucketUsage(bucket, entries, today);
+    assert.equal(result.totalUsage, 0);
+    assert.equal(result.matchedCount, 0);
+});
+
+test("calculateBucketUsage applies windowDays filtering", () => {
+    const bucket = { tags: [], necessity: "BOTH", windowDays: 3 };
+    const entries = [
+        { amountDollars: 10, occurredAt: "2026-02-11", necessity: "NECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const },
+        { amountDollars: 10, occurredAt: "2026-02-09", necessity: "NECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const },
+        { amountDollars: 10, occurredAt: "2026-02-08", necessity: "NECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const }
+    ];
+
+    const result = calculateBucketUsage(bucket, entries, today);
+    assert.equal(result.totalUsage, 20);
+    assert.equal(result.matchedCount, 2);
+});
+
+test("calculateBucketUsage accepts all when bucket necessity is BOTH", () => {
+    const bucket = { tags: [], necessity: "BOTH", windowDays: 30 };
+    const entries = [
+        { amountDollars: 12, occurredAt: "2026-02-10", necessity: "NECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const },
+        { amountDollars: 8, occurredAt: "2026-02-10", necessity: "UNNECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const }
+    ];
+
+    const result = calculateBucketUsage(bucket, entries, today);
+    assert.equal(result.totalUsage, 20);
+    assert.equal(result.matchedCount, 2);
+});
+
+test("calculateBucketUsage halves BOTH entries when bucket not BOTH", () => {
+    const bucket = { tags: [], necessity: "NECESSARY", windowDays: 30 };
+    const entries = [
+        { amountDollars: 10, occurredAt: "2026-02-10", necessity: "BOTH", tags: [], isRecurring: false, entryType: "SPENDING" as const },
+        { amountDollars: 10, occurredAt: "2026-02-10", necessity: "UNNECESSARY", tags: [], isRecurring: false, entryType: "SPENDING" as const }
+    ];
+
+    const result = calculateBucketUsage(bucket, entries, today);
+    assert.equal(result.totalUsage, 5);
+    assert.equal(result.matchedCount, 1);
+});
diff --git a/apps/web/__tests__/buckets.test.ts b/apps/web/__tests__/buckets.test.ts
new file mode 100644
index 0000000..843ee74
--- /dev/null
+++ b/apps/web/__tests__/buckets.test.ts
@@ -0,0 +1,85 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { createBucket, deleteBucket, listBuckets, updateBucket } from "../lib/server/buckets";
+import { ensureTagsForGroup } from "../lib/server/tags";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("buckets CRUD", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let userId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const userRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`bucket_${Date.now()}@example.com`, "hash"]
+        );
+        userId = userRes.rows[0].id as number;
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Buckets Test", uniqueInviteCode("B"), userId]
+        );
+        groupId = groupRes.rows[0].id as number;
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_ADMIN')",
+            [groupId, userId]
+        );
+
+        await ensureTagsForGroup({ userId, groupId, tags: ["groceries", "weekly"] });
+
+        const bucket = await createBucket({
+            groupId,
+            userId,
+            name: "Groceries",
+            description: "Weekly groceries",
+            iconKey: "food",
+            budgetLimitDollars: 200,
+            tags: ["groceries", "weekly"]
+        });
+
+        const list = await listBuckets(groupId);
+        assert.equal(list.length, 1);
+        assert.equal(list[0].id, bucket.id);
+        assert.deepEqual(list[0].tags.sort(), ["groceries", "weekly"]);
+
+        const updated = await updateBucket({
+            id: bucket.id,
+            groupId,
+            userId,
+            name: "Groceries+",
+            description: "Updated",
+            iconKey: "food",
+            budgetLimitDollars: 250,
+            tags: ["groceries"]
+        });
+        assert.ok(updated);
+        assert.equal(updated?.name, "Groceries+");
+        assert.deepEqual(updated?.tags.sort(), ["groceries"]);
+
+        await deleteBucket({ id: bucket.id, groupId });
+        const listAfter = await listBuckets(groupId);
+        assert.equal(listAfter.length, 0);
+    } finally {
+        await cleanupTestData(client, { userIds: [userId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/entries.test.ts b/apps/web/__tests__/entries.test.ts
new file mode 100644
index 0000000..cec3086
--- /dev/null
+++ b/apps/web/__tests__/entries.test.ts
@@ -0,0 +1,5 @@
+import { test } from "node:test";
+
+test("entries CRUD (covered by legacy test file)", async t => {
+    t.skip("Covered by spendings.test.ts after pivot");
+});
diff --git a/apps/web/__tests__/group-ownership.test.ts b/apps/web/__tests__/group-ownership.test.ts
new file mode 100644
index 0000000..cdd1c97
--- /dev/null
+++ b/apps/web/__tests__/group-ownership.test.ts
@@ -0,0 +1,149 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { joinGroup, requireActiveGroup } from "../lib/server/groups";
+import { setGroupSettings } from "../lib/server/group-settings";
+import { transferOwnership } from "../lib/server/group-members";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("join policy enforcement and join requests", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    const inviteCode = uniqueInviteCode("J");
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`owner_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`member_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Join Policy Group", inviteCode, ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+
+        await setGroupSettings({ userId: ownerId, groupId, allowMemberTagManage: false, joinPolicy: "NOT_ACCEPTING" });
+        await assert.rejects(
+            () => joinGroup(memberId!, inviteCode),
+            { message: "JOIN_NOT_ACCEPTING" }
+        );
+
+        await setGroupSettings({ userId: ownerId, groupId, allowMemberTagManage: false, joinPolicy: "APPROVAL_REQUIRED" });
+        await assert.rejects(
+            () => joinGroup(memberId!, inviteCode),
+            { message: "JOIN_PENDING" }
+        );
+        const pendingRes = await client.query(
+            "select status from group_join_requests where group_id=$1 and user_id=$2",
+            [groupId, memberId]
+        );
+        assert.equal(pendingRes.rows[0]?.status, "PENDING");
+
+        await client.query("delete from group_join_requests where group_id=$1 and user_id=$2", [groupId, memberId]);
+
+        await setGroupSettings({ userId: ownerId, groupId, allowMemberTagManage: false, joinPolicy: "AUTO_ACCEPT" });
+        const group = await joinGroup(memberId!, inviteCode);
+        assert.equal(Number(group.id), groupId);
+
+        const memberRows = await client.query(
+            "select role from group_members where group_id=$1 and user_id=$2",
+            [groupId, memberId]
+        );
+        assert.equal(memberRows.rows[0]?.role, "MEMBER");
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId, memberId], groupId });
+        client.release();
+    }
+});
+
+test("ownership transfer updates roles", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`owner2_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`member2_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Ownership Group", uniqueInviteCode("O"), ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'MEMBER')",
+            [groupId, memberId]
+        );
+
+        await transferOwnership({
+            actorUserId: ownerId,
+            groupId,
+            newOwnerUserId: memberId,
+            requestId: `req_${Date.now()}`
+        });
+
+        const roles = await client.query(
+            "select user_id, role from group_members where group_id=$1",
+            [groupId]
+        );
+        const roleMap = new Map(roles.rows.map(row => [Number(row.user_id), row.role]));
+        assert.equal(roleMap.get(ownerId), "GROUP_ADMIN");
+        assert.equal(roleMap.get(memberId), "GROUP_OWNER");
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId, memberId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/group-settings.test.ts b/apps/web/__tests__/group-settings.test.ts
new file mode 100644
index 0000000..16489dd
--- /dev/null
+++ b/apps/web/__tests__/group-settings.test.ts
@@ -0,0 +1,118 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { getGroupSettings, setGroupSettings } from "../lib/server/group-settings";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("group settings update and read", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`settings_owner_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Settings Group", uniqueInviteCode("S"), ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+
+        const initial = await getGroupSettings(groupId);
+        assert.equal(initial.allowMemberTagManage, false);
+        assert.equal(initial.joinPolicy, "NOT_ACCEPTING");
+
+        await setGroupSettings({ userId: ownerId, groupId, allowMemberTagManage: true, joinPolicy: "AUTO_ACCEPT" });
+        const updated = await getGroupSettings(groupId);
+        assert.equal(updated.allowMemberTagManage, true);
+        assert.equal(updated.joinPolicy, "AUTO_ACCEPT");
+
+        await setGroupSettings({ userId: ownerId, groupId, allowMemberTagManage: false, joinPolicy: "APPROVAL_REQUIRED" });
+        const updatedAgain = await getGroupSettings(groupId);
+        assert.equal(updatedAgain.allowMemberTagManage, false);
+        assert.equal(updatedAgain.joinPolicy, "APPROVAL_REQUIRED");
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId], groupId });
+        client.release();
+    }
+});
+
+test("group settings require admin", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`settings_owner_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`settings_member_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Settings Perms", uniqueInviteCode("P"), ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'MEMBER')",
+            [groupId, memberId]
+        );
+
+        await assert.rejects(
+            () => setGroupSettings({ userId: memberId!, groupId, allowMemberTagManage: true, joinPolicy: "AUTO_ACCEPT" }),
+            { message: "FORBIDDEN" }
+        );
+
+        const settings = await getGroupSettings(groupId);
+        assert.equal(settings.allowMemberTagManage, false);
+        assert.equal(settings.joinPolicy, "NOT_ACCEPTING");
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId, memberId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/groups.test.ts b/apps/web/__tests__/groups.test.ts
new file mode 100644
index 0000000..bfe819a
--- /dev/null
+++ b/apps/web/__tests__/groups.test.ts
@@ -0,0 +1,109 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { setActiveGroupForUser } from "../lib/server/groups";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("create group inserts membership", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let userId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const userRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`group_${Date.now()}@example.com`, "hash"]
+        );
+        userId = Number(userRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Test Group", uniqueInviteCode("G"), userId]
+        );
+        groupId = groupRes.rows[0].id as number;
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, userId]
+        );
+
+        const { rows } = await client.query(
+            "select role from group_members where group_id=$1 and user_id=$2",
+            [groupId, userId]
+        );
+        assert.equal(rows[0].role, "GROUP_OWNER");
+    } finally {
+        await cleanupTestData(client, { userIds: [userId], groupId });
+        client.release();
+    }
+});
+
+test("setActiveGroupForUser stores active group", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let userId: number | null = null;
+    let groupId: number | null = null;
+    let otherUserId: number | null = null;
+    try {
+        const userRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`active_${Date.now()}@example.com`, "hash"]
+        );
+        userId = userRes.rows[0].id as number;
+
+        const otherRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`active_other_${Date.now()}@example.com`, "hash"]
+        );
+        otherUserId = Number(otherRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Active Group", uniqueInviteCode("A"), userId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_ADMIN')",
+            [groupId, userId]
+        );
+
+        await setActiveGroupForUser(userId, groupId);
+        const { rows } = await client.query(
+            "select data->>'activeGroupId' as active_group_id from user_settings where user_id=$1",
+            [userId]
+        );
+        assert.equal(Number(rows[0]?.active_group_id || 0), groupId);
+
+        await assert.rejects(
+            () => setActiveGroupForUser(otherUserId!, groupId!),
+            { message: "FORBIDDEN" }
+        );
+    } finally {
+        await cleanupTestData(client, { userIds: [otherUserId, userId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/invite-links.test.ts b/apps/web/__tests__/invite-links.test.ts
new file mode 100644
index 0000000..7a8cda4
--- /dev/null
+++ b/apps/web/__tests__/invite-links.test.ts
@@ -0,0 +1,128 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { acceptInviteLink, createInviteLink } from "../lib/server/group-invites";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("invite link auto-accept adds member", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`invite_owner_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`invite_member_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Invite Group", uniqueInviteCode("I"), ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+
+        const link = await createInviteLink({
+            userId: ownerId,
+            groupId,
+            policy: "AUTO_ACCEPT",
+            singleUse: false,
+            expiresAt: new Date(Date.now() + 3 * 24 * 60 * 60 * 1000),
+            requestId: "test-request"
+        });
+
+        const result = await acceptInviteLink({ userId: memberId!, token: link.token, requestId: "test-accept" });
+        assert.equal(result.status, "JOINED");
+
+        const { rowCount } = await client.query(
+            "select 1 from group_members where group_id=$1 and user_id=$2",
+            [groupId, memberId]
+        );
+        assert.equal(rowCount, 1);
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId, memberId], groupId });
+        client.release();
+    }
+});
+
+test("invite link rejects expired link", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let ownerId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const ownerRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`invite_owner_${Date.now()}@example.com`, "hash"]
+        );
+        ownerId = Number(ownerRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`invite_member_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Invite Group", uniqueInviteCode("E"), ownerId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, ownerId]
+        );
+
+        const link = await createInviteLink({
+            userId: ownerId,
+            groupId,
+            policy: "AUTO_ACCEPT",
+            singleUse: false,
+            expiresAt: new Date(Date.now() - 60 * 1000),
+            requestId: "test-request"
+        });
+
+        await assert.rejects(
+            () => acceptInviteLink({ userId: memberId!, token: link.token, requestId: "test-accept" }),
+            { message: "INVITE_EXPIRED" }
+        );
+    } finally {
+        await cleanupTestData(client, { userIds: [ownerId, memberId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/recurring-entries.test.ts b/apps/web/__tests__/recurring-entries.test.ts
new file mode 100644
index 0000000..4e725fa
--- /dev/null
+++ b/apps/web/__tests__/recurring-entries.test.ts
@@ -0,0 +1,77 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { createRecurringEntry, deleteRecurringEntry, listRecurringEntries } from "../lib/server/recurring-entries";
+import { ensureTagsForGroup } from "../lib/server/tags";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("recurring entries list", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let userId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const userRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`recurring_${Date.now()}@example.com`, "hash"]
+        );
+        userId = userRes.rows[0].id as number;
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Recurring Test", uniqueInviteCode("R"), userId]
+        );
+        groupId = groupRes.rows[0].id as number;
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_ADMIN')",
+            [groupId, userId]
+        );
+
+        await ensureTagsForGroup({ userId, groupId, tags: ["rent"] });
+
+        await createRecurringEntry({
+            groupId,
+            userId,
+            entryType: "SPENDING",
+            amountDollars: 900,
+            occurredAt: "2026-02-01",
+            necessity: "NECESSARY",
+            purchaseType: "Rent",
+            notes: "Monthly rent",
+            tags: ["rent"],
+            isRecurring: true,
+            frequency: "MONTHLY",
+            intervalCount: 1,
+            endCondition: "NEVER",
+            nextRunAt: "2026-02-01"
+        });
+
+        const list = await listRecurringEntries(groupId);
+        assert.equal(list.length, 1);
+        assert.equal(list[0].isRecurring, true);
+    } finally {
+        if (groupId) {
+            const list = await listRecurringEntries(groupId);
+            for (const entry of list) await deleteRecurringEntry({ id: entry.id, groupId });
+        }
+        await cleanupTestData(client, { userIds: [userId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/run-tests.cjs b/apps/web/__tests__/run-tests.cjs
new file mode 100644
index 0000000..ba62e57
--- /dev/null
+++ b/apps/web/__tests__/run-tests.cjs
@@ -0,0 +1,67 @@
+// __tests__/run-tests.cjs
+const fs = require("node:fs");
+const path = require("node:path");
+const { spawnSync } = require("node:child_process");
+const dotenv = require("dotenv");
+
+function walk(dir) {
+  const out = [];
+  for (const entry of fs.readdirSync(dir, { withFileTypes: true })) {
+    const full = path.join(dir, entry.name);
+    if (entry.isDirectory()) out.push(...walk(full));
+    else if (entry.isFile() && entry.name.endsWith(".test.ts")) out.push(full);
+  }
+  return out;
+}
+
+const cwd = process.cwd();
+dotenv.config({ path: path.join(cwd, ".env") });
+const testsDir = path.join(cwd, "__tests__");
+const testFiles = fs.existsSync(testsDir) ? walk(testsDir) : [];
+
+const inferredAllowedDbNames = (() => {
+  if (process.env.ALLOWED_DB_NAMES) return process.env.ALLOWED_DB_NAMES;
+  if (!process.env.DATABASE_URL) return undefined;
+  try {
+    const url = new URL(process.env.DATABASE_URL);
+    const name = url.pathname.replace(/^\/+/, "");
+    return name ? decodeURIComponent(name) : undefined;
+  } catch {
+    return undefined;
+  }
+})();
+
+if (testFiles.length === 0) {
+  console.error("No .test.ts files found under __tests__/");
+  process.exit(1);
+}
+
+// Run Node's test runner, with tsx registered so TS can execute.
+// Node supports registering tsx via --import=tsx. :contentReference[oaicite:2]{index=2}
+const nodeArgs = [
+  "--require",
+  "./__tests__/server-only.cjs",
+  "--import",
+  "tsx",
+  "--test-concurrency=1",
+  "--test",
+  // Optional nicer output:
+  // "--test-reporter=spec",
+  ...testFiles,
+];
+
+const env = {
+  ...process.env,
+  NODE_ENV: "test",
+  NODE_PATH: path.join(cwd, "__tests__", "node_modules"),
+  ...(inferredAllowedDbNames ? { ALLOWED_DB_NAMES: inferredAllowedDbNames } : {}),
+};
+
+const r = spawnSync(process.execPath, nodeArgs, {
+  stdio: "inherit",
+  cwd,
+  env,
+  shell: false,
+});
+
+process.exit(r.status ?? 1);
diff --git a/apps/web/__tests__/server-only-loader.mjs b/apps/web/__tests__/server-only-loader.mjs
new file mode 100644
index 0000000..c84a4f4
--- /dev/null
+++ b/apps/web/__tests__/server-only-loader.mjs
@@ -0,0 +1,18 @@
+export async function resolve(specifier, context, defaultResolve) {
+  if (specifier === "server-only")
+    return {
+      url: "data:text/javascript,export default {}",
+      shortCircuit: true,
+    };
+  return defaultResolve(specifier, context, defaultResolve);
+}
+
+export async function load(url, context, defaultLoad) {
+  if (url.startsWith("data:text/javascript"))
+    return {
+      format: "module",
+      source: "export default {}",
+      shortCircuit: true,
+    };
+  return defaultLoad(url, context, defaultLoad);
+}
diff --git a/apps/web/__tests__/server-only-stub.js b/apps/web/__tests__/server-only-stub.js
new file mode 100644
index 0000000..f053ebf
--- /dev/null
+++ b/apps/web/__tests__/server-only-stub.js
@@ -0,0 +1 @@
+module.exports = {};
diff --git a/apps/web/__tests__/server-only.cjs b/apps/web/__tests__/server-only.cjs
new file mode 100644
index 0000000..1fee304
--- /dev/null
+++ b/apps/web/__tests__/server-only.cjs
@@ -0,0 +1,17 @@
+const Module = require("module");
+const path = require("path");
+const originalLoad = Module._load;
+const originalResolve = Module._resolveFilename;
+const stubPath = path.join(__dirname, "server-only-stub.js");
+
+Module._resolveFilename = function (request, parent, isMain, options) {
+  if (request === "server-only" || request.startsWith("server-only/"))
+    return stubPath;
+  return originalResolve.call(this, request, parent, isMain, options);
+};
+
+Module._load = function (request, parent, isMain) {
+  if (request === "server-only" || request.startsWith("server-only/"))
+    return {};
+  return originalLoad(request, parent, isMain);
+};
diff --git a/apps/web/__tests__/spendings.test.ts b/apps/web/__tests__/spendings.test.ts
new file mode 100644
index 0000000..890e684
--- /dev/null
+++ b/apps/web/__tests__/spendings.test.ts
@@ -0,0 +1,98 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { createEntry, deleteEntry, listEntries, updateEntry } from "../lib/server/entries";
+import { ensureTagsForGroup } from "../lib/server/tags";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("entries CRUD", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let userId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const userRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`entry_${Date.now()}@example.com`, "hash"]
+        );
+        userId = userRes.rows[0].id as number;
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Entries Test", uniqueInviteCode("E"), userId]
+        );
+        groupId = groupRes.rows[0].id as number;
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_ADMIN')",
+            [groupId, userId]
+        );
+
+        await ensureTagsForGroup({ userId, groupId, tags: ["groceries", "weekly"] });
+
+        const entry = await createEntry({
+            groupId,
+            userId,
+            entryType: "SPENDING",
+            amountDollars: 12.34,
+            occurredAt: "2026-02-02",
+            necessity: "NECESSARY",
+            purchaseType: "Groceries",
+            notes: "Test",
+            tags: ["groceries", "weekly"],
+            isRecurring: false,
+            intervalCount: 1
+        });
+
+        const list = await listEntries(groupId);
+        assert.equal(list.length, 1);
+        assert.equal(list[0].id, entry.id);
+        assert.deepEqual(list[0].tags.sort(), ["groceries", "weekly"]);
+        assert.equal(list[0].entryType, "SPENDING");
+
+        const updated = await updateEntry({
+            id: entry.id,
+            groupId,
+            userId,
+            entryType: "INCOME",
+            amountDollars: 15,
+            occurredAt: "2026-02-02",
+            necessity: "BOTH",
+            purchaseType: "Groceries",
+            notes: "Updated",
+            tags: ["groceries"],
+            isRecurring: true,
+            frequency: "MONTHLY",
+            intervalCount: 1,
+            endCondition: "NEVER",
+            nextRunAt: "2026-02-02"
+        });
+        assert.ok(updated);
+        assert.equal(updated?.amountDollars, 15);
+        assert.equal(updated?.entryType, "INCOME");
+        assert.deepEqual(updated?.tags.sort(), ["groceries"]);
+
+        await deleteEntry({ id: entry.id, groupId });
+        const listAfter = await listEntries(groupId);
+        assert.equal(listAfter.length, 0);
+    } finally {
+        await cleanupTestData(client, { userIds: [userId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/tags.test.ts b/apps/web/__tests__/tags.test.ts
new file mode 100644
index 0000000..2b1cf74
--- /dev/null
+++ b/apps/web/__tests__/tags.test.ts
@@ -0,0 +1,81 @@
+import { test } from "node:test";
+import assert from "node:assert/strict";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import getPool from "../lib/server/db";
+import { deleteTagForGroup, ensureTagsForGroup, listGroupTags } from "../lib/server/tags";
+import { getGroupSettings, setGroupSettings } from "../lib/server/group-settings";
+import { cleanupTestData, uniqueInviteCode } from "./test-helpers";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const envLoaded = dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+const hasDb = Boolean(process.env.DATABASE_URL);
+
+test("group tag permissions and management", async t => {
+    if (!hasDb) {
+        t.skip("DATABASE_URL not set");
+        return;
+    }
+
+    if (envLoaded.error) t.diagnostic(String(envLoaded.error));
+
+    const pool = getPool();
+    const client = await pool.connect();
+    let adminId: number | null = null;
+    let memberId: number | null = null;
+    let groupId: number | null = null;
+    try {
+        const adminRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`tags_admin_${Date.now()}@example.com`, "hash"]
+        );
+        adminId = Number(adminRes.rows[0].id);
+
+        const memberRes = await client.query(
+            "insert into users(email, password_hash) values($1,$2) returning id",
+            [`tags_member_${Date.now()}@example.com`, "hash"]
+        );
+        memberId = Number(memberRes.rows[0].id);
+
+        const groupRes = await client.query(
+            "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id",
+            ["Tags Group", uniqueInviteCode("T"), adminId]
+        );
+        groupId = Number(groupRes.rows[0].id);
+
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+            [groupId, adminId]
+        );
+        await client.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'MEMBER')",
+            [groupId, memberId]
+        );
+
+        const settings = await getGroupSettings(groupId);
+        assert.equal(settings.allowMemberTagManage, false);
+
+        await assert.rejects(
+            () => ensureTagsForGroup({ userId: memberId!, groupId: groupId!, tags: ["food"] }),
+            { message: "FORBIDDEN" }
+        );
+
+        await setGroupSettings({ userId: adminId, groupId, allowMemberTagManage: true });
+        const settingsAfter = await getGroupSettings(groupId);
+        assert.equal(settingsAfter.allowMemberTagManage, true);
+
+        await ensureTagsForGroup({ userId: memberId!, groupId: groupId!, tags: ["food", "dining"] });
+        const tags = await listGroupTags(groupId);
+        assert.deepEqual(tags, ["dining", "food"]);
+
+        await deleteTagForGroup({ userId: memberId!, groupId: groupId!, name: "food" });
+        const afterDelete = await listGroupTags(groupId);
+        assert.deepEqual(afterDelete, ["dining"]);
+    } finally {
+        await cleanupTestData(client, { userIds: [adminId, memberId], groupId });
+        client.release();
+    }
+});
diff --git a/apps/web/__tests__/test-helpers.ts b/apps/web/__tests__/test-helpers.ts
new file mode 100644
index 0000000..cf2cce8
--- /dev/null
+++ b/apps/web/__tests__/test-helpers.ts
@@ -0,0 +1,67 @@
+import type { Pool, PoolClient } from "pg";
+
+type CleanupArgs = {
+    groupId?: number | null;
+    userIds?: Array<number | null | undefined>;
+    emails?: Array<string | null | undefined>;
+};
+
+export function uniqueInviteCode(prefix = "T"): string {
+    const raw = `${prefix}${Date.now().toString(36)}${Math.random().toString(36).slice(2)}`;
+    const cleaned = raw.toUpperCase().replace(/[^A-Z0-9]/g, "");
+    if (cleaned.length >= 8) return cleaned.slice(0, 8);
+    return cleaned.padEnd(8, "X");
+}
+
+export async function cleanupTestData(client: PoolClient, args: CleanupArgs) {
+    const groupId = args.groupId ?? null;
+    const userIds = (args.userIds || []).filter((id): id is number => Boolean(id));
+    const emails = (args.emails || []).filter((email): email is string => Boolean(email));
+
+    const safeQuery = async (text: string, params: Array<unknown>) => {
+        try {
+            await client.query(text, params);
+        } catch (error) {
+            if (typeof error === "object" && error && "code" in error && error.code === "42P01") return;
+            throw error;
+        }
+    };
+
+    if (groupId) {
+        await safeQuery(
+            "delete from entry_tags where entry_id in (select id from entries where group_id=$1)",
+            [groupId]
+        );
+        await safeQuery("delete from bucket_tags where bucket_id in (select id from buckets where group_id=$1)", [groupId]);
+        await safeQuery("delete from buckets where group_id=$1", [groupId]);
+        await safeQuery("delete from entries where group_id=$1", [groupId]);
+        await safeQuery("delete from tags where group_id=$1", [groupId]);
+        await safeQuery("delete from group_audit_log where group_id=$1", [groupId]);
+        await safeQuery("delete from group_invite_links where group_id=$1", [groupId]);
+        await safeQuery("delete from group_join_requests where group_id=$1", [groupId]);
+        await safeQuery("delete from group_settings where group_id=$1", [groupId]);
+        await safeQuery("delete from group_members where group_id=$1", [groupId]);
+        await safeQuery("delete from groups where id=$1", [groupId]);
+    }
+
+    for (const userId of userIds) {
+        await safeQuery("delete from user_settings where user_id=$1", [userId]);
+        await safeQuery("delete from sessions where user_id=$1", [userId]);
+        await safeQuery("delete from users where id=$1", [userId]);
+    }
+
+    for (const email of emails) {
+        await safeQuery("delete from sessions where user_id in (select id from users where email=$1)", [email]);
+        await safeQuery("delete from users where email=$1", [email]);
+    }
+}
+
+export async function cleanupTestDataFromPool(pool: Pool, args: CleanupArgs) {
+    const client = await pool.connect();
+    try {
+        await cleanupTestData(client, args);
+    } finally {
+        client.release();
+    }
+}
+
diff --git a/apps/web/app/api/auth/login/route.ts b/apps/web/app/api/auth/login/route.ts
new file mode 100644
index 0000000..03b4895
--- /dev/null
+++ b/apps/web/app/api/auth/login/route.ts
@@ -0,0 +1,36 @@
+import { NextResponse } from "next/server";
+import { cookies } from "next/headers";
+import { getSessionCookieName } from "@/lib/server/auth";
+import { loginUser } from "@/lib/server/auth-service";
+import { toErrorResponse } from "@/lib/server/errors";
+
+export async function POST(req: Request) {
+  const body = await req.json().catch(() => null);
+  const email = String(body?.email || "").trim().toLowerCase();
+  const password = String(body?.password || "");
+  const remember = Boolean(body?.remember ?? true);
+
+  if (!email || !password)
+    return NextResponse.json({ error: { code: "MISSING_CREDENTIALS", message: "Missing credentials" } }, { status: 400 });
+
+  let user;
+  let session;
+  try {
+    const result = await loginUser({ email, password, remember });
+    user = result.user;
+    session = result.session;
+  } catch (e) {
+    const { status, body } = toErrorResponse(e, "POST /api/auth/login");
+    return NextResponse.json(body, { status });
+  }
+  const cookieStore = await cookies();
+  cookieStore.set(getSessionCookieName(), session.token, {
+    httpOnly: true,
+    sameSite: "lax",
+    secure: process.env.NODE_ENV === "production",
+    maxAge: Math.floor(session.ttlMs / 1000),
+    path: "/"
+  });
+
+  return NextResponse.json({ user });
+}
diff --git a/apps/web/app/api/auth/logout/route.ts b/apps/web/app/api/auth/logout/route.ts
new file mode 100644
index 0000000..a99475e
--- /dev/null
+++ b/apps/web/app/api/auth/logout/route.ts
@@ -0,0 +1,20 @@
+import { NextResponse } from "next/server";
+import { cookies } from "next/headers";
+import { getSessionCookieName } from "@/lib/server/auth";
+import { logoutUser } from "@/lib/server/auth-service";
+
+export async function POST() {
+  const cookieStore = await cookies();
+  const token = cookieStore.get(getSessionCookieName())?.value;
+  if (token)
+    await logoutUser(token);
+  cookieStore.set(getSessionCookieName(), "", {
+    httpOnly: true,
+    sameSite: "lax",
+    secure: process.env.NODE_ENV === "production",
+    maxAge: 0,
+    path: "/"
+  });
+
+  return NextResponse.json({ ok: true });
+}
diff --git a/apps/web/app/api/auth/me/route.ts b/apps/web/app/api/auth/me/route.ts
new file mode 100644
index 0000000..84a6f2e
--- /dev/null
+++ b/apps/web/app/api/auth/me/route.ts
@@ -0,0 +1,9 @@
+import { NextResponse } from "next/server";
+import { getSessionUser } from "@/lib/server/session";
+
+export async function GET() {
+  const user = await getSessionUser();
+  if (!user)
+    return NextResponse.json({ error: { code: "UNAUTHORIZED", message: "Unauthorized" } }, { status: 401 });
+  return NextResponse.json({ user });
+}
diff --git a/apps/web/app/api/auth/register/route.ts b/apps/web/app/api/auth/register/route.ts
new file mode 100644
index 0000000..1fd8089
--- /dev/null
+++ b/apps/web/app/api/auth/register/route.ts
@@ -0,0 +1,38 @@
+import { NextResponse } from "next/server";
+import { cookies } from "next/headers";
+import { getSessionCookieName, getSessionTtlMs } from "@/lib/server/auth";
+import { registerUser } from "@/lib/server/auth-service";
+import { toErrorResponse } from "@/lib/server/errors";
+
+export async function POST(req: Request) {
+  const body = await req.json().catch(() => null);
+  const email = String(body?.email || "").trim().toLowerCase();
+  const password = String(body?.password || "");
+  const displayName = String(body?.displayName || "").trim();
+
+  if (!email || !email.includes("@"))
+    return NextResponse.json({ error: { code: "INVALID_EMAIL", message: "Invalid email" } }, { status: 400 });
+  if (password.length < 8)
+    return NextResponse.json({ error: { code: "PASSWORD_TOO_SHORT", message: "Password too short" } }, { status: 400 });
+
+  let user;
+  let session;
+  try {
+    const result = await registerUser({ email, password, displayName });
+    user = result.user;
+    session = result.session;
+  } catch (e) {
+    const { status, body } = toErrorResponse(e, "POST /api/auth/register");
+    return NextResponse.json(body, { status });
+  }
+  const cookieStore = await cookies();
+  cookieStore.set(getSessionCookieName(), session.token, {
+    httpOnly: true,
+    sameSite: "lax",
+    secure: process.env.NODE_ENV === "production",
+    maxAge: Math.floor(getSessionTtlMs() / 1000),
+    path: "/"
+  });
+
+  return NextResponse.json({ user });
+}
diff --git a/apps/web/app/api/buckets/[id]/route.ts b/apps/web/app/api/buckets/[id]/route.ts
new file mode 100644
index 0000000..bd9cb82
--- /dev/null
+++ b/apps/web/app/api/buckets/[id]/route.ts
@@ -0,0 +1,78 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { deleteBucket, requireActiveGroup, updateBucket } from "@/lib/server/buckets";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function PATCH(req: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        const body = await req.json().catch(() => null);
+        const name = String(body?.name || "").trim();
+        const description = String(body?.description || "").trim();
+        const iconKey = body?.iconKey ? String(body.iconKey) : null;
+        const budgetLimitDollars = body?.budgetLimitDollars != null ? Number(body.budgetLimitDollars) : null;
+        const position = body?.position != null ? Number(body.position) : 0;
+        const tags = parseTags(body?.tags);
+        const necessity = String(body?.necessity || "BOTH").toUpperCase();
+        const windowDays = body?.windowDays != null ? Number(body.windowDays) : 30;
+
+        if (!name)
+            return NextResponse.json({ requestId, error: { code: "MISSING_NAME", message: "name is required" } }, { status: 400 });
+        if (budgetLimitDollars != null && (!Number.isFinite(budgetLimitDollars) || budgetLimitDollars < 0))
+            return NextResponse.json({ requestId, error: { code: "INVALID_BUDGET", message: "Invalid budgetLimitDollars" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!Number.isFinite(windowDays) || windowDays < 1 || windowDays > 365)
+            return NextResponse.json({ requestId, error: { code: "INVALID_WINDOW_DAYS", message: "Invalid windowDays" } }, { status: 400 });
+
+        const bucket = await updateBucket({
+            id,
+            groupId,
+            userId: user.id,
+            name,
+            description: description || undefined,
+            iconKey,
+            budgetLimitDollars,
+            position,
+            tags,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            windowDays
+        });
+        if (!bucket) return NextResponse.json({ requestId, error: { code: "NOT_FOUND", message: "Not found" } }, { status: 404 });
+
+        return NextResponse.json({ requestId, bucket });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "PATCH /api/buckets/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function DELETE(_: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        await deleteBucket({ id, groupId });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "DELETE /api/buckets/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/buckets/route.ts b/apps/web/app/api/buckets/route.ts
new file mode 100644
index 0000000..ba25c8c
--- /dev/null
+++ b/apps/web/app/api/buckets/route.ts
@@ -0,0 +1,67 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { createBucket, listBuckets, requireActiveGroup } from "@/lib/server/buckets";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const buckets = await listBuckets(groupId);
+        return NextResponse.json({ requestId, buckets });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/buckets", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const name = String(body?.name || "").trim();
+        const description = String(body?.description || "").trim();
+        const iconKey = body?.iconKey ? String(body.iconKey) : null;
+        const budgetLimitDollars = body?.budgetLimitDollars != null ? Number(body.budgetLimitDollars) : null;
+        const position = body?.position != null ? Number(body.position) : 0;
+        const tags = parseTags(body?.tags);
+        const necessity = String(body?.necessity || "BOTH").toUpperCase();
+        const windowDays = body?.windowDays != null ? Number(body.windowDays) : 30;
+
+        if (!name) return NextResponse.json({ requestId, error: { code: "MISSING_NAME", message: "name is required" } }, { status: 400 });
+        if (budgetLimitDollars != null && (!Number.isFinite(budgetLimitDollars) || budgetLimitDollars < 0))
+            return NextResponse.json({ requestId, error: { code: "INVALID_BUDGET", message: "Invalid budgetLimitDollars" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!Number.isFinite(windowDays) || windowDays < 1 || windowDays > 365)
+            return NextResponse.json({ requestId, error: { code: "INVALID_WINDOW_DAYS", message: "Invalid windowDays" } }, { status: 400 });
+
+        const bucket = await createBucket({
+            groupId,
+            userId: user.id,
+            name,
+            description: description || undefined,
+            iconKey,
+            budgetLimitDollars,
+            position,
+            tags,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            windowDays
+        });
+
+        return NextResponse.json({ requestId, bucket });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/buckets", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/entries/[id]/route.ts b/apps/web/app/api/entries/[id]/route.ts
new file mode 100644
index 0000000..99f623f
--- /dev/null
+++ b/apps/web/app/api/entries/[id]/route.ts
@@ -0,0 +1,99 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup, updateEntry, deleteEntry } from "@/lib/server/entries";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function PATCH(req: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        const body = await req.json().catch(() => null);
+        const amountDollars = Number(body?.amountDollars || 0);
+        const occurredAt = String(body?.occurredAt || "");
+        const necessity = String(body?.necessity || "");
+        const tags = parseTags(body?.tags);
+        const purchaseType = String(body?.purchaseType || tags[0] || "General").trim();
+        const notes = String(body?.notes || "").trim();
+        const entryType = String(body?.entryType || "SPENDING").toUpperCase();
+        const isRecurring = Boolean(body?.isRecurring);
+        const frequency = body?.frequency ? String(body.frequency).toUpperCase() : null;
+        const intervalCount = Number(body?.intervalCount || 1);
+        const endCondition = body?.endCondition ? String(body.endCondition).toUpperCase() : null;
+        const endCount = body?.endCount != null ? Number(body.endCount) : null;
+        const endDate = body?.endDate ? String(body.endDate) : null;
+        const nextRunAt = body?.nextRunAt ? String(body.nextRunAt) : (isRecurring ? occurredAt : null);
+        const bucketId = body?.bucketId != null ? Number(body.bucketId) : null;
+
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_AMOUNT", message: "Invalid amount" } }, { status: 400 });
+        if (!occurredAt) return NextResponse.json({ requestId, error: { code: "MISSING_OCCURRED_AT", message: "occurredAt is required" } }, { status: 400 });
+        if (!purchaseType) return NextResponse.json({ requestId, error: { code: "MISSING_PURCHASE_TYPE", message: "purchaseType is required" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!['SPENDING', 'INCOME'].includes(entryType))
+            return NextResponse.json({ requestId, error: { code: "INVALID_ENTRY_TYPE", message: "Invalid entryType" } }, { status: 400 });
+        if (!Number.isFinite(intervalCount) || intervalCount <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_INTERVAL", message: "Invalid intervalCount" } }, { status: 400 });
+        if (frequency && !['DAILY', 'WEEKLY', 'BIWEEKLY', 'MONTHLY', 'QUARTERLY', 'YEARLY'].includes(frequency))
+            return NextResponse.json({ requestId, error: { code: "INVALID_FREQUENCY", message: "Invalid frequency" } }, { status: 400 });
+        if (endCondition && !['NEVER', 'AFTER_COUNT', 'BY_DATE'].includes(endCondition))
+            return NextResponse.json({ requestId, error: { code: "INVALID_END_CONDITION", message: "Invalid endCondition" } }, { status: 400 });
+
+        const entry = await updateEntry({
+            id,
+            groupId,
+            userId: user.id,
+            entryType: entryType as "SPENDING" | "INCOME",
+            amountDollars,
+            occurredAt,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: notes || undefined,
+            tags,
+            isRecurring,
+            frequency: frequency as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null,
+            intervalCount,
+            endCondition: endCondition as "NEVER" | "AFTER_COUNT" | "BY_DATE" | null,
+            endCount,
+            endDate,
+            nextRunAt,
+            bucketId
+        });
+
+        if (!entry) return NextResponse.json({ requestId, error: { code: "NOT_FOUND", message: "Not found" } }, { status: 404 });
+
+        return NextResponse.json({ requestId, entry });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "PATCH /api/entries/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function DELETE(_: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        await deleteEntry({ id, groupId });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "DELETE /api/entries/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/entries/route.ts b/apps/web/app/api/entries/route.ts
new file mode 100644
index 0000000..fbc9efe
--- /dev/null
+++ b/apps/web/app/api/entries/route.ts
@@ -0,0 +1,88 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { createEntry, listEntries, requireActiveGroup } from "@/lib/server/entries";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const entries = await listEntries(groupId);
+        return NextResponse.json({ requestId, entries });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/entries", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const amountDollars = Number(body?.amountDollars || 0);
+        const occurredAt = String(body?.occurredAt || "");
+        const necessity = String(body?.necessity || "");
+        const tags = parseTags(body?.tags);
+        const purchaseType = String(body?.purchaseType || tags[0] || "General").trim();
+        const notes = String(body?.notes || "").trim();
+        const entryType = String(body?.entryType || "SPENDING").toUpperCase();
+        const isRecurring = Boolean(body?.isRecurring);
+        const frequency = body?.frequency ? String(body.frequency).toUpperCase() : null;
+        const intervalCount = Number(body?.intervalCount || 1);
+        const endCondition = body?.endCondition ? String(body.endCondition).toUpperCase() : null;
+        const endCount = body?.endCount != null ? Number(body.endCount) : null;
+        const endDate = body?.endDate ? String(body.endDate) : null;
+        const nextRunAt = body?.nextRunAt ? String(body.nextRunAt) : (isRecurring ? occurredAt : null);
+        const bucketId = body?.bucketId != null ? Number(body.bucketId) : null;
+
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_AMOUNT", message: "Invalid amount" } }, { status: 400 });
+        if (!occurredAt) return NextResponse.json({ requestId, error: { code: "MISSING_OCCURRED_AT", message: "occurredAt is required" } }, { status: 400 });
+        if (!purchaseType) return NextResponse.json({ requestId, error: { code: "MISSING_PURCHASE_TYPE", message: "purchaseType is required" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!['SPENDING', 'INCOME'].includes(entryType))
+            return NextResponse.json({ requestId, error: { code: "INVALID_ENTRY_TYPE", message: "Invalid entryType" } }, { status: 400 });
+        if (!Number.isFinite(intervalCount) || intervalCount <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_INTERVAL", message: "Invalid intervalCount" } }, { status: 400 });
+        if (frequency && !['DAILY', 'WEEKLY', 'BIWEEKLY', 'MONTHLY', 'QUARTERLY', 'YEARLY'].includes(frequency))
+            return NextResponse.json({ requestId, error: { code: "INVALID_FREQUENCY", message: "Invalid frequency" } }, { status: 400 });
+        if (endCondition && !['NEVER', 'AFTER_COUNT', 'BY_DATE'].includes(endCondition))
+            return NextResponse.json({ requestId, error: { code: "INVALID_END_CONDITION", message: "Invalid endCondition" } }, { status: 400 });
+
+        const entry = await createEntry({
+            groupId,
+            userId: user.id,
+            entryType: entryType as "SPENDING" | "INCOME",
+            amountDollars,
+            occurredAt,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: notes || undefined,
+            tags,
+            isRecurring,
+            frequency: frequency as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null,
+            intervalCount,
+            endCondition: endCondition as "NEVER" | "AFTER_COUNT" | "BY_DATE" | null,
+            endCount,
+            endDate,
+            nextRunAt,
+            bucketId
+        });
+
+        return NextResponse.json({ requestId, entry });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/entries", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/active/route.ts b/apps/web/app/api/groups/active/route.ts
new file mode 100644
index 0000000..6bc9fb9
--- /dev/null
+++ b/apps/web/app/api/groups/active/route.ts
@@ -0,0 +1,35 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { getActiveGroupId, listGroups, setActiveGroupForUser } from "@/lib/server/groups";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groups = await listGroups(user.id);
+        const activeGroupId = await getActiveGroupId(user.id);
+        const active = groups.find(group => Number(group.id) === activeGroupId) || null;
+        return NextResponse.json({ requestId, active });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups/active", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const body = await req.json().catch(() => null);
+        const groupId = Number(body?.groupId || 0);
+        if (!groupId) return NextResponse.json({ requestId, error: { code: "MISSING_GROUP_ID", message: "groupId is required" } }, { status: 400 });
+
+        await setActiveGroupForUser(user.id, groupId);
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/active", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/audit/route.ts b/apps/web/app/api/groups/audit/route.ts
new file mode 100644
index 0000000..371356b
--- /dev/null
+++ b/apps/web/app/api/groups/audit/route.ts
@@ -0,0 +1,19 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { listGroupAudit } from "@/lib/server/group-audit";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const events = await listGroupAudit({ userId: user.id, groupId });
+        return NextResponse.json({ requestId, events });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups/audit", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/delete/route.ts b/apps/web/app/api/groups/delete/route.ts
new file mode 100644
index 0000000..42252e0
--- /dev/null
+++ b/apps/web/app/api/groups/delete/route.ts
@@ -0,0 +1,18 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup, deleteGroup } from "@/lib/server/groups";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST() {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        await deleteGroup({ userId: user.id, groupId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/delete", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/invites/delete/route.ts b/apps/web/app/api/groups/invites/delete/route.ts
new file mode 100644
index 0000000..3c4cc88
--- /dev/null
+++ b/apps/web/app/api/groups/invites/delete/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { deleteInviteLink } from "@/lib/server/group-invites";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const linkId = Number(body?.linkId || 0);
+        if (!linkId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_LINK_ID", message: "linkId is required" } }, { status: 400 });
+        await deleteInviteLink({ linkId, userId: user.id, groupId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/invites/delete", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/invites/revive/route.ts b/apps/web/app/api/groups/invites/revive/route.ts
new file mode 100644
index 0000000..0797a44
--- /dev/null
+++ b/apps/web/app/api/groups/invites/revive/route.ts
@@ -0,0 +1,27 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { reviveInviteLink } from "@/lib/server/group-invites";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const linkId = Number(body?.linkId || 0);
+        const ttlDays = Math.min(7, Math.max(1, Number(body?.ttlDays || 0)));
+        if (!linkId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_LINK_ID", message: "linkId is required" } }, { status: 400 });
+        if (!ttlDays)
+            return NextResponse.json({ requestId, error: { code: "MISSING_TTL", message: "ttlDays is required" } }, { status: 400 });
+        const expiresAt = new Date(Date.now() + ttlDays * 24 * 60 * 60 * 1000);
+        await reviveInviteLink({ userId: user.id, groupId, linkId, expiresAt, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/invites/revive", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/invites/revoke/route.ts b/apps/web/app/api/groups/invites/revoke/route.ts
new file mode 100644
index 0000000..7abe454
--- /dev/null
+++ b/apps/web/app/api/groups/invites/revoke/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { revokeInviteLink } from "@/lib/server/group-invites";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const linkId = Number(body?.linkId || 0);
+        if (!linkId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_LINK_ID", message: "linkId is required" } }, { status: 400 });
+        await revokeInviteLink({ userId: user.id, groupId, linkId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/invites/revoke", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/invites/route.ts b/apps/web/app/api/groups/invites/route.ts
new file mode 100644
index 0000000..cafecd0
--- /dev/null
+++ b/apps/web/app/api/groups/invites/route.ts
@@ -0,0 +1,41 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { createInviteLink, listInviteLinks } from "@/lib/server/group-invites";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const links = await listInviteLinks({ userId: user.id, groupId });
+        return NextResponse.json({ requestId, links });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups/invites", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const policy = ["NOT_ACCEPTING", "AUTO_ACCEPT", "APPROVAL_REQUIRED"].includes(String(body?.policy))
+            ? (String(body?.policy) as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED")
+            : "NOT_ACCEPTING";
+        const singleUse = Boolean(body?.singleUse);
+        const ttlDays = Math.min(7, Math.max(1, Number(body?.ttlDays || 0)));
+        if (!ttlDays)
+            return NextResponse.json({ requestId, error: { code: "MISSING_TTL", message: "ttlDays is required" } }, { status: 400 });
+        const expiresAt = new Date(Date.now() + ttlDays * 24 * 60 * 60 * 1000);
+        const link = await createInviteLink({ userId: user.id, groupId, policy, singleUse, expiresAt, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, link });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/invites", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/join/route.ts b/apps/web/app/api/groups/join/route.ts
new file mode 100644
index 0000000..736957c
--- /dev/null
+++ b/apps/web/app/api/groups/join/route.ts
@@ -0,0 +1,22 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { joinGroup } from "@/lib/server/groups";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const body = await req.json().catch(() => null);
+        const inviteCode = String(body?.inviteCode || "").trim().toUpperCase();
+        if (!inviteCode)
+            return NextResponse.json({ requestId, error: { code: "MISSING_INVITE_CODE", message: "Invite code is required" } }, { status: 400 });
+
+        const group = await joinGroup(user.id, inviteCode);
+        return NextResponse.json({ requestId, group });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/join", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/approve/route.ts b/apps/web/app/api/groups/members/approve/route.ts
new file mode 100644
index 0000000..00afe00
--- /dev/null
+++ b/apps/web/app/api/groups/members/approve/route.ts
@@ -0,0 +1,24 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { approveJoinRequest } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        const joinRequestId = Number(body?.requestId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await approveJoinRequest({ actorUserId: user.id, groupId, userId, requestId, ip, userAgent, requestRowId: joinRequestId || undefined });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/approve", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/demote/route.ts b/apps/web/app/api/groups/members/demote/route.ts
new file mode 100644
index 0000000..2b03bf2
--- /dev/null
+++ b/apps/web/app/api/groups/members/demote/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { demoteAdmin } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await demoteAdmin({ actorUserId: user.id, groupId, targetUserId: userId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/demote", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/deny/route.ts b/apps/web/app/api/groups/members/deny/route.ts
new file mode 100644
index 0000000..145a781
--- /dev/null
+++ b/apps/web/app/api/groups/members/deny/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { denyJoinRequest } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await denyJoinRequest({ actorUserId: user.id, groupId, userId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/deny", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/kick/route.ts b/apps/web/app/api/groups/members/kick/route.ts
new file mode 100644
index 0000000..3d60c5d
--- /dev/null
+++ b/apps/web/app/api/groups/members/kick/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { kickMember } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await kickMember({ actorUserId: user.id, groupId, targetUserId: userId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/kick", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/leave/route.ts b/apps/web/app/api/groups/members/leave/route.ts
new file mode 100644
index 0000000..99a0cc4
--- /dev/null
+++ b/apps/web/app/api/groups/members/leave/route.ts
@@ -0,0 +1,19 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { leaveGroup } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST() {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        await leaveGroup({ userId: user.id, groupId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/leave", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/promote/route.ts b/apps/web/app/api/groups/members/promote/route.ts
new file mode 100644
index 0000000..937b638
--- /dev/null
+++ b/apps/web/app/api/groups/members/promote/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { promoteToAdmin } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await promoteToAdmin({ actorUserId: user.id, groupId, targetUserId: userId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/promote", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/route.ts b/apps/web/app/api/groups/members/route.ts
new file mode 100644
index 0000000..65ad203
--- /dev/null
+++ b/apps/web/app/api/groups/members/route.ts
@@ -0,0 +1,20 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { listGroupMembers, listJoinRequests } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const members = await listGroupMembers(groupId);
+        const requests = await listJoinRequests({ userId: user.id, groupId });
+        return NextResponse.json({ requestId, members, requests, currentUserId: user.id });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups/members", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/members/transfer-owner/route.ts b/apps/web/app/api/groups/members/transfer-owner/route.ts
new file mode 100644
index 0000000..eee725e
--- /dev/null
+++ b/apps/web/app/api/groups/members/transfer-owner/route.ts
@@ -0,0 +1,23 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { transferOwnership } from "@/lib/server/group-members";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const userId = Number(body?.userId || 0);
+        if (!userId)
+            return NextResponse.json({ requestId, error: { code: "MISSING_USER_ID", message: "userId is required" } }, { status: 400 });
+        await transferOwnership({ actorUserId: user.id, groupId, newOwnerUserId: userId, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/members/transfer-owner", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/rename/route.ts b/apps/web/app/api/groups/rename/route.ts
new file mode 100644
index 0000000..010e47a
--- /dev/null
+++ b/apps/web/app/api/groups/rename/route.ts
@@ -0,0 +1,22 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup, renameGroup } from "@/lib/server/groups";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function POST(req: Request) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const name = String(body?.name || "").trim();
+        if (!name)
+            return NextResponse.json({ requestId, error: { code: "MISSING_NAME", message: "Name is required" } }, { status: 400 });
+        await renameGroup({ userId: user.id, groupId, name, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/rename", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/route.ts b/apps/web/app/api/groups/route.ts
new file mode 100644
index 0000000..19d33cb
--- /dev/null
+++ b/apps/web/app/api/groups/route.ts
@@ -0,0 +1,33 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { createGroup, listGroups } from "@/lib/server/groups";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groups = await listGroups(user.id);
+        return NextResponse.json({ requestId, groups });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const body = await req.json().catch(() => null);
+        const name = String(body?.name || "").trim();
+        if (!name) return NextResponse.json({ requestId, error: { code: "MISSING_NAME", message: "Name is required" } }, { status: 400 });
+
+        const group = await createGroup(user.id, name);
+        return NextResponse.json({ requestId, group });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/groups/settings/route.ts b/apps/web/app/api/groups/settings/route.ts
new file mode 100644
index 0000000..1287f0c
--- /dev/null
+++ b/apps/web/app/api/groups/settings/route.ts
@@ -0,0 +1,38 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { getGroupSettings, setGroupSettings } from "@/lib/server/group-settings";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const settings = await getGroupSettings(groupId);
+        return NextResponse.json({ requestId, settings });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/groups/settings", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const allowMemberTagManage = Boolean(body?.allowMemberTagManage);
+        const joinPolicy = ["NOT_ACCEPTING", "AUTO_ACCEPT", "APPROVAL_REQUIRED"].includes(String(body?.joinPolicy))
+            ? (String(body?.joinPolicy) as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED")
+            : "NOT_ACCEPTING";
+        await setGroupSettings({ userId: user.id, groupId, allowMemberTagManage, joinPolicy });
+        const settings = await getGroupSettings(groupId);
+        return NextResponse.json({ requestId, settings });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/groups/settings", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/invite-links/[token]/route.ts b/apps/web/app/api/invite-links/[token]/route.ts
new file mode 100644
index 0000000..c585b30
--- /dev/null
+++ b/apps/web/app/api/invite-links/[token]/route.ts
@@ -0,0 +1,41 @@
+import { NextResponse } from "next/server";
+import { getSessionUser, requireSessionUser } from "@/lib/server/session";
+import { apiError, toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+import { acceptInviteLink, getInviteLinkSummaryByToken, getInviteViewerStatus } from "@/lib/server/group-invites";
+
+export async function GET(_: Request, context: { params: Promise<{ token: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const { token } = await context.params;
+        const normalized = String(token || "").trim();
+        if (!normalized) apiError("INVITE_NOT_FOUND");
+        const link = await getInviteLinkSummaryByToken(normalized);
+        if (!link) apiError("INVITE_NOT_FOUND", { tokenLast4: normalized.slice(-4) });
+        const user = await getSessionUser();
+        if (user) {
+            const viewerStatus = await getInviteViewerStatus({ userId: user.id, groupId: link.groupId });
+            if (viewerStatus)
+                return NextResponse.json({ requestId, link: { ...link, viewerStatus } });
+        }
+        return NextResponse.json({ requestId, link });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/invite-links/[token]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(_: Request, context: { params: Promise<{ token: string }> }) {
+    const { requestId, ip, userAgent } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const { token } = await context.params;
+        const normalized = String(token || "").trim();
+        if (!normalized) apiError("INVITE_NOT_FOUND");
+        const result = await acceptInviteLink({ userId: user.id, token: normalized, requestId, ip, userAgent });
+        return NextResponse.json({ requestId, result });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/invite-links/[token]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/recurring-entries/[id]/route.ts b/apps/web/app/api/recurring-entries/[id]/route.ts
new file mode 100644
index 0000000..a9905ab
--- /dev/null
+++ b/apps/web/app/api/recurring-entries/[id]/route.ts
@@ -0,0 +1,98 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { deleteRecurringEntry, requireActiveGroup, updateRecurringEntry } from "@/lib/server/recurring-entries";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function PATCH(req: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        const body = await req.json().catch(() => null);
+        const amountDollars = Number(body?.amountDollars || 0);
+        const occurredAt = String(body?.occurredAt || "");
+        const necessity = String(body?.necessity || "");
+        const tags = parseTags(body?.tags);
+        const purchaseType = String(body?.purchaseType || tags[0] || "General").trim();
+        const notes = String(body?.notes || "").trim();
+        const entryType = String(body?.entryType || "SPENDING").toUpperCase();
+        const frequency = body?.frequency ? String(body.frequency).toUpperCase() : null;
+        const intervalCount = Number(body?.intervalCount || 1);
+        const endCondition = body?.endCondition ? String(body.endCondition).toUpperCase() : null;
+        const endCount = body?.endCount != null ? Number(body.endCount) : null;
+        const endDate = body?.endDate ? String(body.endDate) : null;
+        const nextRunAt = body?.nextRunAt ? String(body.nextRunAt) : occurredAt;
+        const bucketId = body?.bucketId != null ? Number(body.bucketId) : null;
+
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_AMOUNT", message: "Invalid amount" } }, { status: 400 });
+        if (!occurredAt) return NextResponse.json({ requestId, error: { code: "MISSING_OCCURRED_AT", message: "occurredAt is required" } }, { status: 400 });
+        if (!purchaseType) return NextResponse.json({ requestId, error: { code: "MISSING_PURCHASE_TYPE", message: "purchaseType is required" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!['SPENDING', 'INCOME'].includes(entryType))
+            return NextResponse.json({ requestId, error: { code: "INVALID_ENTRY_TYPE", message: "Invalid entryType" } }, { status: 400 });
+        if (!Number.isFinite(intervalCount) || intervalCount <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_INTERVAL", message: "Invalid intervalCount" } }, { status: 400 });
+        if (frequency && !['DAILY', 'WEEKLY', 'BIWEEKLY', 'MONTHLY', 'QUARTERLY', 'YEARLY'].includes(frequency))
+            return NextResponse.json({ requestId, error: { code: "INVALID_FREQUENCY", message: "Invalid frequency" } }, { status: 400 });
+        if (endCondition && !['NEVER', 'AFTER_COUNT', 'BY_DATE'].includes(endCondition))
+            return NextResponse.json({ requestId, error: { code: "INVALID_END_CONDITION", message: "Invalid endCondition" } }, { status: 400 });
+
+        const entry = await updateRecurringEntry({
+            id,
+            groupId,
+            userId: user.id,
+            entryType: entryType as "SPENDING" | "INCOME",
+            amountDollars,
+            occurredAt,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: notes || undefined,
+            tags,
+            isRecurring: true,
+            frequency: frequency as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null,
+            intervalCount,
+            endCondition: endCondition as "NEVER" | "AFTER_COUNT" | "BY_DATE" | null,
+            endCount,
+            endDate,
+            nextRunAt,
+            bucketId
+        });
+
+        if (!entry) return NextResponse.json({ requestId, error: { code: "NOT_FOUND", message: "Not found" } }, { status: 404 });
+
+        return NextResponse.json({ requestId, entry });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "PATCH /api/recurring-entries/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function DELETE(_: Request, { params }: { params: Promise<{ id: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { id: idParam } = await params;
+        const id = Number(idParam || 0);
+        if (!id) return NextResponse.json({ requestId, error: { code: "INVALID_ID", message: "Invalid id" } }, { status: 400 });
+
+        await deleteRecurringEntry({ id, groupId });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "DELETE /api/recurring-entries/[id]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/recurring-entries/route.ts b/apps/web/app/api/recurring-entries/route.ts
new file mode 100644
index 0000000..80fff1d
--- /dev/null
+++ b/apps/web/app/api/recurring-entries/route.ts
@@ -0,0 +1,87 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { createRecurringEntry, listRecurringEntries, requireActiveGroup } from "@/lib/server/recurring-entries";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+function parseTags(value: unknown) {
+    if (Array.isArray(value)) return value.map(tag => String(tag));
+    if (typeof value === "string") return value.split(",");
+    return [] as string[];
+}
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const entries = await listRecurringEntries(groupId);
+        return NextResponse.json({ requestId, entries });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/recurring-entries", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const amountDollars = Number(body?.amountDollars || 0);
+        const occurredAt = String(body?.occurredAt || "");
+        const necessity = String(body?.necessity || "");
+        const tags = parseTags(body?.tags);
+        const purchaseType = String(body?.purchaseType || tags[0] || "General").trim();
+        const notes = String(body?.notes || "").trim();
+        const entryType = String(body?.entryType || "SPENDING").toUpperCase();
+        const frequency = body?.frequency ? String(body.frequency).toUpperCase() : null;
+        const intervalCount = Number(body?.intervalCount || 1);
+        const endCondition = body?.endCondition ? String(body.endCondition).toUpperCase() : null;
+        const endCount = body?.endCount != null ? Number(body.endCount) : null;
+        const endDate = body?.endDate ? String(body.endDate) : null;
+        const nextRunAt = body?.nextRunAt ? String(body.nextRunAt) : occurredAt;
+        const bucketId = body?.bucketId != null ? Number(body.bucketId) : null;
+
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_AMOUNT", message: "Invalid amount" } }, { status: 400 });
+        if (!occurredAt) return NextResponse.json({ requestId, error: { code: "MISSING_OCCURRED_AT", message: "occurredAt is required" } }, { status: 400 });
+        if (!purchaseType) return NextResponse.json({ requestId, error: { code: "MISSING_PURCHASE_TYPE", message: "purchaseType is required" } }, { status: 400 });
+        if (!['NECESSARY', 'BOTH', 'UNNECESSARY'].includes(necessity))
+            return NextResponse.json({ requestId, error: { code: "INVALID_NECESSITY", message: "Invalid necessity" } }, { status: 400 });
+        if (!['SPENDING', 'INCOME'].includes(entryType))
+            return NextResponse.json({ requestId, error: { code: "INVALID_ENTRY_TYPE", message: "Invalid entryType" } }, { status: 400 });
+        if (!Number.isFinite(intervalCount) || intervalCount <= 0)
+            return NextResponse.json({ requestId, error: { code: "INVALID_INTERVAL", message: "Invalid intervalCount" } }, { status: 400 });
+        if (frequency && !['DAILY', 'WEEKLY', 'BIWEEKLY', 'MONTHLY', 'QUARTERLY', 'YEARLY'].includes(frequency))
+            return NextResponse.json({ requestId, error: { code: "INVALID_FREQUENCY", message: "Invalid frequency" } }, { status: 400 });
+        if (endCondition && !['NEVER', 'AFTER_COUNT', 'BY_DATE'].includes(endCondition))
+            return NextResponse.json({ requestId, error: { code: "INVALID_END_CONDITION", message: "Invalid endCondition" } }, { status: 400 });
+
+        const entry = await createRecurringEntry({
+            groupId,
+            userId: user.id,
+            entryType: entryType as "SPENDING" | "INCOME",
+            amountDollars,
+            occurredAt,
+            necessity: necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: notes || undefined,
+            tags,
+            isRecurring: true,
+            frequency: frequency as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null,
+            intervalCount,
+            endCondition: endCondition as "NEVER" | "AFTER_COUNT" | "BY_DATE" | null,
+            endCount,
+            endDate,
+            nextRunAt,
+            bucketId
+        });
+
+        return NextResponse.json({ requestId, entry });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/recurring-entries", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/tags/[name]/route.ts b/apps/web/app/api/tags/[name]/route.ts
new file mode 100644
index 0000000..6076c41
--- /dev/null
+++ b/apps/web/app/api/tags/[name]/route.ts
@@ -0,0 +1,20 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/entries";
+import { deleteTagForGroup } from "@/lib/server/tags";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function DELETE(_: Request, { params }: { params: Promise<{ name: string }> }) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const { name } = await params;
+        await deleteTagForGroup({ userId: user.id, groupId, name: decodeURIComponent(name) });
+        return NextResponse.json({ requestId, ok: true });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "DELETE /api/tags/[name]", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/api/tags/route.ts b/apps/web/app/api/tags/route.ts
new file mode 100644
index 0000000..a67c667
--- /dev/null
+++ b/apps/web/app/api/tags/route.ts
@@ -0,0 +1,35 @@
+import { NextResponse } from "next/server";
+import { requireSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/entries";
+import { ensureTagsForGroup, listGroupTags } from "@/lib/server/tags";
+import { toErrorResponse } from "@/lib/server/errors";
+import { getRequestMeta } from "@/lib/server/request";
+
+export async function GET() {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const tags = await listGroupTags(groupId);
+        return NextResponse.json({ requestId, tags });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "GET /api/tags", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
+
+export async function POST(req: Request) {
+    const { requestId } = await getRequestMeta();
+    try {
+        const user = await requireSessionUser();
+        const groupId = await requireActiveGroup(user.id);
+        const body = await req.json().catch(() => null);
+        const tags = Array.isArray(body?.tags) ? body.tags.map((tag: unknown) => String(tag)) : [];
+        await ensureTagsForGroup({ userId: user.id, groupId, tags });
+        const list = await listGroupTags(groupId);
+        return NextResponse.json({ requestId, tags: list });
+    } catch (e) {
+        const { status, body } = toErrorResponse(e, "POST /api/tags", requestId);
+        return NextResponse.json(body, { status });
+    }
+}
diff --git a/apps/web/app/favicon.ico b/apps/web/app/favicon.ico
new file mode 100644
index 0000000000000000000000000000000000000000..a3f73952cae5ad7a4c7dcc93da1e1db5f78f69c4
GIT binary patch
literal 901
zcmV;01A6=b0096201yxW0000W0B-{T02TlM0EtjeM-2)Z3IG5A4M|8uQUCw|5C8xG
z5C{eU001BJ|6u?C12#!SK~#90O_NJ#oMjY-pY#9UWG2ou_crOpwp1m>Qlwadf*Q11
ziV7|y-bzsvtrl+!MM_Z+Q3My_MscB(Ac74DT2K_RDWU<JLNihgZA_ZRT+JkDW-{|%
zzVACOri#z%tX|$1&LaS-Dk7qfK5=-ckk98N2o0#B1ip@zE9KdRsj>S92TwZ@l&cs(
z{=Ikay0QJ}D=*%FdXRws^UO=HuMK?miQV&s-n;Gn#cDQ}Po3wo0VHFL7qDp(Cn@M;
zDe>8i31X}K^y6tQmo5=k=dQcywg+B2_vG9Cdk2qoEe|aQ*`<#80PwAC-31Mr4%TW>
zyK}G>`=C^g<>L=OlIG}};Lt5Y!SPp<4JY4gdiTg9r%nzZ>bw5d-j31V-;~6(wzf8J
z@80}<&-y(*QIy~uH0H7locM};+lM)@zXah!ki>fJ>QVQ>Q#)=R87rUodjHO20`CON
zRlj%NoxMFH#iG49F~#MXW&RwSW$xl2w{JQ_t$3EGRHItW$?CY6V0PF(d`DK-wQqh}
z!3bgY?&n{4`MZ{;buvErmvn91M3g#`$~^6v63#l*Mx^;}{MszWSNznn4}LDrT<G3%
zZkNFs=4R)EtzBK()z(T<UIFhgG%~xkh16P{^H5nur5Wp60u56Nxy7x;(H%PtVJMl5
zp;n8STUa2FfHY0<-h+BXggA~_Ui=%?dYF1eY@G8Zv)<sGI_I(0Ui}?K5JUv00X9jw
z5?eOjcNlGK!KIGKG_W%A8}j8F)_}oTSFh?7!Qs_otwX|)^3np?yPo6Vvk!7<8a^Eb
zmxIakRhpuT7(z6)Db;EX^&YQ^we=8GF(zbs`~v;IcvdQo)hI(8fhJWlpa#Ma&@@d+
z(v&~~ylQ=`Ix_iY8vgi}Q*Vtxu0TdDUJQlOgeINaLSwEm<<io!bak}*hD=6O6#>FP
z@Low$OXr48+SZmx;u)M*yt96~dL^it{ED#$dVifcKQXXYi~7<yatfh(#jE1I|8Eu&
zpsG0MTw}fvhK+^(BYkIzA|iP2JC1)o@I#uUyPdNFQa4oUs)`6&7uXvUVvITa_+x$d
b0IUB1pkdc@#?OM&00000NkvXXu0mjfqr9%U

literal 0
HcmV?d00001

diff --git a/apps/web/app/globals.css b/apps/web/app/globals.css
new file mode 100644
index 0000000..4097960
--- /dev/null
+++ b/apps/web/app/globals.css
@@ -0,0 +1,179 @@
+@tailwind base;
+@tailwind components;
+@tailwind utilities;
+
+:root {
+  color-scheme: dark;
+  --color-bg: #0b0f17;
+  --color-surface: #111827;
+  --color-surface-muted: #0f172a;
+  --color-input: #0b1220;
+  --color-border: rgba(148, 163, 184, 0.18);
+  --color-divider: rgba(30, 144, 255, 0.25);
+  --color-accent: #1e90ff;
+  --color-accent-strong: #4aa3ff;
+  --color-accent-soft: rgba(30, 144, 255, 0.12);
+  --color-accent-border: rgba(30, 144, 255, 0.55);
+  --color-accent-border-weak: rgba(30, 144, 255, 0.32);
+  --color-accent-focus: rgba(30, 144, 255, 0.45);
+  --color-text: #e5e7eb;
+  --color-muted: #a1acc1;
+  --color-muted-2: #7b8aa3;
+}
+
+.theme-light {
+  color-scheme: light;
+  --color-bg: #f8fafc;
+  --color-surface: #ffffff;
+  --color-surface-muted: #f1f5f9;
+  --color-input: #ffffff;
+  --color-border: rgba(30, 144, 255, 0.25);
+  --color-divider: rgba(30, 144, 255, 0.2);
+  --color-accent: #1e90ff;
+  --color-accent-strong: #0f7be6;
+  --color-accent-soft: rgba(30, 144, 255, 0.12);
+  --color-accent-border: rgba(30, 144, 255, 0.55);
+  --color-accent-border-weak: rgba(30, 144, 255, 0.32);
+  --color-accent-focus: rgba(30, 144, 255, 0.35);
+  --color-text: #0f172a;
+  --color-muted: #64748b;
+  --color-muted-2: #475569;
+}
+
+body {
+  background-color: var(--color-bg);
+  color: var(--color-text);
+}
+
+@layer components {
+  .bg-app {
+    background-color: var(--color-bg);
+  }
+
+  .bg-surface {
+    background-color: var(--color-surface);
+  }
+
+  .bg-panel {
+    background-color: var(--color-surface-muted);
+  }
+
+  .bg-accent {
+    background-color: var(--color-accent);
+  }
+
+  .bg-accent-soft {
+    background-color: var(--color-accent-soft);
+  }
+
+  .bg-input {
+    background-color: var(--color-input);
+  }
+
+  .text-muted {
+    color: var(--color-muted);
+  }
+
+  .text-soft {
+    color: var(--color-muted-2);
+  }
+
+  .border-default {
+    border-color: var(--color-border);
+  }
+
+  .border-accent {
+    border-color: var(--color-accent-border);
+  }
+
+  .border-accent-weak {
+    border-color: var(--color-accent-border-weak);
+  }
+
+  .border-accent-strong {
+    border-color: var(--color-accent);
+  }
+
+  .divider {
+    background-color: var(--color-divider);
+  }
+
+  .panel {
+    background-color: var(--color-surface-muted);
+    border: 1px solid var(--color-border);
+    border-radius: 0.75rem;
+  }
+
+  .panel-accent {
+    border-color: var(--color-accent-border-weak);
+  }
+
+  .card-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.75rem;
+    padding-bottom: 0.5rem;
+    border-bottom: 1px solid var(--color-accent-border-weak);
+  }
+
+  .card-title {
+    font-size: 0.875rem;
+    font-weight: 600;
+  }
+
+  .input-base {
+    background-color: var(--color-input);
+    border: 1px solid var(--color-border);
+    border-radius: 0.5rem;
+    color: var(--color-text);
+  }
+
+  .date-input {
+    appearance: none;
+    -webkit-appearance: none;
+    -moz-appearance: none;
+  }
+
+  .date-input::-webkit-calendar-picker-indicator {
+    opacity: 0;
+  }
+
+  .input-base:focus {
+    border-color: var(--color-accent);
+    box-shadow: 0 0 0 1px var(--color-accent-focus);
+    outline: none;
+  }
+
+  .btn-accent {
+    background-color: var(--color-accent);
+    color: #fff;
+  }
+
+  .btn-accent:hover {
+    background-color: var(--color-accent-strong);
+  }
+
+  .btn-outline-accent {
+    border: 1px solid var(--color-accent-border);
+    color: var(--color-text);
+    background-color: transparent;
+  }
+
+  .btn-outline-accent:hover {
+    border-color: var(--color-accent);
+  }
+
+  /* Hide the calendar icon on Chromium/Safari */
+  input.no-date-icon::-webkit-calendar-picker-indicator {
+    opacity: 0;
+    display: none;
+    /* usually fine */
+    -webkit-appearance: none;
+  }
+
+  /* Optional: hide the little spin buttons some browsers show */
+  input.no-date-icon::-webkit-inner-spin-button {
+    display: none;
+  }
+}
diff --git a/apps/web/app/groups/[id]/settings/page.tsx b/apps/web/app/groups/[id]/settings/page.tsx
new file mode 100644
index 0000000..ecc8e52
--- /dev/null
+++ b/apps/web/app/groups/[id]/settings/page.tsx
@@ -0,0 +1,14 @@
+import { redirect } from "next/navigation";
+import { getSessionUser } from "@/lib/server/session";
+import GroupSettingsContent from "@/components/group-settings-content";
+
+export default async function GroupSettingsPage({ params }: { params: Promise<{ id: string }> }) {
+    const user = await getSessionUser();
+    if (!user) redirect("/login");
+
+    const { id } = await params;
+    const groupId = Number(id || 0);
+    if (!groupId) redirect("/");
+
+    return <GroupSettingsContent groupId={groupId} />;
+}
diff --git a/apps/web/app/groups/settings/page.tsx b/apps/web/app/groups/settings/page.tsx
new file mode 100644
index 0000000..3c67326
--- /dev/null
+++ b/apps/web/app/groups/settings/page.tsx
@@ -0,0 +1,16 @@
+import { redirect } from "next/navigation";
+import { getSessionUser } from "@/lib/server/session";
+import { requireActiveGroup } from "@/lib/server/groups";
+import GroupSettingsContent from "@/components/group-settings-content";
+
+export default async function GroupSettingsPage() {
+    const user = await getSessionUser();
+    if (!user) redirect("/login");
+
+    try {
+        const groupId = await requireActiveGroup(user.id);
+        return <GroupSettingsContent groupId={groupId} />;
+    } catch {
+        redirect("/");
+    }
+}
diff --git a/apps/web/app/invite/[token]/page.tsx b/apps/web/app/invite/[token]/page.tsx
new file mode 100644
index 0000000..62ff1c1
--- /dev/null
+++ b/apps/web/app/invite/[token]/page.tsx
@@ -0,0 +1,282 @@
+"use client";
+
+import { useEffect, useMemo, useState } from "react";
+import { useParams, useRouter } from "next/navigation";
+import { useAuthContext } from "@/hooks/auth-context";
+import useInviteLink from "@/hooks/use-invite-link";
+
+export default function InvitePage() {
+    const params = useParams();
+    const router = useRouter();
+    const { checkSession } = useAuthContext();
+    const token = useMemo(() => {
+        const raw = params?.token;
+        if (typeof raw === "string") return raw;
+        if (Array.isArray(raw)) return raw[0] || "";
+        return "";
+    }, [params]);
+    const { link, loading, accepting, error, result, accept } = useInviteLink(token || null);
+    const [checkingSession, setCheckingSession] = useState(true);
+    const [hasSession, setHasSession] = useState(false);
+    const [redirectOpen, setRedirectOpen] = useState(false);
+    const [redirectMessage, setRedirectMessage] = useState("");
+    const [secondsLeft, setSecondsLeft] = useState(3);
+    const viewerStatus = link?.viewerStatus || "";
+    const isAlreadyMember = viewerStatus === "ALREADY_MEMBER";
+    const isPendingViewer = viewerStatus === "PENDING";
+    const groupPolicy = link?.groupJoinPolicy || link?.policy || "NOT_ACCEPTING";
+    const isDisabled = groupPolicy === "NOT_ACCEPTING";
+    const isManual = groupPolicy === "APPROVAL_REQUIRED";
+    const isRevoked = Boolean(link?.revokedAt);
+    const isExpired = link?.expiresAt ? new Date(link.expiresAt).getTime() < Date.now() : false;
+    const isUsed = Boolean(link?.singleUse && link?.usedAt);
+    const joinBlockedMessage = isAlreadyMember
+        ? "You are already a member of this group."
+        : isPendingViewer
+            ? "You currently have a pending join request."
+            : isDisabled
+                ? "Invites are disabled for this group."
+                : isRevoked
+                    ? "This invite link has been revoked."
+                    : isExpired
+                        ? "This invite link has expired."
+                        : isUsed
+                            ? "This invite link has already been used."
+                            : "";
+
+    useEffect(() => {
+        let active = true;
+        async function runCheck() {
+            const user = await checkSession();
+            if (!active) return;
+            setHasSession(Boolean(user));
+            setCheckingSession(false);
+        }
+        runCheck();
+        return () => {
+            active = false;
+        };
+    }, [checkSession]);
+
+    useEffect(() => {
+        if (!link || loading) return;
+        if (isAlreadyMember) {
+            setRedirectMessage("You are already a member of this group.");
+            setRedirectOpen(true);
+            return;
+        }
+        if (isPendingViewer) {
+            setRedirectMessage("Your join request is pending approval.");
+            setRedirectOpen(true);
+            return;
+        }
+        if (isRevoked) {
+            setRedirectMessage("This invite link has been revoked.");
+            setRedirectOpen(true);
+        } else if (isExpired) {
+            setRedirectMessage("This invite link has expired.");
+            setRedirectOpen(true);
+        } else if (isUsed) {
+            setRedirectMessage("This invite link has already been used.");
+            setRedirectOpen(true);
+        }
+    }, [link, loading, isAlreadyMember, isPendingViewer, isRevoked, isExpired, isUsed]);
+
+    useEffect(() => {
+        if (!error) return;
+        const lower = error.toLowerCase();
+        if (lower.includes("revoked")) {
+            setRedirectMessage("This invite link has been revoked.");
+            setRedirectOpen(true);
+            return;
+        }
+        if (lower.includes("expired")) {
+            setRedirectMessage("This invite link has expired.");
+            setRedirectOpen(true);
+            return;
+        }
+        if (lower.includes("used")) {
+            setRedirectMessage("This invite link has already been used.");
+            setRedirectOpen(true);
+            return;
+        }
+        if (lower.includes("not found") || lower.includes("invalid invite")) {
+            setRedirectMessage("This invite link no longer exists.");
+            setRedirectOpen(true);
+        }
+    }, [error]);
+
+    useEffect(() => {
+        if (!result) return;
+        if (result.status === "JOINED") setRedirectMessage("You have joined the group.");
+        if (result.status === "PENDING") setRedirectMessage("Your join request is pending approval.");
+        if (result.status === "ALREADY_MEMBER") setRedirectMessage("You are already a member of this group.");
+        setRedirectOpen(true);
+    }, [result]);
+
+    useEffect(() => {
+        if (!redirectOpen) return;
+        setSecondsLeft(3);
+        const timer = window.setInterval(() => {
+            setSecondsLeft(prev => {
+                if (prev <= 1) {
+                    window.clearInterval(timer);
+                    router.push("/");
+                    return 0;
+                }
+                return prev - 1;
+            });
+        }, 1000);
+        return () => window.clearInterval(timer);
+    }, [redirectOpen, router]);
+
+    const actionLabel = result?.status === "JOINED"
+        ? "Joined"
+        : result?.status === "PENDING"
+            ? "Request sent"
+            : result?.status === "ALREADY_MEMBER"
+                ? "Already a member"
+                : "Join group";
+
+    return (
+        <div className="mx-auto max-w-md space-y-4">
+            <div className="flex items-center gap-2">
+                <img
+                    src="/icons/navbar-settings.png"
+                    alt=""
+                    className="h-7 w-7 rounded-lg object-cover"
+                />
+                <h1 className="text-2xl font-semibold">Group invite</h1>
+            </div>
+
+            <div className="panel panel-accent p-4 space-y-3">
+                <div className="card-header">
+                    <div className="card-title">Invite details</div>
+                </div>
+                {loading ? (
+                    <div className="text-sm text-muted">Loading invite…</div>
+                ) : error ? (
+                    <div className="text-sm text-red-400">{error}</div>
+                ) : link ? (
+                    <div className="space-y-2 text-sm text-muted">
+                        <div>
+                            <div className="text-xs text-soft">Group</div>
+                            <div className="text-base font-semibold text-[color:var(--color-text)]">{link.groupName}</div>
+                        </div>
+                        {isAlreadyMember ? (
+                            <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-xs text-soft">
+                                You are already a member of this group.
+                            </div>
+                        ) : isPendingViewer ? (
+                            <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-xs text-soft">
+                                Your join request is pending approval.
+                            </div>
+                        ) : isDisabled ? (
+                            <div className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-xs text-red-200">
+                                Invites are disabled for this group.
+                            </div>
+                        ) : isRevoked ? (
+                            <div className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-xs text-red-200">
+                                This invite link has been revoked.
+                            </div>
+                        ) : isExpired ? (
+                            <div className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-xs text-red-200">
+                                This invite link has expired.
+                            </div>
+                        ) : isUsed ? (
+                            <div className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-xs text-red-200">
+                                This invite link has already been used.
+                            </div>
+                        ) : isManual ? (
+                            <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-xs text-soft">
+                                Requests to join require approval.
+                            </div>
+                        ) : null}
+                    </div>
+                ) : (
+                    <div className="text-sm text-muted">Invite not found.</div>
+                )}
+            </div>
+
+            <div className="panel panel-accent p-4 space-y-3">
+                <div className="card-header">
+                    <div className="card-title">Join this group</div>
+                </div>
+                {checkingSession ? (
+                    <div className="text-sm text-muted">Checking session…</div>
+                ) : !hasSession ? (
+                    <div className="space-y-3">
+                        <div className="text-sm text-muted">Sign in to accept this invite.</div>
+                        <div className="flex items-center gap-2">
+                            <button
+                                type="button"
+                                className="flex-1 rounded-lg btn-accent px-3 py-2 text-sm font-semibold"
+                                onClick={() => router.push("/login")}
+                            >
+                                Sign in
+                            </button>
+                            <button
+                                type="button"
+                                className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                onClick={() => router.push("/register")}
+                            >
+                                Create account
+                            </button>
+                        </div>
+                    </div>
+                ) : (
+                    <div className="space-y-3">
+                        {result ? (
+                            <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-sm text-muted">
+                                {result.status === "JOINED" && "You joined the group."}
+                                {result.status === "ALREADY_MEMBER" && "You are already in this group."}
+                                {result.status === "PENDING" && "Join request sent for approval."}
+                            </div>
+                        ) : joinBlockedMessage ? (
+                            <div className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-sm text-red-200">
+                                {joinBlockedMessage}
+                            </div>
+                        ) : null}
+                        {!joinBlockedMessage ? (
+                            <button
+                                type="button"
+                                className="w-full rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+                                disabled={!link || Boolean(result) || accepting}
+                                onClick={accept}
+                            >
+                                {accepting ? "Joining…" : actionLabel}
+                            </button>
+                        ) : null}
+                        <button
+                            type="button"
+                            className="w-full rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                            onClick={() => router.push("/")}
+                        >
+                            Go to dashboard
+                        </button>
+                    </div>
+                )}
+            </div>
+
+            {redirectOpen ? (
+                <div className="fixed inset-0 z-[80] flex items-center justify-center bg-black/60 p-4 !mt-0">
+                    <div className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5">
+                        <div className="text-lg font-semibold">Redirecting</div>
+                        <p className="mt-2 text-sm text-muted">{redirectMessage}</p>
+                        <p className="mt-2 text-xs text-soft">Taking you to entries in {secondsLeft}s.</p>
+                        <div className="mt-4 flex items-center gap-2">
+                            <button
+                                type="button"
+                                className="flex-1 rounded-lg btn-accent px-3 py-2 text-sm font-semibold"
+                                onClick={() => router.push("/")}
+                            >
+                                Go now
+                            </button>
+                        </div>
+                    </div>
+                </div>
+            ) : null}
+
+        </div>
+    );
+}
diff --git a/apps/web/app/layout.tsx b/apps/web/app/layout.tsx
new file mode 100644
index 0000000..b50af62
--- /dev/null
+++ b/apps/web/app/layout.tsx
@@ -0,0 +1,21 @@
+import "./globals.css";
+import type { Metadata } from "next";
+import AppProviders from "@/components/app-providers";
+import AppFrame from "@/components/app-frame";
+
+export const metadata: Metadata = {
+  title: "Fiddy",
+  description: "Budgeting & collaboration"
+};
+
+export default function RootLayout({ children }: { children: React.ReactNode }) {
+  return (
+    <html lang="en">
+      <body>
+        <AppProviders>
+          <AppFrame>{children}</AppFrame>
+        </AppProviders>
+      </body>
+    </html>
+  );
+}
diff --git a/apps/web/app/login/page.tsx b/apps/web/app/login/page.tsx
new file mode 100644
index 0000000..b786d27
--- /dev/null
+++ b/apps/web/app/login/page.tsx
@@ -0,0 +1,141 @@
+"use client";
+
+import { useRouter } from "next/navigation";
+import { useEffect, useState } from "react";
+import { useAuthContext } from "@/hooks/auth-context";
+
+export default function LoginPage() {
+  const router = useRouter();
+  const [email, setEmail] = useState("");
+  const [password, setPassword] = useState("");
+  const [remember, setRemember] = useState(true);
+  const [error, setError] = useState("");
+  const { checkSession, login, loading } = useAuthContext();
+  const [checking, setChecking] = useState(true);
+
+  useEffect(() => {
+    let active = true;
+    async function runCheckSession() {
+      try {
+        const user = await checkSession();
+        if (!active) return;
+
+        if (user) {
+          router.replace("/");
+          return;
+        }
+      } finally {
+        if (active) setChecking(false);
+      }
+    }
+    runCheckSession();
+    return () => {
+      active = false;
+    };
+  }, [router, checkSession]);
+
+  function validate() {
+    if (!email.trim()) return "Email is required";
+    if (!email.includes("@")) return "Enter a valid email";
+    if (!password) return "Password is required";
+    return "";
+  }
+
+  async function onSubmit(e: React.FormEvent<HTMLFormElement>) {
+    e.preventDefault();
+    const validationError = validate();
+    if (validationError) {
+      setError(validationError);
+      return;
+    }
+    setError("");
+    const result = await login({ email, password, remember });
+
+    if (!result.ok) {
+      setError(result.error || "Login failed");
+      return;
+    }
+
+    router.replace("/");
+  }
+
+  return (
+    <div className="mx-auto max-w-sm space-y-4">
+      <div className="flex items-center gap-2">
+        <img
+          src="/icons/navbar-settings.png"
+          alt=""
+          className="h-7 w-7 rounded-lg object-cover"
+        />
+        <h1 className="text-2xl font-semibold">Login</h1>
+      </div>
+      {checking ? (
+        <div className="panel panel-accent p-4 text-muted">
+          Checking session...
+        </div>
+      ) : null}
+      <form
+        onSubmit={onSubmit}
+        className="space-y-3 panel panel-accent p-4"
+      >
+        <label className="block text-sm text-muted">
+          Email
+          <input
+            type="email"
+            className="mt-1 w-full input-base px-3 py-2 text-sm"
+            value={email}
+            onChange={e => setEmail(e.target.value)}
+            autoComplete="email"
+            required
+            disabled={loading || checking}
+          />
+        </label>
+        <label className="block text-sm text-muted">
+          Password
+          <input
+            type="password"
+            className="mt-1 w-full input-base px-3 py-2 text-sm"
+            value={password}
+            onChange={e => setPassword(e.target.value)}
+            autoComplete="current-password"
+            required
+            disabled={loading || checking}
+          />
+        </label>
+        <div className="flex items-center justify-between text-sm text-muted">
+          <label className="flex items-center gap-2">
+            <input
+              type="checkbox"
+              className="h-4 w-4 rounded border-accent-weak bg-input"
+              checked={remember}
+              onChange={e => setRemember(e.target.checked)}
+              disabled={loading || checking}
+            />
+            Remember me
+          </label>
+          <a
+            href="#"
+            onClick={e => e.preventDefault()}
+            className="text-[color:var(--color-accent)]"
+          >
+            Forgot password?
+          </a>
+        </div>
+        {error ? <div className="text-sm text-red-400">{error}</div> : null}
+        <button
+          type="submit"
+          disabled={loading || checking}
+          className="w-full rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+        >
+          {loading ? "Signing in..." : "Sign in"}
+        </button>
+        <div className="text-center text-sm text-muted">
+          No account?{" "}
+          <a href="/register" className="text-[color:var(--color-accent)]">
+            Register
+          </a>
+        </div>
+      </form>
+    </div>
+  );
+}
diff --git a/apps/web/app/page.tsx b/apps/web/app/page.tsx
new file mode 100644
index 0000000..e648504
--- /dev/null
+++ b/apps/web/app/page.tsx
@@ -0,0 +1,10 @@
+import { redirect } from "next/navigation";
+import { getSessionUser } from "@/lib/server/session";
+import DashboardContent from "@/components/dashboard-content";
+
+export default async function Page() {
+  const user = await getSessionUser();
+  if (!user) redirect("/login");
+
+  return <DashboardContent />;
+}
diff --git a/apps/web/app/register/page.tsx b/apps/web/app/register/page.tsx
new file mode 100644
index 0000000..f7447fd
--- /dev/null
+++ b/apps/web/app/register/page.tsx
@@ -0,0 +1,90 @@
+"use client";
+
+import { useRouter } from "next/navigation";
+import { useState } from "react";
+import { useAuthContext } from "@/hooks/auth-context";
+
+export default function RegisterPage() {
+  const router = useRouter();
+  const [email, setEmail] = useState("");
+  const [displayName, setDisplayName] = useState("");
+  const [password, setPassword] = useState("");
+  const [error, setError] = useState("");
+  const { register, loading } = useAuthContext();
+
+  async function onSubmit(e: React.FormEvent<HTMLFormElement>) {
+    e.preventDefault();
+    setError("");
+    const result = await register({ email, password, displayName });
+    if (!result.ok) {
+      setError(result.error || "Registration failed");
+      return;
+    }
+    router.replace("/");
+  }
+
+  return (
+    <div className="mx-auto max-w-sm space-y-4">
+      <div className="flex items-center gap-2">
+        <img
+          src="/icons/navbar-settings.png"
+          alt=""
+          className="h-7 w-7 rounded-lg object-cover"
+        />
+        <h1 className="text-2xl font-semibold">Register</h1>
+      </div>
+      <form
+        onSubmit={onSubmit}
+        className="space-y-3 panel panel-accent p-4"
+      >
+        <label className="block text-sm text-muted">
+          Email
+          <input
+            type="email"
+            className="mt-1 w-full input-base px-3 py-2 text-sm"
+            value={email}
+            onChange={e => setEmail(e.target.value)}
+            autoComplete="email"
+            required
+          />
+        </label>
+        <label className="block text-sm text-muted">
+          Display name
+          <input
+            type="text"
+            className="mt-1 w-full input-base px-3 py-2 text-sm"
+            value={displayName}
+            onChange={e => setDisplayName(e.target.value)}
+            autoComplete="name"
+          />
+        </label>
+        <label className="block text-sm text-muted">
+          Password
+          <input
+            type="password"
+            className="mt-1 w-full input-base px-3 py-2 text-sm"
+            value={password}
+            onChange={e => setPassword(e.target.value)}
+            autoComplete="new-password"
+            minLength={8}
+            required
+          />
+        </label>
+        {error ? <div className="text-sm text-red-400">{error}</div> : null}
+        <button
+          type="submit"
+          disabled={loading}
+          className="w-full rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+        >
+          {loading ? "Creating account..." : "Create account"}
+        </button>
+        <div className="text-center text-sm text-muted">
+          Already have an account?{" "}
+          <a href="/login" className="text-[color:var(--color-accent)]">
+            Login
+          </a>
+        </div>
+      </form>
+    </div>
+  );
+}
diff --git a/apps/web/components/app-frame.tsx b/apps/web/components/app-frame.tsx
new file mode 100644
index 0000000..34b6e12
--- /dev/null
+++ b/apps/web/components/app-frame.tsx
@@ -0,0 +1,26 @@
+"use client";
+
+import type React from "react";
+import { usePathname } from "next/navigation";
+import Navbar from "@/components/navbar";
+
+const NO_NAVBAR_PATHS = new Set(["/login", "/register"]);
+const NO_NAVBAR_PREFIXES = ["/invite"];
+
+type AppFrameProps = {
+    children: React.ReactNode;
+};
+
+export default function AppFrame({ children }: AppFrameProps) {
+    const pathname = usePathname();
+    const hideNavbar = pathname
+        ? NO_NAVBAR_PATHS.has(pathname) || NO_NAVBAR_PREFIXES.some(prefix => pathname.startsWith(prefix))
+        : false;
+
+    return (
+        <>
+            {hideNavbar ? null : <Navbar />}
+            <main className="mx-auto max-w-5xl px-4 py-6">{children}</main>
+        </>
+    );
+}
diff --git a/apps/web/components/app-providers.tsx b/apps/web/components/app-providers.tsx
new file mode 100644
index 0000000..099019e
--- /dev/null
+++ b/apps/web/components/app-providers.tsx
@@ -0,0 +1,20 @@
+"use client";
+
+import type React from "react";
+import { AuthProvider } from "@/hooks/auth-context";
+import { GroupsProvider } from "@/hooks/groups-context";
+import { NotificationsProvider } from "@/hooks/notifications-context";
+
+type AppProvidersProps = {
+    children: React.ReactNode;
+};
+
+export default function AppProviders({ children }: AppProvidersProps) {
+    return (
+        <NotificationsProvider>
+            <AuthProvider>
+                <GroupsProvider>{children}</GroupsProvider>
+            </AuthProvider>
+        </NotificationsProvider>
+    );
+}
diff --git a/apps/web/components/bucket-card.tsx b/apps/web/components/bucket-card.tsx
new file mode 100644
index 0000000..6b13b2a
--- /dev/null
+++ b/apps/web/components/bucket-card.tsx
@@ -0,0 +1,151 @@
+import { Bucket } from "@/lib/server/buckets";
+import React from "react";
+
+
+type BucketCardProps = {
+    bucket: Bucket;
+
+    icon?: string | null;
+
+    isExpanded: boolean;
+    toggleExpanded: (bucketId: number) => void;
+
+    isMenuOpen: boolean;
+    setMenuOpenId: React.Dispatch<React.SetStateAction<number | null>>;
+
+    setConfirmDeleteId: (bucketId: number) => void;
+    openEdit: (bucketId: number) => void;
+
+    limit: number;
+
+    usageLabel: string;
+    renderUsageBar: (bucket: Bucket) => React.ReactNode;
+};
+
+export function BucketCard({
+    bucket,
+    icon,
+    isExpanded,
+    toggleExpanded,
+    isMenuOpen,
+    setMenuOpenId,
+    setConfirmDeleteId,
+    openEdit,
+    limit,
+    usageLabel,
+    renderUsageBar,
+}: BucketCardProps) {
+    return (
+        <div
+            className="w-full max-w-[360px] rounded-lg border border-accent-weak bg-panel px-3 py-3 transition hover:border-accent"
+            onClick={() => toggleExpanded(bucket.id)}
+        >
+            <div className="flex items-start justify-between gap-3">
+                <div className="flex min-w-0 items-start gap-3">
+                    <div className="flex h-11 w-11 items-center justify-center rounded-full border border-accent-weak bg-surface text-lg">
+                        {icon || "🚫"}
+                    </div>
+
+                    <div className="min-w-0">
+                        <div className="text-sm font-semibold truncate">{bucket.name}</div>
+                        {bucket.description ? (
+                            <div className={`text-xs text-soft ${isExpanded ? "" : "truncate"}`}>
+                                {bucket.description}
+                            </div>
+                        ) : null}
+                    </div>
+                </div>
+
+                <div className="relative" data-bucket-menu>
+                    <button
+                        type="button"
+                        className="rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                        onClick={(event) => {
+                            event.stopPropagation();
+                            setMenuOpenId((prev) => (prev === bucket.id ? null : bucket.id));
+                        }}
+                        aria-label="Bucket actions"
+                        data-bucket-menu-button
+                    >
+                        ⋯
+                    </button>
+
+                    {isMenuOpen ? (
+                        <div className="absolute right-0 mt-2 w-40 rounded-lg border border-accent-weak bg-panel p-1 text-xs shadow-lg">
+                            <button
+                                type="button"
+                                className="w-full rounded-md px-2 py-1 text-left hover:bg-accent-soft"
+                                onClick={(event) => {
+                                    event.stopPropagation();
+                                    openEdit(bucket.id);
+                                }}
+                            >
+                                Edit
+                            </button>
+
+                            <button
+                                type="button"
+                                className="w-full rounded-md px-2 py-1 text-left text-red-200 hover:bg-red-500/10"
+                                onClick={(event) => {
+                                    event.stopPropagation();
+                                    setConfirmDeleteId(bucket.id);
+                                }}
+                            >
+                                Delete
+                            </button>
+                        </div>
+                    ) : null}
+                </div>
+            </div>
+
+            {limit > 0 ? (
+                <>
+                    {renderUsageBar(bucket)}
+                    {isExpanded ? (
+                        <div className="mt-2 space-y-2 text-xs text-soft">
+                            <div>{usageLabel}</div>
+                            <div className="flex flex-wrap gap-2">
+                                {bucket.tags?.length ? (
+                                    bucket.tags.map((tag) => (
+                                        <span
+                                            key={tag}
+                                            className="rounded-full border border-accent-weak bg-accent-soft px-2 py-0.5 text-[11px]"
+                                        >
+                                            #{tag}
+                                        </span>
+                                    ))
+                                ) : (
+                                    <span className="text-[11px] text-soft">No tags</span>
+                                )}
+                            </div>
+                        </div>
+                    ) : null}
+                </>
+            ) : isExpanded ? (
+                <div className="mt-2 flex flex-wrap gap-2 text-xs text-soft">
+                    {bucket.tags?.length ? (
+                        bucket.tags.map((tag) => (
+                            <span
+                                key={tag}
+                                className="rounded-full border border-accent-weak bg-accent-soft px-2 py-0.5 text-[11px]"
+                            >
+                                #{tag}
+                            </span>
+                        ))
+                    ) : (
+                        <span className="text-[11px] text-soft">No tags</span>
+                    )}
+                </div>
+            ) : null}
+        </div>
+    );
+}
+
+export default React.memo(BucketCard, (prev, next) => (
+    prev.bucket === next.bucket
+    && prev.icon === next.icon
+    && prev.isExpanded === next.isExpanded
+    && prev.isMenuOpen === next.isMenuOpen
+    && prev.limit === next.limit
+    && prev.usageLabel === next.usageLabel
+));
diff --git a/apps/web/components/buckets-panel.tsx b/apps/web/components/buckets-panel.tsx
new file mode 100644
index 0000000..303c571
--- /dev/null
+++ b/apps/web/components/buckets-panel.tsx
@@ -0,0 +1,230 @@
+"use client";
+
+import { useEffect, useMemo, useState } from "react";
+import { useGroupsContext } from "@/hooks/groups-context";
+import useBuckets from "@/hooks/use-buckets";
+import useTags from "@/hooks/use-tags";
+import NewBucketModal from "@/components/new-bucket-modal";
+import ConfirmSlideModal from "@/components/confirm-slide-modal";
+import { bucketIcons } from "@/lib/shared/bucket-icons";
+import BucketCard from "./bucket-card";
+import { useEntryMutation } from "@/hooks/entry-mutation-context";
+
+export default function BucketsPanel() {
+    const { activeGroupId } = useGroupsContext();
+    const { buckets, loading, error, createBucket, updateBucket, deleteBucket, reload } = useBuckets(activeGroupId);
+    const { mutationVersion } = useEntryMutation();
+    const { tags: tagSuggestions } = useTags(activeGroupId);
+    const [modalOpen, setModalOpen] = useState(false);
+    const [editId, setEditId] = useState<number | null>(null);
+    const [confirmDeleteId, setConfirmDeleteId] = useState<number | null>(null);
+    const [menuOpenId, setMenuOpenId] = useState<number | null>(null);
+    const [expandedIds, setExpandedIds] = useState<number[]>([]);
+    const [form, setForm] = useState({
+        name: "",
+        description: "",
+        iconKey: "none",
+        budgetLimitDollars: "",
+        tags: [] as string[],
+        necessity: "BOTH",
+        windowDays: "30"
+    });
+
+    const iconMap = useMemo(() => new Map(bucketIcons.map(item => [item.key, item.icon])), []);
+    const orderedBuckets = useMemo(() => [...buckets].sort((a, b) => a.position - b.position || a.name.localeCompare(b.name)), [buckets]);
+
+    useEffect(() => {
+        function handleClickOutside(event: MouseEvent) {
+            if (!menuOpenId) return;
+            const target = event.target as HTMLElement | null;
+            if (!target) return;
+            if (target.closest("[data-bucket-menu]") || target.closest("[data-bucket-menu-button]")) return;
+            setMenuOpenId(null);
+        }
+        document.addEventListener("mousedown", handleClickOutside);
+        return () => document.removeEventListener("mousedown", handleClickOutside);
+    }, [menuOpenId]);
+
+    useEffect(() => {
+        if (!activeGroupId) return;
+        if (mutationVersion === 0) return;
+        reload();
+    }, [mutationVersion, activeGroupId, reload]);
+
+    function resetForm() {
+        setForm({ name: "", description: "", iconKey: "none", budgetLimitDollars: "", tags: [], necessity: "BOTH", windowDays: "30" });
+        setEditId(null);
+    }
+
+    function openCreate() {
+        resetForm();
+        setModalOpen(true);
+    }
+
+    function openEdit(bucketId: number) {
+        const bucket = buckets.find(item => item.id === bucketId);
+        if (!bucket) return;
+        setEditId(bucketId);
+        setForm({
+            name: bucket.name,
+            description: bucket.description || "",
+            iconKey: bucket.iconKey || "none",
+            budgetLimitDollars: bucket.budgetLimitDollars != null ? String(bucket.budgetLimitDollars) : "",
+            tags: bucket.tags || [],
+            necessity: bucket.necessity,
+            windowDays: bucket.windowDays ? String(bucket.windowDays) : "30"
+        });
+        setModalOpen(true);
+        setMenuOpenId(null);
+    }
+
+    async function handleSubmit(e: React.FormEvent<HTMLFormElement>) {
+        e.preventDefault();
+        const budget = form.budgetLimitDollars ? Number(form.budgetLimitDollars) : null;
+        const windowDays = form.windowDays ? Number(form.windowDays) : 30;
+        if (!form.name.trim()) return;
+        const iconKey = form.iconKey && form.iconKey !== "none" ? form.iconKey : null;
+        if (!Number.isFinite(windowDays) || windowDays < 1 || windowDays > 365) return;
+
+        if (editId) {
+            const ok = await updateBucket({
+                id: editId,
+                name: form.name.trim(),
+                description: form.description.trim() || undefined,
+                iconKey,
+                budgetLimitDollars: budget,
+                tags: form.tags,
+                necessity: form.necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+                windowDays
+            });
+            if (ok) setModalOpen(false);
+        } else {
+            const ok = await createBucket({
+                name: form.name.trim(),
+                description: form.description.trim() || undefined,
+                iconKey,
+                budgetLimitDollars: budget,
+                tags: form.tags,
+                necessity: form.necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+                windowDays
+            });
+            if (ok) setModalOpen(false);
+        }
+    }
+
+    function toggleExpanded(bucketId: number) {
+        setExpandedIds(prev => prev.includes(bucketId)
+            ? prev.filter(id => id !== bucketId)
+            : [...prev, bucketId]);
+    }
+
+    function budgetUsage(bucket: typeof buckets[number]) {
+        const limit = bucket.budgetLimitDollars || 0;
+        const spent = bucket.totalUsage || 0;
+        const pct = limit > 0 ? (spent / limit) * 100 : 0;
+        return { limit, spent, pct };
+    }
+
+    function renderUsageBar(bucket: typeof buckets[number]) {
+        const { limit, spent, pct } = budgetUsage(bucket);
+        if (!limit) return null;
+        const clamped = Math.max(0, pct);
+        const overage = Math.max(0, clamped - 100);
+        const overColor = clamped > 200 ? "bg-red-500" : "bg-yellow-400";
+        const tone = overage > 0 ? overColor : clamped >= 80 ? "bg-yellow-400" : "bg-green-400";
+        return (
+            <div className="mt-3">
+                <div className="h-2 w-full rounded-full bg-surface">
+                    <div
+                        className={`h-2 rounded-full ${tone}`}
+                        style={{ width: `${Math.min(100, clamped)}%` }}
+                    />
+                </div>
+            </div>
+        );
+    }
+
+    return (
+        <>
+            <div className="panel panel-accent p-4">
+                <div className="card-header">
+                    <h2 className="card-title text-lg">Buckets</h2>
+                    <button
+                        type="button"
+                        onClick={openCreate}
+                        className="flex h-8 w-8 -translate-y-0.5 items-center justify-center rounded-full border border-accent bg-panel text-lg font-semibold leading-none hover:border-accent-strong disabled:opacity-50"
+                        disabled={!activeGroupId}
+                        aria-label="Add bucket"
+                    >
+                        +
+                    </button>
+                </div>
+                <div className="mt-3 grid gap-3 sm:grid-cols-2 xl:grid-cols-3">
+
+
+                    {!activeGroupId ? (
+                        <div className="text-sm text-muted">Select a group to view buckets.</div>
+                    ) : loading ? (
+                        <div className="space-y-2">
+                            {[0, 1].map(row => (
+                                <div key={row} className="rounded-lg border border-accent-weak bg-panel px-3 py-3">
+                                    <div className="animate-pulse space-y-2">
+                                        <div className="h-4 w-28 rounded bg-surface" />
+                                        <div className="h-3 w-40 rounded bg-surface" />
+                                    </div>
+                                </div>
+                            ))}
+                        </div>
+
+
+                    ) : orderedBuckets.length ? (
+                        orderedBuckets.map(bucket => {
+                            const icon = bucket.iconKey ? iconMap.get(bucket.iconKey) : null;
+                            const { limit, spent } = budgetUsage(bucket);
+                            const isExpanded = expandedIds.includes(bucket.id);
+                            const usageLabel = limit ? `$${spent.toFixed(2)} / $${limit.toFixed(2)}` : "";
+                            return <BucketCard
+                                key={bucket.id}
+                                bucket={bucket}
+                                icon={icon}
+                                isExpanded={isExpanded}
+                                toggleExpanded={toggleExpanded}
+                                isMenuOpen={menuOpenId === bucket.id}
+                                setMenuOpenId={setMenuOpenId}
+                                setConfirmDeleteId={setConfirmDeleteId}
+                                openEdit={openEdit}
+                                limit={limit}
+                                usageLabel={usageLabel}
+                                renderUsageBar={renderUsageBar}
+                            />
+                        })
+                    ) : (
+                        <div className="text-sm text-muted">No buckets yet.</div>
+                    )}
+                </div>
+            </div>
+            <NewBucketModal
+                isOpen={modalOpen}
+                title={editId ? "Edit bucket" : "New bucket"}
+                form={form}
+                error={error}
+                onClose={() => setModalOpen(false)}
+                onSubmit={handleSubmit}
+                onChange={next => setForm(prev => ({ ...prev, ...next }))}
+                tagSuggestions={tagSuggestions}
+            />
+            <ConfirmSlideModal
+                isOpen={Boolean(confirmDeleteId)}
+                title="Delete bucket"
+                description="This will permanently remove the bucket."
+                confirmLabel="Delete bucket"
+                onClose={() => setConfirmDeleteId(null)}
+                onConfirm={async () => {
+                    if (!confirmDeleteId) return;
+                    const ok = await deleteBucket(confirmDeleteId);
+                    if (ok) setConfirmDeleteId(null);
+                }}
+            />
+        </>
+    );
+}
diff --git a/apps/web/components/confirm-slide-modal.tsx b/apps/web/components/confirm-slide-modal.tsx
new file mode 100644
index 0000000..4bcbbcf
--- /dev/null
+++ b/apps/web/components/confirm-slide-modal.tsx
@@ -0,0 +1,105 @@
+"use client";
+
+import { useEffect, useRef, useState } from "react";
+
+type ConfirmSlideModalProps = {
+    isOpen: boolean;
+    title: string;
+    description?: string;
+    confirmLabel?: string;
+    onClose: () => void;
+    onConfirm: () => void;
+};
+
+export default function ConfirmSlideModal({
+    isOpen,
+    title,
+    description,
+    confirmLabel = "Confirm",
+    onClose,
+    onConfirm
+}: ConfirmSlideModalProps) {
+    const trackRef = useRef<HTMLDivElement | null>(null);
+    const [dragX, setDragX] = useState(0);
+    const [dragging, setDragging] = useState(false);
+    const handleSize = 44;
+
+    function handlePointerDown(event: React.PointerEvent<HTMLButtonElement>) {
+        event.preventDefault();
+        setDragging(true);
+        (event.currentTarget as HTMLElement).setPointerCapture(event.pointerId);
+    }
+
+    function handlePointerMove(event: React.PointerEvent<HTMLButtonElement>) {
+        if (!dragging) return;
+        const track = trackRef.current;
+        if (!track) return;
+        const rect = track.getBoundingClientRect();
+        const next = Math.min(Math.max(0, event.clientX - rect.left - handleSize / 2), rect.width - handleSize);
+        setDragX(next);
+    }
+
+    function handlePointerUp(event: React.PointerEvent<HTMLButtonElement>) {
+        if (!dragging) return;
+        setDragging(false);
+        (event.currentTarget as HTMLElement).releasePointerCapture(event.pointerId);
+        const track = trackRef.current;
+        if (!track) return;
+        const threshold = (track.clientWidth - handleSize) * 0.8;
+        if (dragX >= threshold) {
+            setDragX(0);
+            onConfirm();
+        } else {
+            setDragX(0);
+        }
+    }
+    useEffect(() => {
+        if (!isOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") onClose();
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [isOpen, onClose]);
+
+    if (!isOpen) return null;
+
+    return (
+        <div className="fixed inset-0 z-[70] flex items-center justify-center bg-black/60 p-4 !mt-0" onClick={onClose}>
+            <div className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5" onClick={event => event.stopPropagation()}>
+                <div className="text-lg font-semibold">{title}</div>
+                {description ? <p className="mt-2 text-sm text-muted">{description}</p> : null}
+                <div className="mt-4">
+                    <div className="text-xs text-soft">Slide to confirm</div>
+                    <div
+                        ref={trackRef}
+                        className="mt-2 h-11 rounded-full border border-accent-weak bg-surface relative overflow-hidden touch-none select-none"
+                    >
+                        <div
+                            className="absolute inset-y-0 left-0 bg-accent-soft rounded-full"
+                            style={{ width: dragX + handleSize }}
+                        />
+                        <button
+                            type="button"
+                            className="absolute top-0 left-0 h-11 w-11 rounded-full border border-accent bg-panel text-xl font-semibold text-[color:var(--color-text)] touch-none select-none leading-none"
+                            style={{ transform: `translateX(${dragX}px)` }}
+                            onPointerDown={handlePointerDown}
+                            onPointerMove={handlePointerMove}
+                            onPointerUp={handlePointerUp}
+                            onPointerCancel={handlePointerUp}
+                            aria-label="Slide to confirm"
+                        >
+                            ▸
+                        </button>
+                    </div>
+                </div>
+                <div className="mt-4 flex items-center justify-between">
+                    <div className="text-xs text-soft">{confirmLabel}</div>
+                    <button type="button" className="rounded-lg btn-outline-accent px-3 py-1.5 text-sm" onClick={onClose}>
+                        Cancel
+                    </button>
+                </div>
+            </div>
+        </div>
+    );
+}
diff --git a/apps/web/components/dashboard-content.tsx b/apps/web/components/dashboard-content.tsx
new file mode 100644
index 0000000..4b3264d
--- /dev/null
+++ b/apps/web/components/dashboard-content.tsx
@@ -0,0 +1,45 @@
+"use client";
+
+import { useGroupsContext } from "@/hooks/groups-context";
+import EntriesPanel from "@/components/entries-panel";
+import BucketsPanel from "@/components/buckets-panel";
+import { EntryMutationProvider } from "@/hooks/entry-mutation-context";
+
+
+export default function DashboardContent() {
+    const { groups, activeGroupId, loading } = useGroupsContext();
+    const activeGroup = groups.find((group) => group.id === activeGroupId) ?? null;
+
+    if (loading) {
+        return (
+            <div className="space-y-4">
+                <div className="panel panel-accent p-4">
+                    <div className="space-y-3 animate-pulse">
+                        <div className="h-4 w-40 rounded bg-surface" />
+                        <div className="h-3 w-64 rounded bg-surface" />
+                        <div className="h-3 w-52 rounded bg-surface" />
+                    </div>
+                </div>
+            </div>
+        );
+    }
+
+    if (!activeGroup) {
+        return (
+            <div className="space-y-4">
+                <div className="panel panel-accent p-4 text-sm text-muted">
+                    Create or join a group to add entries.
+                </div>
+            </div>
+        );
+    }
+
+    return (
+        <EntryMutationProvider>
+            <div className="space-y-4">
+                <BucketsPanel />
+                <EntriesPanel />
+            </div>
+        </EntryMutationProvider>
+    );
+}
diff --git a/apps/web/components/entries-panel.tsx b/apps/web/components/entries-panel.tsx
new file mode 100644
index 0000000..9cc45de
--- /dev/null
+++ b/apps/web/components/entries-panel.tsx
@@ -0,0 +1,785 @@
+"use client";
+
+import { useEffect, useMemo, useRef, useState } from "react";
+import { useRouter } from "next/navigation";
+import useEntries from "@/hooks/use-entries";
+import { useGroupsContext } from "@/hooks/groups-context";
+import NewEntryModal from "@/components/new-entry-modal";
+import EntryDetailsModal from "@/components/entry-details-modal";
+import { useNotificationsContext } from "@/hooks/notifications-context";
+import useTags from "@/hooks/use-tags";
+import ConfirmSlideModal from "@/components/confirm-slide-modal";
+import useGroupSettings from "@/hooks/use-group-settings";
+import TagInput from "@/components/tag-input";
+import { emitEntryMutated } from "@/lib/client/entry-mutation-events";
+
+export default function EntriesPanel() {
+    const today = new Date().toISOString().slice(0, 10);
+    const { groups, activeGroupId } = useGroupsContext();
+    const router = useRouter();
+    const { entries, loading, error, createEntry, updateEntry, deleteEntry } = useEntries(activeGroupId);
+    const { notify } = useNotificationsContext();
+    const { tags: tagSuggestions } = useTags(activeGroupId);
+    const { settings } = useGroupSettings(activeGroupId);
+    const activeGroup = groups.find(group => group.id === activeGroupId) || null;
+    const canManageTags = Boolean(activeGroup && (activeGroup.role !== "MEMBER" || settings.allowMemberTagManage));
+    const emptyTagActionLabel = canManageTags
+        ? "No Tags Assigned Yet - Click To Assign Tags"
+        : "No Tags Assigned Yet - Contact Your Group Admin";
+    const [form, setForm] = useState({
+        amountDollars: "",
+        occurredAt: today,
+        necessity: "NECESSARY",
+        notes: "",
+        tags: [] as string[],
+        entryType: "SPENDING" as "SPENDING" | "INCOME",
+        isRecurring: false,
+        frequency: "MONTHLY" as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY",
+        intervalCount: 1,
+        endCondition: "NEVER" as "NEVER" | "AFTER_COUNT" | "BY_DATE",
+        endCount: "",
+        endDate: ""
+    });
+    const [isModalOpen, setIsModalOpen] = useState(false);
+    const [detailsOpen, setDetailsOpen] = useState(false);
+    const [selectedId, setSelectedId] = useState<number | null>(null);
+    const [selectedIndex, setSelectedIndex] = useState<number | null>(null);
+    const [detailsForm, setDetailsForm] = useState({
+        amountDollars: "",
+        occurredAt: today,
+        necessity: "NECESSARY",
+        notes: "",
+        tags: [] as string[],
+        entryType: "SPENDING" as "SPENDING" | "INCOME",
+        isRecurring: false,
+        frequency: "MONTHLY" as "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY",
+        intervalCount: 1,
+        endCondition: "NEVER" as "NEVER" | "AFTER_COUNT" | "BY_DATE",
+        endCount: "",
+        endDate: ""
+    });
+    const [detailsOriginal, setDetailsOriginal] = useState<typeof detailsForm | null>(null);
+    const [removedTags, setRemovedTags] = useState<string[]>([]);
+    const [confirmDeleteOpen, setConfirmDeleteOpen] = useState(false);
+    const [discardOpen, setDiscardOpen] = useState(false);
+    const [filterOpen, setFilterOpen] = useState(false);
+    const [entryTab, setEntryTab] = useState<"SINGLE" | "RECURRING">("SINGLE");
+    const emptyFilters = {
+        amountMin: "",
+        amountMax: "",
+        dateFrom: "",
+        dateTo: "",
+        necessity: "ANY",
+        notesQuery: "",
+        tags: [] as string[],
+        tagsMode: "ANY" as "ANY" | "ALL"
+    };
+    const [filters, setFilters] = useState(emptyFilters);
+    const amountInputRef = useRef<HTMLInputElement>(null);
+    const tagsInputRef = useRef<HTMLInputElement>(null);
+    const pendingDiscardRef = useRef<
+        | { type: "close" }
+        | { type: "prev" }
+        | { type: "next" }
+        | { type: "open"; entry: typeof entries[number]; index: number }
+        | null
+    >(null);
+    const filteredEntries = useMemo(() => {
+        if (!entries.length) return entries;
+        const min = filters.amountMin ? Number(filters.amountMin) : null;
+        const max = filters.amountMax ? Number(filters.amountMax) : null;
+        const from = filters.dateFrom ? new Date(filters.dateFrom).getTime() : null;
+        const to = filters.dateTo ? new Date(filters.dateTo).getTime() : null;
+        const query = filters.notesQuery.trim().toLowerCase();
+        const tagsFilter = filters.tags.map(tag => tag.toLowerCase());
+        return entries.filter(entry => {
+            if (min != null && entry.amountDollars < min) return false;
+            if (max != null && entry.amountDollars > max) return false;
+            if (from != null) {
+                const time = new Date(entry.occurredAt).getTime();
+                if (!Number.isNaN(from) && time < from) return false;
+            }
+            if (to != null) {
+                const time = new Date(entry.occurredAt).getTime();
+                if (!Number.isNaN(to) && time > to + 24 * 60 * 60 * 1000 - 1) return false;
+            }
+            if (filters.necessity !== "ANY" && entry.necessity !== filters.necessity) return false;
+            if (query) {
+                const notes = (entry.notes || "").toLowerCase();
+                if (!notes.includes(query)) return false;
+            }
+            if (tagsFilter.length) {
+                const entryTags = (entry.tags || []).map(tag => tag.toLowerCase());
+                if (filters.tagsMode === "ALL") {
+                    if (!tagsFilter.every(tag => entryTags.includes(tag))) return false;
+                } else if (!tagsFilter.some(tag => entryTags.includes(tag))) return false;
+            }
+            return true;
+        });
+    }, [entries, filters]);
+    const visibleEntries = useMemo(() => filteredEntries.filter(entry => entry.isRecurring === (entryTab === "RECURRING")), [filteredEntries, entryTab]);
+    const totalEntries = visibleEntries.length;
+    const activeFilterCount = useMemo(() => {
+        let count = 0;
+        if (filters.amountMin) count += 1;
+        if (filters.amountMax) count += 1;
+        if (filters.dateFrom) count += 1;
+        if (filters.dateTo) count += 1;
+        if (filters.necessity !== "ANY") count += 1;
+        if (filters.notesQuery.trim()) count += 1;
+        if (filters.tags.length) count += 1;
+        return count;
+    }, [filters]);
+
+    function handleEmptyTagAction() {
+        if (!activeGroupId || !canManageTags) return;
+        router.push("/groups/settings");
+    }
+
+    useEffect(() => {
+        if (tagsInputRef.current)
+            tagsInputRef.current.setCustomValidity(form.tags.length ? "" : "Please fill out this field");
+    }, [form.tags.length]);
+
+    useEffect(() => {
+        if (!filterOpen && !discardOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") {
+                if (discardOpen) handleCancelDiscard();
+                if (filterOpen) setFilterOpen(false);
+            }
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [discardOpen, filterOpen]);
+
+    async function handleCreate(e: React.FormEvent<HTMLFormElement>) {
+        e.preventDefault();
+        if (tagsInputRef.current)
+            tagsInputRef.current.setCustomValidity(form.tags.length ? "" : "Please fill out this field");
+        if (!e.currentTarget.reportValidity()) {
+            if (!form.amountDollars) amountInputRef.current?.focus();
+            else if (!form.tags.length) tagsInputRef.current?.focus();
+            return;
+        }
+        const amountDollars = Number(form.amountDollars || 0);
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0) {
+            return;
+        }
+        if (!form.occurredAt) {
+            return;
+        }
+        if (!form.tags.length) {
+            return;
+        }
+
+        const purchaseType = form.tags.join(", ") || "General";
+
+        const nextRunAt = form.isRecurring ? form.occurredAt : null;
+        const createdEntry = await createEntry({
+            entryType: form.entryType,
+            amountDollars,
+            occurredAt: form.occurredAt,
+            necessity: form.necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: form.notes.trim() || undefined,
+            tags: form.tags,
+            isRecurring: form.isRecurring,
+            frequency: form.isRecurring ? form.frequency : null,
+            intervalCount: form.intervalCount,
+            endCondition: form.isRecurring ? form.endCondition : null,
+            endCount: form.endCondition === "AFTER_COUNT" ? Number(form.endCount || 0) || null : null,
+            endDate: form.endCondition === "BY_DATE" ? form.endDate || null : null,
+            nextRunAt
+        });
+        if (createdEntry) {
+            setForm({
+                amountDollars: "",
+                occurredAt: today,
+                necessity: "NECESSARY",
+                notes: "",
+                tags: [],
+                entryType: "SPENDING",
+                isRecurring: false,
+                frequency: "MONTHLY",
+                intervalCount: 1,
+                endCondition: "NEVER",
+                endCount: "",
+                endDate: ""
+            });
+            setIsModalOpen(false);
+            notify({
+                title: "Entry added",
+                message: `${form.tags.join(", ")} · $${amountDollars.toFixed(2)}`,
+                tone: "success"
+            });
+            emitEntryMutated({ before: null, after: createdEntry });
+        }
+    }
+
+    function setDetailsFromEntry(entry: typeof entries[number], index: number) {
+        const nextId = Number(entry.id);
+        if (!Number.isFinite(nextId) || nextId <= 0) {
+            alert("Invalid entry id");
+            return;
+        }
+        const nextForm = {
+            amountDollars: String(entry.amountDollars),
+            occurredAt: new Date(entry.occurredAt).toISOString().slice(0, 10),
+            necessity: entry.necessity,
+            notes: entry.notes || "",
+            tags: entry.tags || [],
+            entryType: entry.entryType,
+            isRecurring: entry.isRecurring,
+            frequency: entry.frequency || "MONTHLY",
+            intervalCount: entry.intervalCount || 1,
+            endCondition: entry.endCondition || "NEVER",
+            endCount: entry.endCount ? String(entry.endCount) : "",
+            endDate: entry.endDate || ""
+        };
+        setSelectedId(nextId);
+        setSelectedIndex(index);
+        setRemovedTags([]);
+        setDetailsForm(nextForm);
+        setDetailsOriginal(nextForm);
+        setDetailsOpen(true);
+    }
+
+    function handleOpenDetails(entry: typeof entries[number], index: number) {
+        requestDiscard({ type: "open", entry, index });
+    }
+
+    function normalizeTags(tags: string[]) {
+        return tags.map(tag => tag.toLowerCase()).sort();
+    }
+
+    function handleFilterAddTag(tag: string) {
+        setFilters(prev => (prev.tags.includes(tag) ? prev : { ...prev, tags: [...prev.tags, tag] }));
+    }
+
+    function handleFilterToggleTag(tag: string) {
+        setFilters(prev => ({ ...prev, tags: prev.tags.filter(item => item !== tag) }));
+    }
+
+    function handleClearFilters() {
+        setFilters(emptyFilters);
+    }
+    function hasDetailsChanges() {
+        if (!detailsOriginal) return false;
+        const currentTags = detailsForm.tags.filter(tag => !removedTags.includes(tag));
+        const currentTagsKey = normalizeTags(currentTags).join("|");
+        const originalTagsKey = normalizeTags(detailsOriginal.tags).join("|");
+        return (
+            detailsForm.amountDollars !== detailsOriginal.amountDollars ||
+            detailsForm.occurredAt !== detailsOriginal.occurredAt ||
+            detailsForm.necessity !== detailsOriginal.necessity ||
+            detailsForm.notes !== detailsOriginal.notes ||
+            detailsForm.entryType !== detailsOriginal.entryType ||
+            detailsForm.isRecurring !== detailsOriginal.isRecurring ||
+            detailsForm.frequency !== detailsOriginal.frequency ||
+            detailsForm.intervalCount !== detailsOriginal.intervalCount ||
+            detailsForm.endCondition !== detailsOriginal.endCondition ||
+            detailsForm.endCount !== detailsOriginal.endCount ||
+            detailsForm.endDate !== detailsOriginal.endDate ||
+            currentTagsKey !== originalTagsKey
+        );
+    }
+
+    function requestDiscard(action: NonNullable<typeof pendingDiscardRef.current>) {
+        if (!detailsOpen || !hasDetailsChanges()) {
+            runDiscardAction(action);
+            return;
+        }
+        pendingDiscardRef.current = action;
+        setDiscardOpen(true);
+    }
+
+    function runDiscardAction(action: NonNullable<typeof pendingDiscardRef.current>) {
+        if (action.type === "close") {
+            setDetailsOpen(false);
+            setDetailsOriginal(null);
+            setRemovedTags([]);
+            return;
+        }
+        if (action.type === "open") {
+            setDetailsFromEntry(action.entry, action.index);
+            return;
+        }
+        if (!totalEntries) return;
+        const current = selectedIndex ?? 0;
+        if (action.type === "prev") {
+            const nextIndex = current === 0 ? totalEntries - 1 : current - 1;
+            setDetailsFromEntry(visibleEntries[nextIndex], nextIndex);
+        }
+        if (action.type === "next") {
+            const nextIndex = current === totalEntries - 1 ? 0 : current + 1;
+            setDetailsFromEntry(visibleEntries[nextIndex], nextIndex);
+        }
+    }
+
+    async function handleUpdate(e: React.FormEvent<HTMLFormElement>) {
+        e.preventDefault();
+        if (!selectedId) return;
+        if (!hasDetailsChanges()) return;
+
+        const amountDollars = Number(detailsForm.amountDollars || 0);
+        if (!Number.isFinite(amountDollars) || amountDollars <= 0) {
+            alert("Enter a valid amount");
+            return;
+        }
+        if (!detailsForm.occurredAt) {
+            alert("Select a date");
+            return;
+        }
+        const nextTags = detailsForm.tags.filter(tag => !removedTags.includes(tag));
+        if (!nextTags.length) {
+            alert("Add at least one tag");
+            return;
+        }
+
+        const purchaseType = nextTags.join(", ") || "General";
+
+        const nextRunAt = detailsForm.isRecurring ? detailsForm.occurredAt : null;
+        const beforeEntry = entries.find(entry => Number(entry.id) === Number(selectedId)) || null;
+        const updatedEntry = await updateEntry({
+            id: selectedId,
+            entryType: detailsForm.entryType,
+            amountDollars,
+            occurredAt: detailsForm.occurredAt,
+            necessity: detailsForm.necessity as "NECESSARY" | "BOTH" | "UNNECESSARY",
+            purchaseType,
+            notes: detailsForm.notes.trim() || undefined,
+            tags: nextTags,
+            isRecurring: detailsForm.isRecurring,
+            frequency: detailsForm.isRecurring ? detailsForm.frequency : null,
+            intervalCount: detailsForm.intervalCount,
+            endCondition: detailsForm.isRecurring ? detailsForm.endCondition : null,
+            endCount: detailsForm.endCondition === "AFTER_COUNT" ? Number(detailsForm.endCount || 0) || null : null,
+            endDate: detailsForm.endCondition === "BY_DATE" ? detailsForm.endDate || null : null,
+            nextRunAt
+        });
+        if (updatedEntry) {
+            setDetailsOpen(false);
+            setDetailsOriginal(null);
+            setRemovedTags([]);
+            notify({
+                title: "Entry updated",
+                message: `${nextTags.join(", ")} · $${amountDollars.toFixed(2)}`
+            });
+            emitEntryMutated({ before: beforeEntry, after: updatedEntry });
+        }
+    }
+
+    async function handleDelete() {
+        if (!selectedId || !Number.isFinite(selectedId)) return;
+        const beforeEntry = entries.find(entry => Number(entry.id) === Number(selectedId)) || null;
+        const deletedEntry = await deleteEntry(selectedId);
+        if (deletedEntry || beforeEntry) {
+            setDetailsOpen(false);
+            setDetailsOriginal(null);
+            setRemovedTags([]);
+            notify({
+                title: "Entry deleted",
+                message: detailsForm.tags.join(", ") || "Entry removed",
+                tone: "danger"
+            });
+            emitEntryMutated({ before: deletedEntry || beforeEntry, after: null });
+        }
+    }
+
+    function handleToggleTag(tag: string) {
+        setRemovedTags(prev => prev.includes(tag) ? prev.filter(item => item !== tag) : [...prev, tag]);
+    }
+
+    function handleAddTag(tag: string) {
+        setDetailsForm(prev => ({ ...prev, tags: prev.tags.includes(tag) ? prev.tags : [...prev.tags, tag] }));
+        setRemovedTags(prev => prev.filter(item => item !== tag));
+    }
+
+    function handlePrev() {
+        if (!totalEntries) return;
+        requestDiscard({ type: "prev" });
+    }
+
+    function handleNext() {
+        if (!totalEntries) return;
+        requestDiscard({ type: "next" });
+    }
+
+    function handleCloseDetails() {
+        requestDiscard({ type: "close" });
+    }
+
+    function handleConfirmDiscard() {
+        const action = pendingDiscardRef.current;
+        pendingDiscardRef.current = null;
+        setDiscardOpen(false);
+        if (action) runDiscardAction(action);
+    }
+
+    function handleCancelDiscard() {
+        pendingDiscardRef.current = null;
+        setDiscardOpen(false);
+    }
+
+    function handleRevertDetails() {
+        if (!detailsOriginal) return;
+        setDetailsForm(detailsOriginal);
+        setRemovedTags([]);
+    }
+
+    return (
+        <>
+            <div className="space-y-4">
+                <div className="panel panel-accent p-4">
+                    <div className="card-header">
+                        <div className="flex flex-wrap items-center gap-3">
+                            <h2 className="card-title text-lg">Entries</h2>
+                            <div className="flex items-center gap-0 rounded-full border border-accent-weak bg-panel">
+                                <button
+                                    type="button"
+                                    className={`mr-[-10px] w-20 rounded-full px-3 py-2 text-xs font-semibold ${entryTab === "SINGLE" ? "btn-accent" : "text-muted"}`}
+                                    onClick={() => setEntryTab(prev => prev === "SINGLE" ? "RECURRING" : "SINGLE")}
+                                >
+                                    Existing
+                                </button>
+                                <button
+                                    type="button"
+                                    className={`rounded-full w-20 px-3 py-2 text-xs font-semibold ${entryTab === "RECURRING" ? "btn-accent" : "text-muted"}`}
+                                    onClick={() => setEntryTab(prev => prev === "RECURRING" ? "SINGLE" : "RECURRING")}
+                                >
+                                    Scheduled
+                                </button>
+                            </div>
+                        </div>
+                        <div className="flex items-center gap-2">
+                            <button
+                                type="button"
+                                onClick={() => setFilterOpen(true)}
+                                className="rounded-lg btn-outline-accent px-3 py-1 text-xs font-semibold disabled:opacity-50"
+                                disabled={!activeGroupId}
+                            >
+                                Filters{activeFilterCount ? ` (${activeFilterCount})` : ""}
+                            </button>
+                            <button
+                                type="button"
+                                onClick={() => setIsModalOpen(true)}
+                                className="flex h-8 w-8 -translate-y-0.5 items-center justify-center rounded-full border border-accent bg-panel text-lg font-semibold leading-none hover:border-accent-strong disabled:opacity-50"
+                                disabled={!activeGroupId}
+                                aria-label="Add entry"
+                            >
+                                +
+                            </button>
+                        </div>
+                    </div>
+                    <div className="mt-3 space-y-2">
+                        {!activeGroupId ? (
+                            <div className="text-sm text-muted">Select a group to view entries.</div>
+                        ) : loading ? (
+                            <div className="space-y-2">
+                                {[0, 1, 2].map(row => (
+                                    <div key={row} className="rounded-lg border border-accent-weak bg-panel px-3 py-3">
+                                        <div className="animate-pulse space-y-2">
+                                            <div className="h-4 w-28 rounded bg-surface" />
+                                            <div className="h-3 w-40 rounded bg-surface" />
+                                            <div className="flex flex-wrap gap-2">
+                                                <div className="h-5 w-14 rounded-full bg-surface" />
+                                                <div className="h-5 w-12 rounded-full bg-surface" />
+                                                <div className="h-5 w-16 rounded-full bg-surface" />
+                                            </div>
+                                        </div>
+                                    </div>
+                                ))}
+                            </div>
+                        ) : entries.length ? (
+                            visibleEntries.length ? (
+                                visibleEntries.map((entry, index) => {
+                                    const tags = entry.tags ?? [];
+                                    const mobileTagLimit = 2;
+                                    const mobileTags = tags.slice(0, mobileTagLimit);
+                                    const extraTagCount = Math.max(tags.length - mobileTagLimit, 0);
+
+                                    return (
+                                        <div
+                                            key={entry.id}
+                                            className="flex items-center justify-between rounded-lg border border-accent-weak bg-panel px-3 py-2 text-sm transition hover:border-accent hover:bg-accent-soft"
+                                            onClick={() => handleOpenDetails(entry, index)}
+                                        >
+                                            <div className="flex flex-col gap-1">
+                                                <div className="text-base font-semibold">${entry.amountDollars.toFixed(2)}</div>
+                                                <div className="text-xs text-muted">
+                                                    {new Date(entry.occurredAt).toISOString().slice(0, 10)} · {entry.necessity}
+                                                </div>
+                                            </div>
+                                            {tags.length ? (
+                                                <>
+                                                    <div className="flex flex-wrap justify-end gap-2 md:hidden">
+                                                        {mobileTags.map(tag => (
+                                                            <span key={tag} className="rounded-full border border-accent-weak bg-accent-soft px-2 py-0.5 text-xs">
+                                                                #{tag}
+                                                            </span>
+                                                        ))}
+                                                        {extraTagCount ? (
+                                                            <span className="rounded-full border border-accent-weak bg-panel px-2 py-0.5 text-xs text-soft">
+                                                                {extraTagCount} more...
+                                                            </span>
+                                                        ) : null}
+                                                    </div>
+                                                    <div className="hidden flex-wrap justify-end gap-2 md:flex">
+                                                        {tags.map(tag => (
+                                                            <span key={tag} className="rounded-full border border-accent-weak bg-accent-soft px-2 py-0.5 text-xs">
+                                                                #{tag}
+                                                            </span>
+                                                        ))}
+                                                    </div>
+                                                </>
+                                            ) : (
+                                                <span className="rounded-full border border-accent-weak px-2 py-0.5 text-xs text-soft">No tags</span>
+                                            )}
+                                        </div>
+                                    );
+                                })
+                            ) : (
+                                <div className="space-y-2 text-sm text-muted">
+                                    <div>No matching entries.</div>
+                                    {activeFilterCount ? (
+                                        <button type="button" className="rounded-lg btn-outline-accent px-3 py-1 text-xs" onClick={handleClearFilters}>
+                                            Clear filters
+                                        </button>
+                                    ) : null}
+                                </div>
+                            )
+                        ) : (
+                            <div className="text-sm text-muted">No entries yet.</div>
+                        )}
+                    </div>
+                </div>
+            </div>
+            <NewEntryModal
+                isOpen={isModalOpen && Boolean(activeGroupId)}
+                form={form}
+                error={error}
+                onClose={() => setIsModalOpen(false)}
+                onSubmit={handleCreate}
+                onChange={next => setForm(prev => ({ ...prev, ...next }))}
+                tagSuggestions={tagSuggestions}
+                emptyTagActionLabel={emptyTagActionLabel}
+                emptyTagActionDisabled={!canManageTags}
+                onEmptyTagAction={handleEmptyTagAction}
+                amountInputRef={amountInputRef}
+                tagsInputRef={tagsInputRef}
+            />
+            <EntryDetailsModal
+                isOpen={detailsOpen}
+                form={detailsForm}
+                originalForm={detailsOriginal}
+                isDirty={hasDetailsChanges()}
+                error={error}
+                onClose={handleCloseDetails}
+                onSubmit={handleUpdate}
+                onRequestDelete={() => setConfirmDeleteOpen(true)}
+                onRevert={handleRevertDetails}
+                onChange={next => setDetailsForm(prev => ({ ...prev, ...next }))}
+                onAddTag={handleAddTag}
+                onToggleTag={handleToggleTag}
+                removedTags={removedTags}
+                tagSuggestions={tagSuggestions}
+                emptyTagActionLabel={emptyTagActionLabel}
+                emptyTagActionDisabled={!canManageTags}
+                onEmptyTagAction={handleEmptyTagAction}
+                onPrev={handlePrev}
+                onNext={handleNext}
+                loopHintPrev={selectedIndex === 0 && totalEntries > 1 ? "Loop" : ""}
+                loopHintNext={selectedIndex === totalEntries - 1 && totalEntries > 1 ? "Loop" : ""}
+                canNavigate={totalEntries > 1}
+            />
+            {filterOpen ? (
+                <div className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 p-4 !mt-0" onClick={() => setFilterOpen(false)}>
+                    <div
+                        className="w-full max-w-xl rounded-xl border border-accent-weak bg-panel p-4"
+                        onClick={event => event.stopPropagation()}
+                        onKeyDown={event => {
+                            if (event.key === "Escape") setFilterOpen(false);
+                        }}
+                        role="dialog"
+                        tabIndex={-1}
+                    >
+                        <div className="flex items-center justify-between">
+                            <h2 className="text-lg font-semibold">Filter Entries</h2>
+                            <div className="flex items-center gap-2">
+                                <button
+                                    type="button"
+                                    onClick={() => setFilterOpen(false)}
+                                    className="rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                                    aria-label="Close"
+                                >
+                                    ✕
+                                </button>
+                            </div>
+                        </div>
+                        <div className="mt-3 grid gap-3 md:grid-cols-2">
+                            <label className="text-sm text-muted md:col-span-2">
+                                Amount Range
+                                <div className="mt-1 flex items-center gap-2">
+                                    <input
+                                        type="number"
+                                        min={0}
+                                        step="0.01"
+                                        className="w-full input-base px-3 py-2 text-sm"
+                                        value={filters.amountMin}
+                                        placeholder="none"
+                                        onChange={e => setFilters(prev => ({ ...prev, amountMin: e.target.value }))}
+                                    />
+                                    <span className="text-xs text-soft">-</span>
+                                    <input
+                                        type="number"
+                                        min={0}
+                                        step="0.01"
+                                        className="w-full input-base px-3 py-2 text-sm"
+                                        value={filters.amountMax}
+                                        placeholder="none"
+                                        onChange={e => setFilters(prev => ({ ...prev, amountMax: e.target.value }))}
+                                    />
+                                </div>
+                            </label>
+                            <label className="text-sm text-muted md:col-span-2">
+                                Date Range
+                                <div className="mt-1 flex items-center gap-2">
+                                    <input
+                                        type="date"
+                                        className="no-date-icon w-full input-base px-3 py-2 text-sm"
+                                        value={filters.dateFrom}
+                                        placeholder="none"
+                                        onChange={e => setFilters(prev => ({ ...prev, dateFrom: e.target.value }))}
+                                    />
+                                    <span className="text-xs text-soft">-</span>
+                                    <input
+                                        type="date"
+                                        className="no-date-icon w-full input-base px-3 py-2 text-sm"
+                                        value={filters.dateTo}
+                                        placeholder="none"
+                                        onChange={e => setFilters(prev => ({ ...prev, dateTo: e.target.value }))}
+                                    />
+                                </div>
+                            </label>
+                            <div className="text-sm text-muted">
+                                <div className="mt-1 flex items-center gap-2 rounded-full border border-accent-weak bg-panel" role="group" aria-label="Necessity">
+                                    {([
+                                        { value: "ANY", label: "Any" },
+                                        { value: "NECESSARY", label: "Necessary" },
+                                        { value: "BOTH", label: "Both" },
+                                        { value: "UNNECESSARY", label: "Unnecessary" }
+                                    ] as const).map(option => (
+                                        <button
+                                            key={option.value}
+                                            type="button"
+                                            className={`rounded-full px-3 py-2 text-xs font-semibold ${filters.necessity === option.value ? "btn-accent" : "text-muted"}`}
+                                            onClick={() => setFilters(prev => ({ ...prev, necessity: prev.necessity === option.value ? "ANY" : option.value }))}
+                                        >
+                                            {option.label}
+                                        </button>
+                                    ))}
+                                </div>
+                            </div>
+                            <label className="text-sm text-muted">
+                                Notes contains
+                                <input
+                                    type="text"
+                                    className="mt-1 w-full input-base px-3 py-2 text-sm"
+                                    value={filters.notesQuery}
+                                    onChange={e => setFilters(prev => ({ ...prev, notesQuery: e.target.value }))}
+                                />
+                            </label>
+                        </div>
+                        <div className="mt-3 space-y-3">
+                            <TagInput
+                                label="Tags"
+                                labelAction={
+                                    <div className="flex items-center gap-1 rounded-full border border-accent-weak bg-panel">
+                                        <button
+                                            type="button"
+                                            className={`rounded-full px-3 py-2 text-xs font-semibold ${filters.tagsMode === "ANY" ? "btn-accent" : "text-muted"}`}
+                                            onClick={() => setFilters(prev => ({ ...prev, tagsMode: prev.tagsMode === "ANY" ? "ALL" : "ANY" }))}
+                                        >
+                                            Any
+                                        </button>
+                                        <button
+                                            type="button"
+                                            className={`rounded-full px-3 py-2 text-xs font-semibold ${filters.tagsMode === "ALL" ? "btn-accent" : "text-muted"}`}
+                                            onClick={() => setFilters(prev => ({ ...prev, tagsMode: prev.tagsMode === "ALL" ? "ANY" : "ALL" }))}
+                                        >
+                                            All
+                                        </button>
+                                    </div>
+                                }
+                                tags={filters.tags}
+                                suggestions={tagSuggestions}
+                                allowCustom={false}
+                                onToggleTag={handleFilterToggleTag}
+                                onAddTag={handleFilterAddTag}
+                                emptySuggestionLabel={emptyTagActionLabel}
+                                emptySuggestionDisabled={!canManageTags}
+                                onEmptySuggestionClick={handleEmptyTagAction}
+                            />
+                        </div>
+                        <div className="mt-4 flex items-center justify-between">
+                            <div className="text-xs text-soft">
+                                {activeFilterCount ? `${activeFilterCount} filter${activeFilterCount === 1 ? "" : "s"} applied` : "No filters applied"}
+                            </div>
+                            <div className="flex items-center gap-2">
+                                <button type="button" className="rounded-lg btn-outline-accent px-3 py-2 text-xs" onClick={handleClearFilters}>
+                                    Clear Filters
+                                </button>
+                                <button type="button" className="rounded-lg btn-accent px-3 py-2 text-xs" onClick={() => setFilterOpen(false)}>
+                                    Apply
+                                </button>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            ) : null}
+            {discardOpen ? (
+                <div className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 p-4">
+                    <div
+                        className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5 shadow-xl"
+                        onKeyDown={event => {
+                            if (event.key === "Escape") handleCancelDiscard();
+                        }}
+                        role="dialog"
+                        tabIndex={-1}
+                    >
+                        <div className="text-lg font-semibold">Discard changes?</div>
+                        <p className="mt-2 text-sm text-muted">You have unsaved changes. Do you want to discard them?</p>
+                        <div className="mt-4 flex items-center gap-2">
+                            <button
+                                type="button"
+                                className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                onClick={handleCancelDiscard}
+                            >
+                                Keep editing
+                            </button>
+                            <button
+                                type="button"
+                                className="flex-1 rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-sm font-semibold text-red-200"
+                                onClick={handleConfirmDiscard}
+                            >
+                                Discard
+                            </button>
+                        </div>
+                    </div>
+                </div>
+            ) : null}
+            <ConfirmSlideModal
+                isOpen={confirmDeleteOpen}
+                title="Delete entry"
+                description="This will permanently remove the entry and its tags."
+                confirmLabel="Delete entry"
+                onClose={() => setConfirmDeleteOpen(false)}
+                onConfirm={() => {
+                    setConfirmDeleteOpen(false);
+                    handleDelete();
+                }}
+            />
+        </>
+    );
+}
diff --git a/apps/web/components/entry-details-modal.tsx b/apps/web/components/entry-details-modal.tsx
new file mode 100644
index 0000000..feb3a36
--- /dev/null
+++ b/apps/web/components/entry-details-modal.tsx
@@ -0,0 +1,387 @@
+"use client";
+
+import type React from "react";
+import { useEffect, useRef } from "react";
+import TagInput from "@/components/tag-input";
+
+export type EntryDetailsForm = {
+    amountDollars: string;
+    occurredAt: string;
+    necessity: string;
+    notes: string;
+    tags: string[];
+    entryType: "SPENDING" | "INCOME";
+    isRecurring: boolean;
+    frequency: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY";
+    intervalCount: number;
+    endCondition: "NEVER" | "AFTER_COUNT" | "BY_DATE";
+    endCount: string;
+    endDate: string;
+};
+
+type EntryDetailsModalProps = {
+    isOpen: boolean;
+    form: EntryDetailsForm;
+    originalForm: EntryDetailsForm | null;
+    isDirty: boolean;
+    error: string;
+    onClose: () => void;
+    onSubmit: (event: React.FormEvent<HTMLFormElement>) => void;
+    onRequestDelete: () => void;
+    onRevert: () => void;
+    onChange: (next: Partial<EntryDetailsForm>) => void;
+    onAddTag: (tag: string) => void;
+    onToggleTag: (tag: string) => void;
+    removedTags: string[];
+    tagSuggestions: string[];
+    emptyTagActionLabel?: string;
+    emptyTagActionDisabled?: boolean;
+    onEmptyTagAction?: () => void;
+    onPrev: () => void;
+    onNext: () => void;
+    loopHintPrev: string;
+    loopHintNext: string;
+    canNavigate: boolean;
+};
+
+export default function EntryDetailsModal({
+    isOpen,
+    form,
+    originalForm,
+    isDirty,
+    error,
+    onClose,
+    onSubmit,
+    onRequestDelete,
+    onRevert,
+    onChange,
+    onAddTag,
+    onToggleTag,
+    removedTags,
+    tagSuggestions,
+    emptyTagActionLabel,
+    emptyTagActionDisabled = false,
+    onEmptyTagAction,
+    onPrev,
+    onNext,
+    loopHintPrev,
+    loopHintNext,
+    canNavigate
+}: EntryDetailsModalProps) {
+    const baseline = originalForm ?? form;
+    const removedSet = new Set(removedTags.map(tag => tag.toLowerCase()));
+    const currentTags = form.tags.filter(tag => !removedSet.has(tag.toLowerCase()));
+    const normalizeTags = (tags: string[]) => tags.map(tag => tag.toLowerCase()).sort().join("|");
+    const baselineTags = baseline.tags || [];
+    const tagsChanged = normalizeTags(currentTags) !== normalizeTags(baselineTags);
+    const addedTags = currentTags.filter(tag => !baselineTags.some(base => base.toLowerCase() === tag.toLowerCase()));
+    const amountChanged = form.amountDollars !== baseline.amountDollars;
+    const dateChanged = form.occurredAt !== baseline.occurredAt;
+    const necessityChanged = form.necessity !== baseline.necessity;
+    const notesChanged = form.notes !== baseline.notes;
+    const changedInputClass = "border-2 border-[color:var(--color-accent)]";
+    const formRef = useRef<HTMLFormElement | null>(null);
+
+    const touchStartX = useRef<number | null>(null);
+    const touchDeltaX = useRef(0);
+
+    function handleTouchStart(event: React.TouchEvent<HTMLDivElement>) {
+        touchStartX.current = event.touches[0]?.clientX ?? null;
+        touchDeltaX.current = 0;
+    }
+
+    function handleTouchMove(event: React.TouchEvent<HTMLDivElement>) {
+        if (touchStartX.current === null) return;
+        touchDeltaX.current = event.touches[0]?.clientX - touchStartX.current;
+    }
+
+    function handleTouchEnd() {
+        if (!canNavigate) return;
+        const delta = touchDeltaX.current;
+        touchStartX.current = null;
+        touchDeltaX.current = 0;
+        if (Math.abs(delta) < 60) return;
+        if (delta > 0) onPrev();
+        else onNext();
+    }
+
+    useEffect(() => {
+        if (!isOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") onClose();
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [isOpen, onClose]);
+
+    if (!isOpen) return null;
+
+    return (
+        <div
+            className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 p-4 !mt-0"
+            onClick={onClose}
+        >
+            <div
+                className="relative w-full max-w-xl rounded-xl border border-accent-weak bg-panel p-4"
+                onClick={event => event.stopPropagation()}
+                onTouchStart={handleTouchStart}
+                onTouchMove={handleTouchMove}
+                onTouchEnd={handleTouchEnd}
+            >
+                <div className="grid grid-cols-3 items-center gap-3">
+                    <button
+                        type="button"
+                        onClick={onPrev}
+                        className="flex w-24 items-center justify-between rounded-lg border border-accent-weak bg-panel px-2.5 py-1 text-sm font-semibold text-muted hover:border-accent disabled:opacity-50"
+                        disabled={!canNavigate}
+                        aria-label="Previous entry"
+                    >
+                        <span aria-hidden>{loopHintPrev ? "↺" : "←"}</span>
+                        <span className="text-xs text-soft">{loopHintPrev ? "To Last" : "Prev"}</span>
+                    </button>
+                    <h2 className="text-center text-lg font-semibold">Entry details</h2>
+                    <button
+                        type="button"
+                        onClick={onNext}
+                        className="ml-auto flex w-24 items-center justify-between rounded-lg border border-accent-weak bg-panel px-2.5 py-1 text-sm font-semibold text-muted hover:border-accent disabled:opacity-50"
+                        disabled={!canNavigate}
+                        aria-label="Next entry"
+                    >
+                        <span className="text-xs text-soft">{loopHintNext ? "To First" : "Next"}</span>
+                        <span aria-hidden>{loopHintNext ? "↻" : "→"}</span>
+                    </button>
+                </div>
+                <form
+                    ref={formRef}
+                    onSubmit={onSubmit}
+                    onKeyDown={event => {
+                        if (event.key !== "Enter" || event.defaultPrevented || event.shiftKey) return;
+                        const target = event.target as HTMLElement;
+                        if (target?.tagName === "TEXTAREA") return;
+                        event.preventDefault();
+                        formRef.current?.requestSubmit();
+                    }}
+                    className="mt-3 grid gap-3 md:grid-cols-2"
+                >
+                    <div className="md:col-span-2 flex flex-wrap items-center gap-2">
+                        <button
+                            type="button"
+                            className={`flex h-9 w-9 items-center justify-center rounded-full border text-lg ${form.isRecurring ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel"}`}
+                            onClick={() => onChange({ isRecurring: !form.isRecurring })}
+                            title="Toggle Recurring Entry"
+                            aria-label={form.isRecurring ? "Recurring entry" : "One-time entry"}
+                        >
+                            <span aria-hidden>⟳</span>
+                        </button>
+                        <div className="flex items-center gap-2 rounded-full border border-accent-weak bg-panel">
+                            <button
+                                type="button"
+                                className={`rounded-full px-4 py-2.5 text-xs font-semibold ${form.entryType === "SPENDING" ? "btn-accent" : "text-muted"}`}
+                                onClick={() => onChange({ entryType: form.entryType === "SPENDING" ? "INCOME" : "SPENDING" })}
+                            >
+                                Spending
+                            </button>
+                            <button
+                                type="button"
+                                className={`rounded-full px-4 py-2.5 text-xs font-semibold ${form.entryType === "INCOME" ? "btn-accent" : "text-muted"}`}
+                                onClick={() => onChange({ entryType: form.entryType === "INCOME" ? "SPENDING" : "INCOME" })}
+                            >
+                                Income
+                            </button>
+                        </div>
+                    </div>
+                    <label className="text-sm text-muted">
+                        Amount ($)
+                        <input
+                            name="amountDollars"
+                            type="number"
+                            min={0}
+                            step="0.01"
+                            className={`mt-1 w-full input-base px-3 py-2 text-sm ${amountChanged ? changedInputClass : ""} ${form.amountDollars ? "" : "border-red-400/70"}`}
+                            value={form.amountDollars}
+                            onChange={e => onChange({ amountDollars: e.target.value })}
+                            required
+                        />
+                    </label>
+                    <div className="text-sm text-muted">
+                        <input
+                            name="occurredAt"
+                            type="date"
+                            className={`no-date-icon mt-6 w-full input-base px-3 py-2 text-sm ${dateChanged ? changedInputClass : ""} ${form.occurredAt ? "" : "border-red-400/70"}`}
+                            value={form.occurredAt}
+                            onChange={e => onChange({ occurredAt: e.target.value })}
+                            required
+                        />
+                    </div>
+                    <div className="text-sm text-muted">
+                        <div className={`mt-6 flex items-center gap-2 rounded-full border border-accent-weak bg-panel ${necessityChanged ? changedInputClass : ""}`} role="group" aria-label="Necessity">
+                            {([
+                                { value: "NECESSARY", label: "Necessary" },
+                                { value: "BOTH", label: "Both" },
+                                { value: "UNNECESSARY", label: "Unnecessary" }
+                            ] as const).map(option => (
+                                <button
+                                    key={option.value}
+                                    type="button"
+                                    className={`flex-1 rounded-full px-3 py-2.5 text-xs font-semibold ${form.necessity === option.value ? "btn-accent" : "text-muted"}`}
+                                    onClick={() => onChange({ necessity: option.value })}
+                                >
+                                    {option.label}
+                                </button>
+                            ))}
+                        </div>
+                    </div>
+                    <TagInput
+                        label="Tags"
+                        tags={form.tags}
+                        removedTags={removedTags}
+                        highlightTags={addedTags}
+                        suggestions={tagSuggestions}
+                        allowCustom={false}
+                        chipsBelow
+                        onToggleTag={onToggleTag}
+                        onAddTag={onAddTag}
+                        emptySuggestionLabel={emptyTagActionLabel}
+                        emptySuggestionDisabled={emptyTagActionDisabled}
+                        onEmptySuggestionClick={onEmptyTagAction}
+                        invalid={!currentTags.length}
+                    />
+                    {form.isRecurring ? (
+                        <div className="md:col-span-2">
+                            <div className="text-sm text-muted">Frequency Conditions</div>
+                            <div className="mt-2 flex flex-wrap items-center justify-center gap-2">
+                                <input
+                                    type="number"
+                                    min={1}
+                                    className="w-20 input-base px-3 py-2 text-center text-sm"
+                                    value={form.intervalCount}
+                                    onChange={e => onChange({ intervalCount: Number(e.target.value || 1) })}
+                                />
+                                <select
+                                    className="min-w-[120px] input-base px-3 py-2 text-center text-sm"
+                                    value={form.frequency}
+                                    onChange={e => onChange({ frequency: e.target.value as EntryDetailsForm["frequency"] })}
+                                >
+                                    <option value="DAILY">day(s)</option>
+                                    <option value="WEEKLY">week(s)</option>
+                                    <option value="BIWEEKLY">biweekly</option>
+                                    <option value="MONTHLY">month(s)</option>
+                                    <option value="QUARTERLY">quarter(s)</option>
+                                    <option value="YEARLY">year(s)</option>
+                                </select>
+                                <div className="flex items-center gap-1 rounded-full border border-accent-weak bg-panel" role="group" aria-label="End condition">
+                                    {([
+                                        { value: "NEVER", label: "Forever" },
+                                        { value: "BY_DATE", label: "Until" },
+                                        { value: "AFTER_COUNT", label: "After" }
+                                    ] as const).map(option => (
+                                        <button
+                                            key={option.value}
+                                            type="button"
+                                            className={`rounded-full px-3 py-2 text-xs font-semibold ${form.endCondition === option.value ? "btn-accent" : "text-muted"}`}
+                                            onClick={() => onChange({ endCondition: option.value })}
+                                        >
+                                            {option.label}
+                                        </button>
+                                    ))}
+                                </div>
+                                {form.endCondition === "AFTER_COUNT" ? (
+                                    <input
+                                        type="number"
+                                        min={1}
+                                        className="w-24 input-base px-3 py-2 text-center text-sm"
+                                        value={form.endCount}
+                                        placeholder="Count"
+                                        onChange={e => onChange({ endCount: e.target.value })}
+                                    />
+                                ) : null}
+                                {form.endCondition === "BY_DATE" ? (
+                                    <div className={`inline-flex items-center overflow-hidden rounded-full border ${form.endDate ? "border-accent-weak" : "border-red-400/70"} bg-panel`}>
+                                        <button type="button" className="h-11 w-20 text-sm text-muted hover:bg-accent-soft" onClick={() => {
+                                            const base = form.endDate ? new Date(form.endDate) : new Date(form.occurredAt || Date.now());
+                                            if (Number.isNaN(base.getTime())) return;
+                                            base.setDate(base.getDate() - 1);
+                                            onChange({ endDate: base.toISOString().slice(0, 10) });
+                                        }}>‹</button>
+                                        <input
+                                            type="date"
+                                            className="no-date-icon h-11 w-40 bg-transparent px-3 text-center text-sm text-[color:var(--color-text)] outline-none"
+                                            value={form.endDate}
+                                            onChange={e => onChange({ endDate: e.target.value })}
+                                        />
+                                        <button type="button" className="h-11 w-20 text-sm text-muted hover:bg-accent-soft" onClick={() => {
+                                            const base = form.endDate ? new Date(form.endDate) : new Date(form.occurredAt || Date.now());
+                                            if (Number.isNaN(base.getTime())) return;
+                                            base.setDate(base.getDate() + 1);
+                                            onChange({ endDate: base.toISOString().slice(0, 10) });
+                                        }}>›</button>
+                                    </div>
+                                ) : null}
+                            </div>
+                        </div>
+                    ) : null}
+                    <label className="text-sm text-muted md:col-span-2">
+                        Notes
+                        <textarea
+                            name="notes"
+                            className={`mt-1 w-full input-base px-3 py-2 text-sm ${notesChanged ? changedInputClass : ""}`}
+                            rows={3}
+                            value={form.notes}
+                            onChange={e => onChange({ notes: e.target.value })}
+                            placeholder="Optional"
+                        />
+                    </label>
+                    <div className="md:col-span-2 flex items-center justify-between">
+                        <div className="flex items-center gap-2">
+                            <button
+                                type="button"
+                                onClick={onRevert}
+                                disabled={!isDirty}
+                                aria-label="Revert changes"
+                                className="flex h-9 w-9 items-center justify-center rounded-lg border border-accent-weak bg-panel text-sm hover:border-accent disabled:opacity-40 disabled:cursor-not-allowed"
+                            >
+                                <svg
+                                    aria-hidden="true"
+                                    viewBox="0 0 24 24"
+                                    className="h-4 w-4"
+                                    fill="none"
+                                    stroke="currentColor"
+                                    strokeWidth="2"
+                                    strokeLinecap="round"
+                                    strokeLinejoin="round"
+                                >
+                                    <path d="M3 12a9 9 0 1 0 3-6.7" />
+                                    <path d="M3 4v4h4" />
+                                </svg>
+                            </button>
+                            <button
+                                type="submit"
+                                className="rounded-lg btn-accent px-4 py-2 text-sm font-semibold disabled:opacity-35 disabled:cursor-not-allowed disabled:grayscale disabled:shadow-none"
+                                disabled={!isDirty}
+                            >
+                                Save changes
+                            </button>
+                            <button
+                                type="button"
+                                className="rounded-lg btn-outline-accent px-4 py-2 text-sm font-semibold"
+                                onClick={onRequestDelete}
+                            >
+                                Delete
+                            </button>
+
+                            <button
+                                type="button"
+                                onClick={onClose}
+                                className="right rounded-lg btn-outline-accent px-4 py-2 text-sm font-semibold"
+                                aria-label="Close"
+                            >
+                                Close
+                            </button>
+                        </div>
+                        {error ? <div className="text-sm text-red-400">{error}</div> : null}
+                    </div>
+                </form>
+            </div>
+        </div>
+    );
+}
diff --git a/apps/web/components/group-dropdown.tsx b/apps/web/components/group-dropdown.tsx
new file mode 100644
index 0000000..f8cc9d2
--- /dev/null
+++ b/apps/web/components/group-dropdown.tsx
@@ -0,0 +1,300 @@
+"use client";
+
+import { useEffect, useRef, useState } from "react";
+import { usePathname, useRouter } from "next/navigation";
+import { useGroupsContext } from "@/hooks/groups-context";
+import { useNotificationsContext } from "@/hooks/notifications-context";
+
+type GroupDropdownProps = {
+    onInviteCode: (code: string) => void;
+};
+
+export default function GroupDropdown({ onInviteCode }: GroupDropdownProps) {
+    const { groups, activeGroupId, loading, error, createGroup, joinGroup, setActiveGroup } = useGroupsContext();
+    const { notify } = useNotificationsContext();
+    const router = useRouter();
+    const pathname = usePathname();
+    const [open, setOpen] = useState(false);
+    const [manageOpen, setManageOpen] = useState(false);
+    const [activeTab, setActiveTab] = useState<"create" | "join">("create");
+    const [name, setName] = useState("");
+    const [inviteCode, setInviteCode] = useState("");
+    const [localError, setLocalError] = useState("");
+    const dropdownRef = useRef<HTMLDivElement | null>(null);
+    const activeGroup = groups.find(group => group.id === activeGroupId) || null;
+    const groupLabel = loading ? "Loading" : activeGroup ? activeGroup.name : "Select group";
+
+    async function handleCreate() {
+        if (!name.trim()) {
+            setLocalError("Group name is required");
+            return;
+        }
+
+        setLocalError("");
+        const group = await createGroup({ name });
+        if (group?.inviteCode) onInviteCode(group.inviteCode);
+        if (group) {
+            setName("");
+            notify({ title: "Group created", message: group.name, tone: "success" });
+            setManageOpen(false);
+            setOpen(false);
+            router.push("/groups/settings");
+        }
+    }
+
+    async function handleJoin() {
+        if (!inviteCode.trim()) {
+            setLocalError("Invite code is required");
+            return;
+        }
+        setLocalError("");
+        const raw = inviteCode.trim();
+        const inviteTokenMatch = raw.match(/\/invite\/([a-zA-Z0-9]+)/);
+        if (inviteTokenMatch?.[1]) {
+            setInviteCode("");
+            setManageOpen(false);
+            setOpen(false);
+            router.push(`/invite/${inviteTokenMatch[1]}`);
+            return;
+        }
+        const group = await joinGroup({ inviteCode: raw });
+        if (group) {
+            setInviteCode("");
+            notify({ title: "Joined group", message: group.name, tone: "success" });
+            setManageOpen(false);
+            setOpen(false);
+        }
+    }
+
+    async function handleSelect(groupId: number) {
+        const ok = await setActiveGroup(groupId);
+        if (ok) {
+            setOpen(false);
+            const group = groups.find(item => item.id === groupId);
+            if (group) notify({ title: "Active group", message: group.name });
+            if (pathname.startsWith("/groups/")) router.push("/groups/settings");
+        }
+    }
+
+    function handleQuickEntries() {
+        setOpen(false);
+        router.push("/");
+    }
+
+    function roleIcon(role: string) {
+        if (role === "GROUP_OWNER") return "👑";
+        if (role === "GROUP_ADMIN") return "🛡️";
+        return "👤";
+    }
+
+    useEffect(() => {
+        function handleClickOutside(event: MouseEvent) {
+            if (!open || !dropdownRef.current) return;
+            if (!dropdownRef.current.contains(event.target as Node))
+                setOpen(false);
+        }
+        document.addEventListener("mousedown", handleClickOutside);
+        return () => document.removeEventListener("mousedown", handleClickOutside);
+    }, [open]);
+
+    useEffect(() => {
+        if (!manageOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") setManageOpen(false);
+            if (event.key === "Enter" && !event.shiftKey) {
+                if (activeTab === "create") handleCreate();
+                else handleJoin();
+            }
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [manageOpen, activeTab, handleCreate, handleJoin]);
+
+    return (
+        <div className="relative" ref={dropdownRef}>
+            <div className="inline-flex items-center">
+                <button
+                    type="button"
+                    aria-label="Back to entries"
+                    onClick={handleQuickEntries}
+                    className="flex h-9 w-9 items-center justify-center rounded-l-lg border border-accent-weak bg-panel text-sm hover:border-accent"
+                    disabled={loading || !activeGroupId}
+                >
+                    $
+                    {/* <svg
+                        aria-hidden="true"
+                        viewBox="0 0 24 24"
+                        className="h-4 w-4"
+                        fill="none"
+                        stroke="currentColor"
+                        strokeWidth="2"
+                        strokeLinecap="round"
+                        strokeLinejoin="round"
+                    >
+                        <path d="M15 6l-6 6 6 6" />
+                    </svg> */}
+                </button>
+                <button
+                    type="button"
+                    onClick={() => setOpen(v => !v)}
+                    className={`-ml-px flex h-9 w-44 items-center justify-between rounded-none border border-accent-weak bg-panel px-3 text-sm hover:border-accent sm:w-56 ${loading ? "animate-pulse" : ""}`}
+                >
+                    <span className="truncate">{groupLabel}</span>
+                    <span className="text-l font-bold text-soft">▼</span>
+                </button>
+                <button
+                    type="button"
+                    aria-label="Group settings"
+                    onClick={() => {
+                        if (!activeGroupId) return;
+                        setOpen(false);
+                        router.push("/groups/settings");
+                    }}
+                    disabled={loading || !activeGroupId}
+                    className="-ml-px flex h-9 w-9 items-center justify-center rounded-r-lg border border-accent-weak bg-panel text-sm hover:border-accent disabled:opacity-60"
+                >
+                    <span className="text-sm">⚙</span>
+                </button>
+            </div>
+            {open ? (
+                <div className="absolute left-1/2 mt-2 w-64 -translate-x-1/2 rounded-xl border border-accent-weak bg-panel p-3 text-sm shadow-lg">
+                    <div className="space-y-2">
+                        {loading ? (
+                            <div className="space-y-2">
+                                {[0, 1, 2].map(row => (
+                                    <div key={row} className="flex items-center justify-between rounded-lg border border-accent-weak bg-panel px-2 py-2">
+                                        <div className="h-3 w-32 rounded bg-surface animate-pulse" />
+                                        <div className="h-3 w-10 rounded bg-surface animate-pulse" />
+                                    </div>
+                                ))}
+                            </div>
+                        ) : groups.length ? (
+                            groups.map(group => (
+                                <div
+                                    key={group.id}
+                                    role="button"
+                                    tabIndex={0}
+                                    className={`flex w-full items-center justify-between rounded-lg px-2 py-1.5 text-left outline-none ${activeGroupId === group.id ? "bg-accent-soft" : "hover:bg-surface"}`}
+                                    onClick={() => handleSelect(group.id)}
+                                    onKeyDown={event => {
+                                        if (event.key === "Enter" || event.key === " ") handleSelect(group.id);
+                                    }}
+                                >
+                                    <span className="truncate">{group.name}</span>
+                                    <span className="text-xs text-soft" aria-label={group.role}>
+                                        {roleIcon(group.role)}
+                                    </span>
+                                </div>
+                            ))
+                        ) : (
+                            <div className="text-soft">No groups yet</div>
+                        )}
+                    </div>
+                    <div className="my-3 h-px divider" />
+                    <div className="space-y-2">
+                        <button
+                            type="button"
+                            className="w-full rounded-lg btn-accent px-2 py-2 text-sm font-semibold disabled:opacity-60"
+                            onClick={() => {
+                                setManageOpen(true);
+                                setActiveTab("create");
+                                setOpen(false);
+                            }}
+                            disabled={loading}
+                        >
+                            Create or join group
+                        </button>
+                        {localError || error ? (
+                            <div className="text-xs text-red-400">{localError || error}</div>
+                        ) : null}
+                    </div>
+                </div>
+            ) : null}
+            {manageOpen ? (
+                <div className="fixed inset-0 z-[60] flex min-h-[100dvh] items-center justify-center bg-black/60 p-4" onClick={() => setManageOpen(false)}>
+                    <div
+                        className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5"
+                        onClick={event => event.stopPropagation()}
+                        onKeyDown={event => {
+                            if (event.key === "Escape") setManageOpen(false);
+                            if (event.key === "Enter" && !event.shiftKey) {
+                                if (activeTab === "create") handleCreate();
+                                else handleJoin();
+                            }
+                        }}
+                        role="dialog"
+                        tabIndex={-1}
+                    >
+                        <div className="flex items-center justify-between">
+                            <div className="text-lg font-semibold">Manage groups</div>
+                            <button
+                                type="button"
+                                className="rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                                onClick={() => setManageOpen(false)}
+                            >
+                                Close
+                            </button>
+                        </div>
+                        <div className="mt-4 flex items-center gap-2">
+                            {([
+                                { key: "create", label: "Create" },
+                                { key: "join", label: "Join" }
+                            ] as const).map(tab => (
+                                <button
+                                    key={tab.key}
+                                    type="button"
+                                    className={`flex-1 rounded-lg border px-3 py-2 text-sm font-semibold ${activeTab === tab.key ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel"}`}
+                                    onClick={() => setActiveTab(tab.key)}
+                                >
+                                    {tab.label}
+                                </button>
+                            ))}
+                        </div>
+                        {activeTab === "create" ? (
+                            <div className="mt-4 space-y-2">
+                                <input
+                                    type="text"
+                                    placeholder="Group name"
+                                    className={`w-full input-base px-3 py-2 text-sm ${name.trim() ? "" : "border-red-400/70"}`}
+                                    value={name}
+                                    onChange={e => setName(e.target.value)}
+                                    disabled={loading}
+                                />
+                                <button
+                                    type="button"
+                                    className="w-full rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+                                    onClick={handleCreate}
+                                    disabled={loading}
+                                >
+                                    Create group
+                                </button>
+                            </div>
+                        ) : (
+                            <div className="mt-4 space-y-2">
+                                <input
+                                    type="text"
+                                    placeholder="Invite link or code"
+                                    className={`w-full input-base px-3 py-2 text-sm ${inviteCode.trim() ? "" : "border-red-400/70"}`}
+                                    value={inviteCode}
+                                    onChange={e => setInviteCode(e.target.value)}
+                                    disabled={loading}
+                                />
+                                <button
+                                    type="button"
+                                    className="w-full rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+                                    onClick={handleJoin}
+                                    disabled={loading}
+                                >
+                                    Join group
+                                </button>
+                            </div>
+                        )}
+                        {localError || error ? (
+                            <div className="mt-3 text-xs text-red-400">{localError || error}</div>
+                        ) : null}
+                    </div>
+                </div>
+            ) : null}
+        </div>
+    );
+}
diff --git a/apps/web/components/group-settings-content.tsx b/apps/web/components/group-settings-content.tsx
new file mode 100644
index 0000000..71ed615
--- /dev/null
+++ b/apps/web/components/group-settings-content.tsx
@@ -0,0 +1,1046 @@
+"use client";
+
+import { useEffect, useMemo, useRef, useState } from "react";
+import { useRouter } from "next/navigation";
+import useTags from "@/hooks/use-tags";
+import useGroupSettings from "@/hooks/use-group-settings";
+import useGroupMembers from "@/hooks/use-group-members";
+import useGroupInvites from "@/hooks/use-group-invites";
+import useGroupAudit from "@/hooks/use-group-audit";
+import { useGroupsContext } from "@/hooks/groups-context";
+import TagInput from "@/components/tag-input";
+import { useNotificationsContext } from "@/hooks/notifications-context";
+import ConfirmSlideModal from "@/components/confirm-slide-modal";
+import { groupsDelete, groupsRename } from "@/lib/client/groups";
+
+export default function GroupSettingsContent({ groupId }: { groupId: number }) {
+    const router = useRouter();
+    const { groups, activeGroupId, setActiveGroup } = useGroupsContext();
+    const { notify } = useNotificationsContext();
+    const group = useMemo(() => groups.find(item => item.id === groupId) || null, [groups, groupId]);
+    const role = group?.role;
+    const isAdmin = role === "GROUP_ADMIN" || role === "GROUP_OWNER";
+    const isOwner = role === "GROUP_OWNER";
+    const canViewAudit = isAdmin;
+    const hasSyncedActiveRef = useRef(false);
+    const lastGroupIdRef = useRef(groupId);
+
+    useEffect(() => {
+        if (lastGroupIdRef.current !== groupId) {
+            lastGroupIdRef.current = groupId;
+            hasSyncedActiveRef.current = false;
+        }
+        if (!groupId || hasSyncedActiveRef.current) return;
+        if (activeGroupId !== groupId) setActiveGroup(groupId);
+        hasSyncedActiveRef.current = true;
+    }, [activeGroupId, groupId, setActiveGroup]);
+
+    const { tags, addTags, removeTag } = useTags(activeGroupId === groupId ? groupId : null);
+    const { settings, updateSettings } = useGroupSettings(activeGroupId === groupId ? groupId : null);
+    const { members, requests, currentUserId, approve, deny, promote, demote, kick, transferOwner, leave } = useGroupMembers(activeGroupId === groupId ? groupId : null);
+    const { links, create: createInvite, revoke: revokeInvite, revive: reviveInvite, remove: deleteInvite } = useGroupInvites(activeGroupId === groupId ? groupId : null);
+    const { events } = useGroupAudit(activeGroupId === groupId && canViewAudit ? groupId : null);
+    const [pendingTags, setPendingTags] = useState<string[]>([]);
+    const [toggleRemoveTags, setToggleRemoveTags] = useState<string[]>([]);
+    const [confirmDeleteOpen, setConfirmDeleteOpen] = useState(false);
+    const [renameValue, setRenameValue] = useState(group?.name || "");
+    const [renameModalOpen, setRenameModalOpen] = useState(false);
+    const [confirmRenameOpen, setConfirmRenameOpen] = useState(false);
+    const [confirmLeaveOpen, setConfirmLeaveOpen] = useState(false);
+    const [confirmKick, setConfirmKick] = useState<{ userId: number; name: string } | null>(null);
+    const [confirmTransfer, setConfirmTransfer] = useState<{ userId: number; name: string } | null>(null);
+    const [confirmDeleteGroupOpen, setConfirmDeleteGroupOpen] = useState(false);
+    const [deleteConfirmText, setDeleteConfirmText] = useState("");
+    const [tagModalOpen, setTagModalOpen] = useState(false);
+    const [showAllTags, setShowAllTags] = useState(false);
+    const [inviteTtlDays, setInviteTtlDays] = useState(7);
+    const [inviteMaxUses, setInviteMaxUses] = useState<"UNLIMITED" | "SINGLE">("UNLIMITED");
+    const [auditOpen, setAuditOpen] = useState(false);
+    const [confirmDeleteInvite, setConfirmDeleteInvite] = useState<{ id: number; token: string } | null>(null);
+    const [auditFilters, setAuditFilters] = useState(["members", "tags", "settings", "entries"] as Array<"members" | "tags" | "settings" | "entries">);
+    const [auditQuery, setAuditQuery] = useState("");
+    const [auditFrom, setAuditFrom] = useState("");
+    const [auditTo, setAuditTo] = useState("");
+    const [auditLimit, setAuditLimit] = useState(10);
+    const [localAllowMemberTagManage, setLocalAllowMemberTagManage] = useState(settings.allowMemberTagManage);
+    const [localJoinPolicy, setLocalJoinPolicy] = useState(settings.joinPolicy);
+
+    const canManageTags = role === "GROUP_ADMIN" || role === "GROUP_OWNER" || localAllowMemberTagManage;
+    const adminCount = members.filter(member => member.role === "GROUP_ADMIN" || member.role === "GROUP_OWNER").length;
+    const isLastAdmin = isAdmin && adminCount <= 1;
+
+    useEffect(() => {
+        setRenameValue(group?.name || "");
+    }, [group?.name]);
+
+    useEffect(() => {
+        setLocalAllowMemberTagManage(settings.allowMemberTagManage);
+        setLocalJoinPolicy(settings.joinPolicy);
+    }, [settings.allowMemberTagManage, settings.joinPolicy]);
+
+    async function handleSaveTags() {
+        if (!pendingTags.length) return;
+        const ok = await addTags(pendingTags);
+        if (ok) {
+            notify({ title: "Tags updated", message: pendingTags.join(", "), tone: "success" });
+            setPendingTags([]);
+        }
+    }
+
+    async function handleRemoveTag(tag: string) {
+        const ok = await removeTag(tag);
+        if (ok) notify({ title: "Tag removed", message: `#${tag}`, tone: "danger" });
+    }
+
+    async function handleConfirmDelete() {
+        if (!toggleRemoveTags.length) return;
+        await Promise.all(toggleRemoveTags.map(tag => removeTag(tag)));
+        notify({ title: "Tags removed", message: toggleRemoveTags.join(", "), tone: "danger" });
+        setToggleRemoveTags([]);
+    }
+
+    async function handleToggleAllowMembers(value: boolean) {
+        setLocalAllowMemberTagManage(value);
+        const ok = await updateSettings(value, localJoinPolicy);
+        if (ok) {
+            notify({ title: "Tag permissions updated" });
+            return;
+        }
+        setLocalAllowMemberTagManage(settings.allowMemberTagManage);
+        notify({ title: "Update failed", message: "Could not save tag permissions.", tone: "danger" });
+    }
+
+    async function handleJoinPolicyChange(nextPolicy: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED") {
+        setLocalJoinPolicy(nextPolicy);
+        const ok = await updateSettings(localAllowMemberTagManage, nextPolicy);
+        if (ok) {
+            notify({ title: "Join policy updated" });
+            return;
+        }
+        setLocalJoinPolicy(settings.joinPolicy);
+        notify({ title: "Update failed", message: "Could not save join policy.", tone: "danger" });
+    }
+
+    function handleOpenRenameModal() {
+        setRenameValue(group?.name || "");
+        setRenameModalOpen(true);
+    }
+
+    function handleCloseRenameModal() {
+        setRenameModalOpen(false);
+        setRenameValue(group?.name || "");
+    }
+
+    async function handleRenameGroup() {
+        const name = renameValue.trim();
+        if (!name) return;
+        const result = await groupsRename({ name });
+        if ("error" in result) {
+            notify({ title: "Rename failed", message: result.error.message, tone: "danger" });
+            return;
+        }
+        notify({ title: "Group renamed", message: name });
+        setConfirmRenameOpen(false);
+        setRenameModalOpen(false);
+    }
+
+    async function handleRoleChange(targetUserId: number, nextRole: "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER") {
+        if (!isAdmin) return;
+        const member = members.find(item => item.userId === targetUserId);
+        if (!member) return;
+        if (member.role === nextRole) return;
+        if (nextRole === "GROUP_OWNER") {
+            if (!isOwner) return;
+            await transferOwner(targetUserId);
+            return;
+        }
+        if (nextRole === "GROUP_ADMIN") {
+            await promote(targetUserId);
+            return;
+        }
+        await demote(targetUserId);
+    }
+
+    function getInviteLinkUrl(token: string) {
+        if (typeof window === "undefined") return token;
+        return `${window.location.origin}/invite/${token}`;
+    }
+
+    async function handleCopyInvite(token: string) {
+        try {
+            await navigator.clipboard.writeText(getInviteLinkUrl(token));
+            notify({ title: "Invite link copied", message: "Link copied to clipboard" });
+        } catch {
+            notify({ title: "Copy failed", tone: "danger" });
+        }
+    }
+
+    function formatInviteExpiry(expiresAt: string) {
+        const expiry = new Date(expiresAt).getTime();
+        if (Number.isNaN(expiry)) return "Unknown";
+        const diffMs = expiry - Date.now();
+        const absMs = Math.abs(diffMs);
+        const minute = 60 * 1000;
+        const hour = 60 * minute;
+        const day = 24 * hour;
+        const pick = (value: number, unit: string) => `${value} ${unit}${value === 1 ? "" : "s"}`;
+        let label = "";
+
+        if (absMs < hour) {
+            const value = Math.max(1, Math.round(absMs / minute));
+            label = pick(value, "minute");
+        } else if (absMs < day) {
+            const value = Math.max(1, Math.round(absMs / hour));
+            label = pick(value, "hour");
+        } else {
+            const value = Math.max(1, Math.round(absMs / day));
+            label = pick(value, "day");
+        }
+
+        return diffMs >= 0 ? `in ${label}` : `${label} ago`;
+    }
+
+    function isInviteExpired(expiresAt: string) {
+        const expiry = new Date(expiresAt).getTime();
+        if (Number.isNaN(expiry)) return false;
+        return Date.now() > expiry;
+    }
+
+    function eventCategory(eventType: string) {
+        const upper = eventType.toUpperCase();
+        if (upper.includes("SPENDING") || upper.includes("ENTRY")) return "entries" as const;
+        if (upper.includes("TAG")) return "tags" as const;
+        if (upper.includes("SETTING") || upper.includes("RENAMED")) return "settings" as const;
+        return "members" as const;
+    }
+
+    const memberLookup = useMemo(() => {
+        return new Map(members.map(member => [member.userId, { name: member.displayName || member.email, email: member.email }]));
+    }, [members]);
+
+    function getMemberLabel(userId?: number | null) {
+        if (!userId) return "System";
+        const member = memberLookup.get(userId);
+        return member?.name || `User ${userId}`;
+    }
+
+    const filteredEvents = events.filter(event => {
+        const category = eventCategory(event.eventType);
+        if (!auditFilters.includes(category)) return false;
+        if (auditQuery) {
+            const query = auditQuery.toLowerCase();
+            const actor = event.actorUserId ? memberLookup.get(event.actorUserId) : null;
+            const haystack = `${event.eventType} ${event.actorUserId ?? ""} ${actor?.name || ""} ${actor?.email || ""} ${event.requestId}`.toLowerCase();
+            if (!haystack.includes(query)) return false;
+        }
+        if (auditFrom) {
+            const from = new Date(auditFrom).getTime();
+            if (!Number.isNaN(from) && new Date(event.createdAt).getTime() < from) return false;
+        }
+        if (auditTo) {
+            const to = new Date(auditTo).getTime();
+            if (!Number.isNaN(to) && new Date(event.createdAt).getTime() > to + 24 * 60 * 60 * 1000 - 1) return false;
+        }
+        return true;
+    });
+
+    const todayKey = new Date().toISOString().slice(0, 10);
+    const logsToday = events.filter(event => event.createdAt?.slice(0, 10) === todayKey).length;
+    const mostActiveUser = (() => {
+        const counts = new Map<number, number>();
+        for (const event of events) {
+            if (!event.actorUserId) continue;
+            counts.set(event.actorUserId, (counts.get(event.actorUserId) ?? 0) + 1);
+        }
+        let top: number | null = null;
+        let topCount = 0;
+        counts.forEach((count, userId) => {
+            if (count > topCount) {
+                top = userId;
+                topCount = count;
+            }
+        });
+        if (!top) return null;
+        const member = memberLookup.get(top);
+        const name = member?.name || `User ${top}`;
+        const searchValue = member?.name || member?.email || String(top);
+        return { userId: top, count: topCount, name, searchValue };
+    })();
+    const mostActiveCount = mostActiveUser?.count ?? 0;
+
+    async function handleDeleteGroup() {
+        const result = await groupsDelete();
+        if ("error" in result) {
+            notify({ title: "Delete failed", message: result.error.message, tone: "danger" });
+            return;
+        }
+        setConfirmDeleteGroupOpen(false);
+        setDeleteConfirmText("");
+        notify({ title: "Group deleted", tone: "danger" });
+        router.push("/");
+    }
+
+    if (!group) {
+        return (
+            <div className="panel panel-accent p-4">
+                <div className="text-sm text-muted">Loading group settings...</div>
+            </div>
+        );
+    }
+
+    const renameDirty = renameValue.trim() !== group.name;
+    const visibleTags = showAllTags ? tags : tags.slice(0, 5);
+    const hasMoreTags = tags.length > 5;
+    const tagsScrollable = showAllTags && tags.length > 15;
+    const memberCount = members.length;
+    const showLeaveGroup = role !== "GROUP_OWNER" && !isLastAdmin;
+
+    useEffect(() => {
+        if (!renameModalOpen && !tagModalOpen && !confirmDeleteGroupOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") {
+                if (confirmDeleteGroupOpen) setConfirmDeleteGroupOpen(false);
+                if (tagModalOpen) setTagModalOpen(false);
+                if (renameModalOpen) handleCloseRenameModal();
+            }
+            if (event.key === "Enter" && !event.shiftKey && !event.defaultPrevented) {
+                if (renameModalOpen && renameDirty && isAdmin && renameValue.trim()) setConfirmRenameOpen(true);
+                // if (tagModalOpen && pendingTags.length && canManageTags) handleSaveTags();
+                if (confirmDeleteGroupOpen && deleteConfirmText.trim().toUpperCase() === "DELETE") handleDeleteGroup();
+            }
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [renameModalOpen, tagModalOpen, confirmDeleteGroupOpen, renameDirty, isAdmin, renameValue, pendingTags.length, canManageTags, deleteConfirmText, handleDeleteGroup, handleSaveTags, handleCloseRenameModal]);
+
+    return (
+        <>
+            <div className="space-y-4">
+                <div className="flex items-center justify-between">
+                    <div>
+                        <h1 className="text-2xl font-semibold">{group.name} settings</h1>
+                        <p className="text-sm text-muted">Manage tags and permissions for this group.</p>
+                    </div>
+                    <button
+                        type="button"
+                        className="rounded-lg btn-outline-accent px-3 py-1.5 text-sm"
+                        onClick={() => router.push("/")}
+                    >
+                        Back
+                    </button>
+                </div>
+                <div className="panel panel-accent p-4 space-y-4">
+                    <div className="card-header">
+                        <div className="card-title">General Settings</div>
+                    </div>
+                    <div className="space-y-4">
+                        <div className="flex flex-wrap items-center justify-between gap-3">
+                            <div>
+                                <div className="text-xs text-soft">Group name</div>
+                                <div className="text-base font-semibold">{group.name}</div>
+                            </div>
+                            {isAdmin ? (
+                                <button
+                                    type="button"
+                                    className="rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                    onClick={handleOpenRenameModal}
+                                >
+                                    Change
+                                </button>
+                            ) : null}
+                        </div>
+                        {!isAdmin ? (
+                            <div className="text-xs text-soft">Only admins can rename the group.</div>
+                        ) : null}
+                        <div className="divider" />
+                        {isAdmin ? (
+                            <>
+                                <div className="flex flex-wrap items-center justify-between gap-3">
+                                    <div className="text-sm font-semibold">Allow members to manage tags</div>
+                                    <button
+                                        type="button"
+                                        aria-pressed={localAllowMemberTagManage}
+                                        className={`relative h-7 w-12 rounded-full border transition ${localAllowMemberTagManage ? "border-emerald-400 bg-emerald-500/20" : "border-red-400/60 bg-red-500/10"}`}
+                                        onClick={() => handleToggleAllowMembers(!localAllowMemberTagManage)}
+                                    >
+                                        <span
+                                            className={`absolute left-0.5 top-1/2 h-5 w-5 -translate-y-1/2 rounded-full transition ${localAllowMemberTagManage ? "translate-x-[22px] bg-emerald-200" : "translate-x-0 bg-red-200"}`}
+                                        />
+                                    </button>
+                                </div>
+                                <div className="divider" />
+                            </>
+                        ) : null}
+                        <div className="flex flex-wrap items-center justify-between gap-2">
+                            <div className="text-sm font-semibold">Group Tags ({tags.length})</div>
+                            <div className="flex items-center gap-2">
+                                {showAllTags ? (
+                                    <button
+                                        type="button"
+                                        className="rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                                        onClick={() => setShowAllTags(false)}
+                                    >
+                                        Show less
+                                    </button>
+                                ) : null}
+                                {canManageTags ? (
+                                    <button
+                                        type="button"
+                                        className="rounded-lg btn-accent px-2 py-1 text-xs font-semibold"
+                                        onClick={() => setTagModalOpen(true)}
+                                    >
+                                        Edit tags
+                                    </button>
+                                ) : null}
+                            </div>
+                        </div>
+                        <div className={tagsScrollable ? "max-h-60 overflow-auto resize-y pr-1" : ""}>
+                            <div className="flex flex-wrap gap-2">
+                                {visibleTags.map(tag => (
+                                    <span key={tag} className="rounded-full border border-accent-weak bg-accent-soft px-2 py-0.5 text-xs text-[color:var(--color-text)]">
+                                        #{tag}
+                                    </span>
+                                ))}
+                                {!showAllTags && hasMoreTags ? (
+                                    <button
+                                        type="button"
+                                        className="rounded-full border border-accent-weak bg-panel px-2 py-0.5 text-xs text-soft"
+                                        onClick={() => setShowAllTags(true)}
+                                        aria-label="Show all tags"
+                                    >
+                                        more . . .
+                                    </button>
+                                ) : null}
+                                {!tags.length ? <div className="text-xs text-soft">No tags yet.</div> : null}
+                            </div>
+                        </div>
+                    </div>
+                </div>
+
+                {isAdmin ? (
+                    <div className="panel panel-accent p-4 space-y-4">
+                        <div className="card-header">
+                            <div className="card-title">Join and Invites</div>
+                        </div>
+                        <div className="space-y-3">
+                            <div className="flex flex-wrap items-center justify-between gap-3">
+                                <div className="text-sm font-semibold">Join policy</div>
+                                <div className="flex flex-wrap gap-2">
+                                    {[
+                                        { value: "NOT_ACCEPTING", label: "Disabled" },
+                                        { value: "AUTO_ACCEPT", label: "Auto" },
+                                        { value: "APPROVAL_REQUIRED", label: "Manual" }
+                                    ].map(option => (
+                                        <button
+                                            key={option.value}
+                                            type="button"
+                                            className={`rounded-lg border px-3 py-1.5 text-xs font-semibold transition ${localJoinPolicy === option.value ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel hover:border-accent"}`}
+                                            onClick={() => handleJoinPolicyChange(option.value as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED")}
+                                            aria-pressed={localJoinPolicy === option.value}
+                                        >
+                                            {option.label}
+                                        </button>
+                                    ))}
+                                </div>
+                            </div>
+                        </div>
+                        <div className="divider" />
+                        <div className="space-y-2">
+                            <div className="text-sm font-semibold">Join Requests ({requests.length})</div>
+                            {!requests.length ? (
+                                <div className="text-xs text-soft">No pending requests.</div>
+                            ) : (
+                                <div className="space-y-2">
+                                    {requests.map(request => (
+                                        <div key={request.id} className="flex items-center justify-between rounded-lg border border-accent-weak bg-panel px-3 py-2 text-sm">
+                                            <div>
+                                                <div className="font-medium">{request.displayName || request.email}</div>
+                                                <div className="text-xs text-soft">{request.email}</div>
+                                            </div>
+                                            <div className="flex items-center gap-2">
+                                                <button
+                                                    type="button"
+                                                    className="rounded-lg btn-outline-accent px-3 py-1.5 text-xs"
+                                                    onClick={() => approve(request.userId, request.id)}
+                                                >
+                                                    Approve
+                                                </button>
+                                                <button
+                                                    type="button"
+                                                    className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-1.5 text-xs text-red-200"
+                                                    onClick={() => deny(request.userId)}
+                                                >
+                                                    Deny
+                                                </button>
+                                            </div>
+                                        </div>
+                                    ))}
+                                </div>
+                            )}
+                        </div>
+                        <div className="divider" />
+                        <div className="space-y-3">
+                            <div className="text-sm font-semibold">Invite links</div>
+                            <div className="flex flex-wrap items-center gap-2">
+                                <select
+                                    className="input-base px-2 py-1.5 text-xs"
+                                    value={inviteTtlDays}
+                                    onChange={e => setInviteTtlDays(Number(e.target.value))}
+                                >
+                                    {[1, 2, 3, 4, 5, 6, 7].map(days => (
+                                        <option key={days} value={days}>{days} day{days === 1 ? "" : "s"}</option>
+                                    ))}
+                                </select>
+                                <select
+                                    className="input-base px-2 py-1.5 text-xs"
+                                    value={inviteMaxUses}
+                                    onChange={e => setInviteMaxUses(e.target.value as "UNLIMITED" | "SINGLE")}
+                                >
+                                    <option value="UNLIMITED">Unlimited</option>
+                                    <option value="SINGLE">1 use</option>
+                                </select>
+                                <button
+                                    type="button"
+                                    className="rounded-lg btn-accent px-3 py-1.5 text-xs font-semibold"
+                                    onClick={() => createInvite({ policy: localJoinPolicy, singleUse: inviteMaxUses === "SINGLE", ttlDays: inviteTtlDays })}
+                                    disabled={localJoinPolicy === "NOT_ACCEPTING"}
+                                >
+                                    Create link
+                                </button>
+                            </div>
+                            {!links.length ? (
+                                <div className="text-xs text-soft">No invite links yet.</div>
+                            ) : (
+                                <div className="space-y-2">
+                                    {links.map(link => (
+                                        <div
+                                            key={link.id}
+                                            className={`rounded-lg border px-3 py-2 text-sm ${link.revokedAt || isInviteExpired(link.expiresAt) || (link.singleUse && link.usedAt) ? "border-red-400/60 bg-red-500/5" : "border-accent-weak bg-panel"}`}
+                                        >
+                                            <div className="flex flex-wrap items-center justify-between gap-2">
+                                                <div className="text-xs text-soft">Token: {link.token.slice(0, 6)}…{link.token.slice(-4)}</div>
+                                                <div className="flex items-center gap-2">
+                                                    <button
+                                                        type="button"
+                                                        className="rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                                                        onClick={() => handleCopyInvite(link.token)}
+                                                        disabled={localJoinPolicy === "NOT_ACCEPTING"}
+                                                    >
+                                                        Copy link
+                                                    </button>
+                                                    {(link.revokedAt || isInviteExpired(link.expiresAt) || (link.singleUse && link.usedAt)) ? (
+                                                        <button
+                                                            type="button"
+                                                            className="rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                                                            onClick={() => reviveInvite(link.id, inviteTtlDays)}
+                                                            disabled={localJoinPolicy === "NOT_ACCEPTING"}
+                                                        >
+                                                            Revive
+                                                        </button>
+                                                    ) : (!link.revokedAt && !(link.singleUse && link.usedAt) && !isInviteExpired(link.expiresAt)) ? (
+                                                        <button
+                                                            type="button"
+                                                            className="rounded-lg border border-red-400/60 bg-red-500/10 px-2 py-1 text-xs text-red-200"
+                                                            onClick={() => revokeInvite(link.id)}
+                                                        >
+                                                            Revoke
+                                                        </button>
+                                                    ) : null}
+                                                    <button
+                                                        type="button"
+                                                        className="rounded-lg border border-red-400/60 bg-red-500/10 px-2 py-1 text-xs text-red-200"
+                                                        onClick={() => setConfirmDeleteInvite({ id: link.id, token: link.token })}
+                                                    >
+                                                        Delete
+                                                    </button>
+                                                </div>
+                                            </div>
+                                            <div className="mt-2 flex flex-wrap gap-3 text-[11px] text-soft">
+                                                <span>Expires {formatInviteExpiry(link.expiresAt)}</span>
+                                                <span>Uses: {link.singleUse ? "1 use" : "Unlimited"}</span>
+                                                <span>Status: {link.revokedAt ? "Revoked" : link.singleUse && link.usedAt ? "Used" : isInviteExpired(link.expiresAt) ? "Expired" : "Active"}</span>
+                                            </div>
+                                        </div>
+                                    ))}
+                                </div>
+                            )}
+                        </div>
+                    </div>
+                ) : null}
+
+                <div className="panel panel-accent p-4 space-y-3">
+                    <div className="card-header">
+                        <div className="card-title">Members</div>
+                        <div className="text-xs text-soft">{memberCount} total</div>
+                    </div>
+                    <div className="space-y-2">
+                        {members.map(member => {
+                            const isSelf = member.userId === currentUserId;
+                            const privilegeLabel = member.role === "GROUP_OWNER"
+                                ? "👑 Owner · Full control"
+                                : member.role === "GROUP_ADMIN"
+                                    ? "🛡️ Admin · Manage members"
+                                    : "👤 Member · Entries only";
+                            return (
+                                <div
+                                    key={member.userId}
+                                    className={`flex flex-wrap items-center justify-between gap-3 rounded-lg border border-accent-weak px-3 py-2 text-sm ${isSelf ? "bg-accent-soft" : "bg-panel"}`}
+                                >
+                                    <div>
+                                        <div className={`font-medium ${isSelf ? "text-[color:var(--color-text)]" : ""}`}>
+                                            {member.displayName || member.email}
+                                            {isSelf ? <span className="ml-2 rounded-full border border-accent-weak px-2 py-0.5 text-[10px] text-soft">You</span> : null}
+                                        </div>
+                                        <div className="text-xs text-soft">{member.email}</div>
+                                        <div className="mt-1 text-[11px] text-soft">{privilegeLabel}</div>
+                                    </div>
+                                    <div className="flex flex-wrap items-center gap-2">
+                                        {isAdmin ? (
+                                            <select
+                                                className="input-base px-2 py-1 text-xs"
+                                                value={member.role}
+                                                onChange={e => handleRoleChange(member.userId, e.target.value as "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER")}
+                                                disabled={member.role === "GROUP_OWNER"}
+                                            >
+                                                <option value="MEMBER">Member</option>
+                                                <option value="GROUP_ADMIN">Admin</option>
+                                                {isOwner ? <option value="GROUP_OWNER">Owner</option> : null}
+                                            </select>
+                                        ) : (
+                                            <span className="text-xs text-soft">{member.role}</span>
+                                        )}
+                                        {isAdmin && member.role !== "GROUP_OWNER" ? (
+                                            <button
+                                                type="button"
+                                                className="rounded-lg border border-red-400/60 bg-red-500/10 px-2 py-1 text-xs text-red-200"
+                                                onClick={() => setConfirmKick({ userId: member.userId, name: member.displayName || member.email })}
+                                            >
+                                                Remove
+                                            </button>
+                                        ) : null}
+                                        {isOwner && member.role !== "GROUP_OWNER" ? (
+                                            <button
+                                                type="button"
+                                                className="rounded-lg btn-accent px-2 py-1 text-xs"
+                                                onClick={() => setConfirmTransfer({ userId: member.userId, name: member.displayName || member.email })}
+                                            >
+                                                Make owner
+                                            </button>
+                                        ) : null}
+                                    </div>
+                                </div>
+                            );
+                        })}
+                    </div>
+                </div>
+
+                <div className="panel panel-accent p-4 space-y-3">
+                    <div className="card-header">
+                        <div className="card-title text-red-200">Danger zone</div>
+                    </div>
+                    <div className="space-y-2">
+                        {showLeaveGroup ? (
+                            <button
+                                type="button"
+                                className="w-full rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                onClick={() => setConfirmLeaveOpen(true)}
+                            >
+                                Leave group
+                            </button>
+                        ) : null}
+                        <button
+                            type="button"
+                            className="w-full rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-sm font-semibold text-red-200"
+                            onClick={() => setConfirmDeleteGroupOpen(true)}
+                            disabled={!isOwner}
+                        >
+                            Delete group
+                        </button>
+                    </div>
+                    {!isOwner ? <div className="text-xs text-soft">Only the owner can delete this group.</div> : null}
+                </div>
+
+                {canViewAudit ? (
+                    <div className="panel panel-accent p-4 space-y-3">
+                        <div className="card-header">
+                            <div className="card-title">Audit log</div>
+                            <button
+                                type="button"
+                                className="rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                                onClick={() => setAuditOpen(prev => !prev)}
+                            >
+                                {auditOpen ? "Collapse" : "Expand"}
+                            </button>
+                        </div>
+                        {auditOpen ? (
+                            <>
+                                <div className="flex flex-wrap items-center gap-2">
+                                    <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2">
+                                        <div className="text-[11px] text-soft">Total logs</div>
+                                        <div className="text-base font-semibold">{events.length}</div>
+                                    </div>
+                                    <div className="rounded-lg border border-accent-weak bg-panel px-3 py-2">
+                                        <div className="text-[11px] text-soft">Logs today</div>
+                                        <div className="text-base font-semibold">{logsToday}</div>
+                                    </div>
+                                    <button
+                                        type="button"
+                                        className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-left disabled:opacity-60"
+                                        onClick={() => mostActiveUser ? setAuditQuery(mostActiveUser.searchValue) : null}
+                                        disabled={!mostActiveUser}
+                                    >
+                                        <div className="text-[11px] text-soft">Most Active User ({mostActiveCount})</div>
+                                        <div className="text-base font-semibold">
+                                            {mostActiveUser ? `${mostActiveUser.name}` : "-"}
+                                        </div>
+                                    </button>
+                                </div>
+                                <div className="flex flex-wrap items-center gap-2">
+                                    {([
+                                        { key: "entries", label: "Entries" },
+                                        { key: "members", label: "Members" },
+                                        { key: "tags", label: "Tags" },
+                                        { key: "settings", label: "Settings" }
+                                    ] as const).map(filter => (
+                                        <button
+                                            key={filter.key}
+                                            type="button"
+                                            className={`rounded-lg border px-2 py-1 text-xs font-semibold ${auditFilters.includes(filter.key) ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel"}`}
+                                            onClick={() => setAuditFilters(prev => prev.includes(filter.key) ? prev.filter(item => item !== filter.key) : [...prev, filter.key])}
+                                        >
+                                            {filter.label}
+                                        </button>
+                                    ))}
+                                </div>
+                                <div className="flex flex-wrap items-center gap-2">
+                                    <div className="relative min-w-[220px] flex-1">
+                                        <svg className="pointer-events-none absolute left-3 top-1/2 h-4 w-4 -translate-y-1/2 text-soft" viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round">
+                                            <circle cx="11" cy="11" r="8" />
+                                            <path d="m21 21-4.3-4.3" />
+                                        </svg>
+                                        <input
+                                            className="input-base w-full px-9 py-2 text-sm"
+                                            placeholder="Search by user, action, or request id"
+                                            value={auditQuery}
+                                            onChange={e => setAuditQuery(e.target.value)}
+                                        />
+                                    </div>
+                                    <div className="flex min-w-[220px] flex-1 items-center gap-2 flex-nowrap">
+                                        <div className="relative flex-1">
+                                            <svg className="pointer-events-none absolute left-3 top-1/2 h-4 w-4 -translate-y-1/2 text-soft" viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round">
+                                                <rect x="3" y="4" width="18" height="18" rx="2" ry="2" />
+                                                <line x1="16" y1="2" x2="16" y2="6" />
+                                                <line x1="8" y1="2" x2="8" y2="6" />
+                                                <line x1="3" y1="10" x2="21" y2="10" />
+                                            </svg>
+                                            <input
+                                                type="date"
+                                                className="no-date-icon input-base date-input w-full pl-9 pr-3 py-2 text-sm"
+                                                value={auditFrom}
+                                                onChange={e => setAuditFrom(e.target.value)}
+                                            />
+                                        </div>
+                                        <div className="relative flex-1">
+                                            <svg className="pointer-events-none absolute left-3 top-1/2 h-4 w-4 -translate-y-1/2 text-soft" viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round">
+                                                <rect x="3" y="4" width="18" height="18" rx="2" ry="2" />
+                                                <line x1="16" y1="2" x2="16" y2="6" />
+                                                <line x1="8" y1="2" x2="8" y2="6" />
+                                                <line x1="3" y1="10" x2="21" y2="10" />
+                                            </svg>
+                                            <input
+                                                type="date"
+                                                className="no-date-icon input-base date-input w-full pl-9 pr-3 py-2 text-sm"
+                                                value={auditTo}
+                                                onChange={e => setAuditTo(e.target.value)}
+                                            />
+                                        </div>
+                                    </div>
+                                </div>
+                                {!filteredEvents.length ? (
+                                    <div className="text-xs text-soft">No audit events match your filters.</div>
+                                ) : (
+                                    <div className="max-h-72 space-y-2 overflow-auto rounded-lg border border-accent-weak bg-panel p-2">
+                                        {filteredEvents.slice(0, auditLimit).map(event => (
+                                            <div key={event.id} className="rounded-lg border border-accent-weak bg-panel px-3 py-2 text-xs text-soft">
+                                                <div className="text-sm font-semibold text-[color:var(--color-text)]">{event.eventType}</div>
+                                                <div className="mt-1 flex flex-wrap gap-2 text-[11px] text-soft">
+                                                    <span>Actor: {getMemberLabel(event.actorUserId)}</span>
+                                                    <span>Role: {event.actorRole ?? "-"}</span>
+                                                    <span>{new Date(event.createdAt).toLocaleString()}</span>
+                                                </div>
+                                            </div>
+                                        ))}
+                                        {filteredEvents.length > auditLimit ? (
+                                            <button
+                                                type="button"
+                                                className="w-full rounded-lg btn-outline-accent px-2 py-1 text-xs"
+                                                onClick={() => setAuditLimit(prev => prev + 10)}
+                                            >
+                                                Load more
+                                            </button>
+                                        ) : null}
+                                    </div>
+                                )}
+                            </>
+                        ) : (
+                            <div className="text-xs text-soft">Audit log is collapsed.</div>
+                        )}
+                    </div>
+                ) : null}
+
+                {renameModalOpen ? (
+                    <div className="fixed inset-0 z-[70] flex items-center justify-center bg-black/60 p-4 !mt-0" onClick={handleCloseRenameModal}>
+                        <div
+                            className="relative w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5"
+                            onClick={event => event.stopPropagation()}
+                            onKeyDown={event => {
+                                if (event.key === "Escape") handleCloseRenameModal();
+                                if (event.key === "Enter" && renameDirty && isAdmin && renameValue.trim()) setConfirmRenameOpen(true);
+                            }}
+                            role="dialog"
+                            tabIndex={-1}
+                        >
+                            <button
+                                type="button"
+                                className="absolute right-3 top-3 rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                                onClick={handleCloseRenameModal}
+                                aria-label="Close"
+                            >
+                                ✕
+                            </button>
+                            <div className="text-lg font-semibold">Change group name</div>
+                            <input
+                                className={`mt-4 w-full input-base px-3 py-2 text-sm ${renameValue.trim() ? "" : "border-red-400/70"}`}
+                                value={renameValue}
+                                onChange={e => setRenameValue(e.target.value)}
+                                placeholder="Group name"
+                            />
+                            {renameDirty ? (
+                                <div className="mt-3 rounded-lg border border-yellow-400/60 bg-yellow-500/10 px-3 py-2 text-xs text-yellow-200">
+                                    You have unsaved changes.
+                                </div>
+                            ) : null}
+                            <div className="mt-4 flex items-center gap-2">
+                                {renameDirty ? (
+                                    <>
+                                        <button
+                                            type="button"
+                                            className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                            onClick={handleCloseRenameModal}
+                                        >
+                                            Discard changes
+                                        </button>
+                                        <button
+                                            type="button"
+                                            className="flex-1 rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+                                            onClick={() => setConfirmRenameOpen(true)}
+                                            disabled={!isAdmin || !renameValue.trim()}
+                                        >
+                                            Rename
+                                        </button>
+                                    </>
+                                ) : (
+                                    <button
+                                        type="button"
+                                        className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                        onClick={handleCloseRenameModal}
+                                    >
+                                        Dismiss
+                                    </button>
+                                )}
+                            </div>
+                        </div>
+                    </div>
+                ) : null}
+
+                {tagModalOpen ? (
+                    <div className="fixed inset-0 z-[70] flex items-center justify-center bg-black/60 p-4 !mt-0" onClick={() => setTagModalOpen(false)}>
+                        <div
+                            className="w-full max-w-xl rounded-2xl border border-accent-weak bg-panel p-5"
+                            onClick={event => event.stopPropagation()}
+                            onKeyDown={event => {
+                                if (event.key === "Escape") setTagModalOpen(false);
+                                // if (event.key === "Enter" && !event.shiftKey && pendingTags.length && canManageTags) handleSaveTags();
+                            }}
+                            role="dialog"
+                            tabIndex={-1}
+                        >
+                            <div className="flex items-center justify-between">
+                                <div className="text-lg font-semibold">Edit tags</div>
+                                <button type="button" className="rounded-lg btn-outline-accent px-2 py-1 text-sm" onClick={() => setTagModalOpen(false)} aria-label="Close">
+                                    ✕
+                                </button>
+                            </div>
+                            <div className="mt-4 space-y-3">
+                                <TagInput
+                                    label="Add tags"
+                                    tags={pendingTags}
+                                    suggestions={tags}
+                                    enableBackspaceRemove
+                                    onToggleTag={tag => setPendingTags(prev => prev.filter(item => item !== tag))}
+                                    onAddTag={tag => setPendingTags(prev => prev.includes(tag) ? prev : [...prev, tag])}
+                                />
+                                <button
+                                    type="button"
+                                    className="rounded-lg btn-accent px-3 py-2 text-sm font-semibold disabled:opacity-60"
+                                    onClick={handleSaveTags}
+                                    disabled={!pendingTags.length || !canManageTags}
+                                >
+                                    Save tags
+                                </button>
+                                {!canManageTags ? (
+                                    <div className="text-xs text-soft">Only admins can add new tags.</div>
+                                ) : null}
+                                <div className="divider" />
+                                <div className="text-sm font-semibold">Existing tags</div>
+                                <div className="max-h-60 overflow-auto resize-y pr-1">
+                                    <div className="flex flex-wrap gap-2">
+                                        {tags.map(tag => (
+                                            <button
+                                                key={tag}
+                                                type="button"
+                                                className={`rounded-full border px-2 py-0.5 text-xs text-[color:var(--color-text)] ${toggleRemoveTags.includes(tag) ? "border-red-400/60 text-red-200 bg-red-500/10" : "border-accent-weak bg-accent-soft hover:border-accent"}`}
+                                                onClick={() => {
+                                                    if (!canManageTags) return;
+                                                    setToggleRemoveTags(prev => prev.includes(tag) ? prev.filter(item => item !== tag) : [...prev, tag]);
+                                                }}
+                                            >
+                                                #{tag}
+                                            </button>
+                                        ))}
+                                        {!tags.length ? <div className="text-xs text-soft">No tags yet.</div> : null}
+                                    </div>
+                                </div>
+                                {toggleRemoveTags.length ? (
+                                    <button
+                                        type="button"
+                                        className="rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-sm font-semibold text-red-200"
+                                        onClick={() => setConfirmDeleteOpen(true)}
+                                    >
+                                        Delete selected ({toggleRemoveTags.length})
+                                    </button>
+                                ) : null}
+                            </div>
+                        </div>
+                    </div>
+                ) : null}
+                <ConfirmSlideModal
+                    isOpen={confirmDeleteOpen}
+                    title="Delete selected tags"
+                    description="Tags will be removed from this group and any entries using them."
+                    confirmLabel="Delete tags"
+                    onClose={() => setConfirmDeleteOpen(false)}
+                    onConfirm={() => {
+                        setConfirmDeleteOpen(false);
+                        handleConfirmDelete();
+                    }}
+                />
+                <ConfirmSlideModal
+                    isOpen={Boolean(confirmDeleteInvite)}
+                    title="Delete invite link"
+                    description={confirmDeleteInvite ? `Delete invite ${confirmDeleteInvite.token.slice(0, 6)}…${confirmDeleteInvite.token.slice(-4)}?` : ""}
+                    confirmLabel="Delete link"
+                    onClose={() => setConfirmDeleteInvite(null)}
+                    onConfirm={async () => {
+                        if (!confirmDeleteInvite) return;
+                        const target = confirmDeleteInvite;
+                        setConfirmDeleteInvite(null);
+                        const ok = await deleteInvite(target.id);
+                        if (ok) notify({ title: "Invite deleted", tone: "danger" });
+                    }}
+                />
+                <ConfirmSlideModal
+                    isOpen={confirmRenameOpen}
+                    title="Rename group"
+                    description={`Change group name to "${renameValue.trim()}"?`}
+                    confirmLabel="Rename"
+                    onClose={() => setConfirmRenameOpen(false)}
+                    onConfirm={handleRenameGroup}
+                />
+                <ConfirmSlideModal
+                    isOpen={confirmLeaveOpen}
+                    title="Leave group"
+                    description="You will lose access to this group."
+                    confirmLabel="Leave"
+                    onClose={() => setConfirmLeaveOpen(false)}
+                    onConfirm={async () => {
+                        setConfirmLeaveOpen(false);
+                        const ok = await leave();
+                        if (ok) {
+                            notify({ title: "Left group" });
+                            router.push("/");
+                        }
+                    }}
+                />
+                <ConfirmSlideModal
+                    isOpen={Boolean(confirmKick)}
+                    title="Kick member"
+                    description={confirmKick ? `Remove ${confirmKick.name} from this group?` : ""}
+                    confirmLabel="Kick"
+                    onClose={() => setConfirmKick(null)}
+                    onConfirm={async () => {
+                        if (!confirmKick) return;
+                        const target = confirmKick;
+                        setConfirmKick(null);
+                        const ok = await kick(target.userId);
+                        if (ok) notify({ title: "Member removed", message: target.name, tone: "danger" });
+                    }}
+                />
+                <ConfirmSlideModal
+                    isOpen={Boolean(confirmTransfer)}
+                    title="Transfer ownership"
+                    description={confirmTransfer ? `Make ${confirmTransfer.name} the new owner?` : ""}
+                    confirmLabel="Transfer"
+                    onClose={() => setConfirmTransfer(null)}
+                    onConfirm={async () => {
+                        if (!confirmTransfer) return;
+                        const target = confirmTransfer;
+                        setConfirmTransfer(null);
+                        const ok = await transferOwner(target.userId);
+                        if (ok) notify({ title: "Ownership transferred", message: target.name });
+                    }}
+                />
+                {confirmDeleteGroupOpen ? (
+                    <div className="fixed inset-0 z-[70] flex items-center justify-center bg-black/60 p-4 !mt-0" onClick={() => setConfirmDeleteGroupOpen(false)}>
+                        <div
+                            className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5"
+                            onClick={event => event.stopPropagation()}
+                            onKeyDown={event => {
+                                if (event.key === "Escape") setConfirmDeleteGroupOpen(false);
+                                if (event.key === "Enter" && deleteConfirmText.trim().toUpperCase() === "DELETE") handleDeleteGroup();
+                            }}
+                            role="dialog"
+                            tabIndex={-1}
+                        >
+                            <div className="text-lg font-semibold text-red-200">Delete group</div>
+                            <p className="mt-2 text-sm text-muted">Type DELETE to confirm. This cannot be undone.</p>
+                            <input
+                                className={`mt-4 w-full input-base px-3 py-2 text-sm ${deleteConfirmText.trim().toUpperCase() === "DELETE" ? "" : "border-red-400/70"}`}
+                                value={deleteConfirmText}
+                                onChange={e => setDeleteConfirmText(e.target.value)}
+                                placeholder="DELETE"
+                            />
+                            <div className="mt-4 flex items-center gap-2">
+                                <button
+                                    type="button"
+                                    className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                                    onClick={() => setConfirmDeleteGroupOpen(false)}
+                                >
+                                    Cancel
+                                </button>
+                                <button
+                                    type="button"
+                                    className="flex-1 rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-sm font-semibold text-red-200 disabled:opacity-40"
+                                    disabled={deleteConfirmText.trim().toUpperCase() !== "DELETE"}
+                                    onClick={handleDeleteGroup}
+                                >
+                                    Delete
+                                </button>
+                            </div>
+                        </div>
+                    </div>
+                ) : null}
+            </div>
+        </>
+    );
+}
diff --git a/apps/web/components/navbar.tsx b/apps/web/components/navbar.tsx
new file mode 100644
index 0000000..cd61672
--- /dev/null
+++ b/apps/web/components/navbar.tsx
@@ -0,0 +1,186 @@
+"use client";
+
+import { useEffect, useRef, useState } from "react";
+import { useRouter } from "next/navigation";
+import GroupDropdown from "@/components/group-dropdown";
+import { useAuthContext } from "@/hooks/auth-context";
+import { useGroupsContext } from "@/hooks/groups-context";
+
+export default function Navbar() {
+  const router = useRouter();
+  const { checkSession, logout } = useAuthContext();
+  const { activeGroupId } = useGroupsContext();
+  const [inviteModalCode, setInviteModalCode] = useState<string | null>(null);
+  const [inviteCopied, setInviteCopied] = useState(false);
+  const [hideNavbar, setHideNavbar] = useState(false);
+  const [userMenuOpen, setUserMenuOpen] = useState(false);
+  const [userEmail, setUserEmail] = useState<string | null>(null);
+  const userMenuRef = useRef<HTMLDivElement | null>(null);
+
+  async function handleCopyInvite() {
+    if (!inviteModalCode) return;
+
+    await navigator.clipboard.writeText(inviteModalCode);
+    setInviteCopied(true);
+  }
+
+  async function handleLogout() {
+    await logout();
+    setUserMenuOpen(false);
+    router.push("/login");
+  }
+
+  useEffect(() => {
+    let active = true;
+    async function loadUser() {
+      const user = await checkSession();
+      if (active) setUserEmail(user?.email || null);
+    }
+    loadUser();
+    return () => {
+      active = false;
+    };
+  }, [checkSession]);
+
+  useEffect(() => {
+    function handleClickOutside(event: MouseEvent) {
+      if (!userMenuOpen || !userMenuRef.current) return;
+      if (!userMenuRef.current.contains(event.target as Node))
+        setUserMenuOpen(false);
+    }
+    document.addEventListener("mousedown", handleClickOutside);
+    return () => document.removeEventListener("mousedown", handleClickOutside);
+  }, [userMenuOpen]);
+
+  useEffect(() => {
+    if (!inviteModalCode) return;
+    function handleKeyDown(event: KeyboardEvent) {
+      if (event.key === "Escape") setInviteModalCode(null);
+    }
+    window.addEventListener("keydown", handleKeyDown);
+    return () => window.removeEventListener("keydown", handleKeyDown);
+  }, [inviteModalCode]);
+
+  useEffect(() => {
+    let lastY = window.scrollY;
+    function onScroll() {
+      const current = window.scrollY;
+      const diff = current - lastY;
+      if (Math.abs(diff) < 6) return;
+      if (current <= 8) {
+        setHideNavbar(false);
+      } else if (diff > 0) {
+        setHideNavbar(true);
+      } else {
+        setHideNavbar(false);
+      }
+      lastY = current;
+    }
+    window.addEventListener("scroll", onScroll, { passive: true });
+    return () => window.removeEventListener("scroll", onScroll);
+  }, []);
+
+  return (
+    <>
+      <header className={`sticky top-0 z-40 border-b border-accent-weak bg-app backdrop-blur transition-transform duration-200 ${hideNavbar ? "-translate-y-full" : "translate-y-0"}`}>
+        <div className="mx-auto flex max-w-5xl items-center justify-between px-4 py-2.5">
+          <div className="flex items-center gap-2">
+            <button
+              type="button"
+              className="flex h-9 w-9 items-center justify-center overflow-hidden rounded-xl border border-accent bg-panel hover:border-accent-strong"
+              aria-label="Settings"
+              onClick={() => {
+                if (activeGroupId) router.push("/groups/settings");
+                else router.push("/");
+              }}
+            >
+              <img src="/icons/navbar-settings.png" alt="" className="h-full w-full rounded-lg object-cover" />
+            </button>
+            <div className="hidden sm:block text-sm font-semibold">Fiddy</div>
+          </div>
+
+          <GroupDropdown
+            onInviteCode={code => {
+              setInviteModalCode(code);
+              setInviteCopied(false);
+            }}
+          />
+
+          <div className="relative" ref={userMenuRef}>
+            <button
+              type="button"
+              aria-label="User menu"
+              onClick={() => setUserMenuOpen(prev => !prev)}
+              className="flex h-9 w-9 items-center justify-center rounded-full border border-accent-weak bg-panel text-sm text-muted hover:border-accent"
+            >
+              <span className="text-base">👤</span>
+            </button>
+            {userMenuOpen ? (
+              <div className="absolute right-0 mt-2 w-48 rounded-xl border border-accent-weak bg-panel p-3 text-sm shadow-lg">
+                <div className="text-xs text-soft">Signed in as</div>
+                <div className="mt-1 truncate text-sm font-semibold text-[color:var(--color-text)]">
+                  {userEmail || "User"}
+                </div>
+                <div className="my-3 h-px divider" />
+                <button
+                  type="button"
+                  className="w-full rounded-lg btn-outline-accent px-3 py-2 text-xs font-semibold"
+                  onClick={() => {
+                    setUserMenuOpen(false);
+                    if (activeGroupId) router.push("/groups/settings");
+                    else router.push("/");
+                  }}
+                >
+                  Settings
+                </button>
+                <button
+                  type="button"
+                  className="mt-2 w-full rounded-lg border border-red-400/60 bg-red-500/10 px-3 py-2 text-xs font-semibold text-red-200"
+                  onClick={handleLogout}
+                >
+                  Logout
+                </button>
+              </div>
+            ) : null}
+          </div>
+        </div>
+      </header>
+      {inviteModalCode ? (
+        <div className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 px-4 py-6 overflow-y-auto">
+          <div
+            className="w-full max-w-sm rounded-2xl border border-accent-weak bg-panel p-5 shadow-xl max-h-[90vh]"
+            onKeyDown={event => {
+              if (event.key === "Escape") setInviteModalCode(null);
+            }}
+            role="dialog"
+            tabIndex={-1}
+          >
+            <div className="text-lg font-semibold">Invite code</div>
+            <p className="mt-2 text-sm text-muted">
+              Share this code to invite members. You can view it later in group settings.
+            </p>
+            <div className="mt-4 rounded-lg border border-accent-weak bg-surface px-3 py-2 text-center text-lg tracking-widest">
+              {inviteModalCode}
+            </div>
+            <div className="mt-4 flex items-center gap-2">
+              <button
+                type="button"
+                className="flex-1 rounded-lg btn-accent px-3 py-2 text-sm font-semibold"
+                onClick={handleCopyInvite}
+              >
+                {inviteCopied ? "Copied" : "Copy code"}
+              </button>
+              <button
+                type="button"
+                className="flex-1 rounded-lg btn-outline-accent px-3 py-2 text-sm font-semibold"
+                onClick={() => setInviteModalCode(null)}
+              >
+                Close
+              </button>
+            </div>
+          </div>
+        </div>
+      ) : null}
+    </>
+  );
+}
diff --git a/apps/web/components/new-bucket-modal.tsx b/apps/web/components/new-bucket-modal.tsx
new file mode 100644
index 0000000..2194c33
--- /dev/null
+++ b/apps/web/components/new-bucket-modal.tsx
@@ -0,0 +1,222 @@
+"use client";
+
+import type React from "react";
+import { useEffect, useMemo, useRef, useState } from "react";
+import TagInput from "@/components/tag-input";
+import { bucketIcons } from "@/lib/shared/bucket-icons";
+
+type BucketForm = {
+    name: string;
+    description: string;
+    iconKey: string;
+    budgetLimitDollars: string;
+    tags: string[];
+    necessity: string;
+    windowDays: string;
+};
+
+type NewBucketModalProps = {
+    isOpen: boolean;
+    title: string;
+    form: BucketForm;
+    error: string;
+    onClose: () => void;
+    onSubmit: (event: React.FormEvent<HTMLFormElement>) => void;
+    onChange: (next: Partial<BucketForm>) => void;
+    tagSuggestions: string[];
+};
+
+export default function NewBucketModal({ isOpen, title, form, error, onClose, onSubmit, onChange, tagSuggestions }: NewBucketModalProps) {
+    const [iconModalOpen, setIconModalOpen] = useState(false);
+    const [iconSearch, setIconSearch] = useState("");
+    const formRef = useRef<HTMLFormElement | null>(null);
+    const normalizedSearch = iconSearch.trim().toLowerCase();
+    const filteredIcons = useMemo(() => {
+        if (!normalizedSearch) return bucketIcons;
+        return bucketIcons.filter(item => item.label.toLowerCase().includes(normalizedSearch) || item.key.toLowerCase().includes(normalizedSearch));
+    }, [normalizedSearch]);
+    const iconMap = useMemo(() => new Map(bucketIcons.map(item => [item.key, item.icon])), []);
+    const selectedIcon = form.iconKey ? iconMap.get(form.iconKey) : iconMap.get("none");
+
+    useEffect(() => {
+        if (!isOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") {
+                if (iconModalOpen) setIconModalOpen(false);
+                else onClose();
+            }
+        }
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [iconModalOpen, isOpen, onClose]);
+
+    if (!isOpen) return null;
+
+    return (
+        <div
+            className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 p-4 !mt-0"
+            onClick={onClose}
+        >
+            <div
+                className="relative w-full max-w-xl rounded-xl border border-accent-weak bg-panel p-4"
+                onClick={event => event.stopPropagation()}
+            >
+                <button
+                    type="button"
+                    onClick={onClose}
+                    className="absolute right-3 top-3 rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                    aria-label="Close"
+                >
+                    ✕
+                </button>
+                <div className="text-lg font-semibold">{title}</div>
+                <form
+                    ref={formRef}
+                    onSubmit={onSubmit}
+                    onKeyDown={event => {
+                        if (event.key !== "Enter" || event.defaultPrevented || event.shiftKey) return;
+                        const target = event.target as HTMLElement;
+                        if (target?.tagName === "TEXTAREA") return;
+                        event.preventDefault();
+                        formRef.current?.requestSubmit();
+                    }}
+                    className="mt-3 grid gap-3 md:grid-cols-2"
+                >
+                    <label className="text-sm text-muted md:col-span-2">
+                        <div className="mt-1 flex items-center gap-2">
+                            <div
+                                className="flex h-10 w-12 items-center justify-center rounded-full border border-accent-weak bg-surface text-lg"
+                                onClick={() => setIconModalOpen(true)}
+                            >
+                                {selectedIcon || "🚫"}
+                            </div>
+                            <input
+                                name="name"
+                                className={`w-full input-base px-3 py-2 text-sm ${form.name.trim() ? "" : "border-red-400/70"}`}
+                                value={form.name}
+                                onChange={e => onChange({ name: e.target.value })}
+                                required
+                            />
+                        </div>
+                    </label>
+                    <label className="text-sm text-muted">
+                        Budget limit ($)
+                        <input
+                            name="budgetLimitDollars"
+                            type="number"
+                            min={0}
+                            step="0.01"
+                            className="mt-1 w-full input-base px-3 py-2 text-sm"
+                            value={form.budgetLimitDollars}
+                            placeholder="none"
+                            onChange={e => onChange({ budgetLimitDollars: e.target.value })}
+                        />
+                    </label>
+                    <label className="text-sm text-muted">
+                        Window days
+                        <input
+                            name="windowDays"
+                            type="number"
+                            min={1}
+                            max={365}
+                            className="mt-1 w-full input-base px-3 py-2 text-sm"
+                            value={form.windowDays}
+                            onChange={e => onChange({ windowDays: e.target.value })}
+                        />
+                    </label>
+                    <div className="text-sm text-muted md:col-span-2">
+                        <div className="mt-1 flex items-center gap-2 rounded-full border border-accent-weak bg-panel" role="group" aria-label="Necessity">
+                            {([
+                                { value: "NECESSARY", label: "Necessary" },
+                                { value: "BOTH", label: "Both" },
+                                { value: "UNNECESSARY", label: "Unnecessary" }
+                            ] as const).map(option => (
+                                <button
+                                    key={option.value}
+                                    type="button"
+                                    className={`flex-1 rounded-full px-3 py-2.5 text-xs font-semibold ${form.necessity === option.value ? "btn-accent" : "text-muted"}`}
+                                    onClick={() => onChange({ necessity: option.value })}
+                                >
+                                    {option.label}
+                                </button>
+                            ))}
+                        </div>
+                    </div>
+                    <label className="text-sm text-muted md:col-span-2">
+                        Description
+                        <textarea
+                            name="description"
+                            className="mt-1 w-full input-base px-3 py-2 text-sm"
+                            rows={2}
+                            value={form.description}
+                            onChange={e => onChange({ description: e.target.value })}
+                        />
+                    </label>
+                    <TagInput
+                        label="Bucket tags"
+                        tags={form.tags}
+                        suggestions={tagSuggestions}
+                        allowCustom={false}
+                        onToggleTag={tag => onChange({ tags: form.tags.filter(item => item !== tag) })}
+                        onAddTag={tag => onChange({ tags: [...form.tags, tag] })}
+                    />
+                    <div className="md:col-span-2 flex items-center justify-between">
+                        <button type="submit" className="rounded-lg btn-accent px-4 py-2 text-sm font-semibold">
+                            Save bucket
+                        </button>
+                        {error ? <div className="text-sm text-red-400">{error}</div> : null}
+                    </div>
+                </form>
+            </div>
+
+
+
+            {iconModalOpen ? (
+                <div className="fixed inset-0 z-[60] flex items-center justify-center bg-black/60 p-4" onClick={() => setIconModalOpen(false)}>
+                    <div className="w-full max-w-lg rounded-2xl border border-accent-weak bg-panel p-4" onClick={event => event.stopPropagation()}>
+                        <div className="flex items-center justify-between">
+                            <div className="text-lg font-semibold">Pick an icon</div>
+                            <button
+                                type="button"
+                                className="rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                                onClick={() => setIconModalOpen(false)}
+                                aria-label="Close"
+                            >
+                                ✕
+                            </button>
+                        </div>
+                        <input
+                            type="text"
+                            className="mt-3 w-full input-base px-3 py-2 text-sm"
+                            placeholder="Search icons"
+                            value={iconSearch}
+                            onChange={e => setIconSearch(e.target.value)}
+                        />
+                        <div className="mt-3 max-h-[50vh] overflow-auto rounded-lg border border-accent-weak bg-surface p-2">
+                            <div className="grid grid-cols-6 gap-2 sm:grid-cols-8">
+                                {filteredIcons.map(item => (
+                                    <button
+                                        key={item.key}
+                                        type="button"
+                                        className={`flex h-10 w-10 items-center justify-center rounded-lg border text-lg ${form.iconKey === item.key ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel hover:border-accent"}`}
+                                        onClick={() => {
+                                            onChange({ iconKey: item.key });
+                                            setIconModalOpen(false);
+                                        }}
+                                        aria-label={item.label}
+                                        title={item.label}
+                                    >
+                                        {item.icon}
+                                    </button>
+                                ))}
+                            </div>
+                            {!filteredIcons.length ? (
+                                <div className="py-6 text-center text-sm text-soft">No matching icons.</div>
+                            ) : null}
+                        </div>
+                    </div>
+                </div>
+            ) : null}
+        </div>
+    );
+}
diff --git a/apps/web/components/new-entry-modal.tsx b/apps/web/components/new-entry-modal.tsx
new file mode 100644
index 0000000..7989a28
--- /dev/null
+++ b/apps/web/components/new-entry-modal.tsx
@@ -0,0 +1,297 @@
+"use client";
+
+import type React from "react";
+import { useEffect, useRef } from "react";
+import TagInput from "@/components/tag-input";
+
+type NewEntryForm = {
+    amountDollars: string;
+    occurredAt: string;
+    necessity: string;
+    notes: string;
+    tags: string[];
+    entryType: "SPENDING" | "INCOME";
+    isRecurring: boolean;
+    frequency: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY";
+    intervalCount: number;
+    endCondition: "NEVER" | "AFTER_COUNT" | "BY_DATE";
+    endCount: string;
+    endDate: string;
+};
+
+type NewEntryModalProps = {
+    isOpen: boolean;
+    form: NewEntryForm;
+    error: string;
+    onClose: () => void;
+    onSubmit: (event: React.FormEvent<HTMLFormElement>) => void;
+    onChange: (next: Partial<NewEntryForm>) => void;
+    tagSuggestions: string[];
+    emptyTagActionLabel?: string;
+    emptyTagActionDisabled?: boolean;
+    onEmptyTagAction?: () => void;
+    amountInputRef?: React.Ref<HTMLInputElement>;
+    tagsInputRef?: React.Ref<HTMLInputElement>;
+};
+
+export default function NewEntryModal({ isOpen, form, error, onClose, onSubmit, onChange, tagSuggestions, emptyTagActionLabel, emptyTagActionDisabled = false, onEmptyTagAction, amountInputRef, tagsInputRef }: NewEntryModalProps) {
+    const recurrenceLabel = form.isRecurring ? "Recurring" : "One-Time";
+    const typeLabel = form.entryType === "INCOME" ? "Income" : "Expense";
+    const formRef = useRef<HTMLFormElement | null>(null);
+
+    useEffect(() => {
+        if (!isOpen) return;
+        function handleKeyDown(event: KeyboardEvent) {
+            if (event.key === "Escape") onClose();
+        }
+
+        if (!form.occurredAt) {
+            const today = new Date().toISOString().slice(0, 10);
+            onChange({ occurredAt: today, endDate: form.endDate || today });
+        }
+
+        window.addEventListener("keydown", handleKeyDown);
+        return () => window.removeEventListener("keydown", handleKeyDown);
+    }, [form.endDate, form.occurredAt, isOpen, onChange, onClose]);
+
+
+
+    function shiftDate(days: number) {
+        const base = form.occurredAt ? new Date(form.occurredAt) : new Date();
+        if (Number.isNaN(base.getTime())) return;
+        base.setDate(base.getDate() + days);
+        onChange({ occurredAt: base.toISOString().slice(0, 10) });
+    }
+
+
+
+    if (!isOpen) return null;
+
+    return (
+        <div
+            className="fixed inset-0 z-50 flex items-center justify-center bg-black/60 p-4 !mt-0"
+            onClick={onClose}
+        >
+            <div
+                className="w-full max-w-xl rounded-xl border border-accent-weak bg-panel p-4"
+                onClick={event => event.stopPropagation()}
+            >
+                <div className="flex items-center justify-between">
+                    <h2 className="text-lg font-semibold">New {recurrenceLabel} {typeLabel} Entry</h2>
+                    <button
+                        type="button"
+                        onClick={onClose}
+                        className="rounded-lg btn-outline-accent px-2 py-1 text-sm"
+                        aria-label="Close"
+                    >
+                        ✕
+                    </button>
+                </div>
+                <div className="mt-2 flex flex-wrap items-center gap-2">
+                    <div
+                        className="flex items-center gap-[-50px] rounded-full border border-accent-weak bg-panel">
+                        <button
+                            type="button"
+                            className={`rounded-full mr-[-10px] px-4 py-2.5 text-xs font-semibold ${form.entryType === "SPENDING" ? "btn-accent" : "text-muted"}`}
+                            onClick={() => onChange({ entryType: form.entryType === "SPENDING" ? "INCOME" : "SPENDING" })}
+                        >
+                            Spending
+                        </button>
+                        <button
+                            type="button"
+                            className={`rounded-full px-4 py-2.5 text-xs font-semibold ${form.entryType === "INCOME" ? "btn-accent" : "text-muted"}`}
+                            onClick={() => onChange({ entryType: form.entryType === "INCOME" ? "SPENDING" : "INCOME" })}
+                        >
+                            Income
+                        </button>
+                    </div>
+
+                    <button
+                        type="button"
+                        className={`flex h-9 w-9 items-center justify-center rounded-full border text-lg ${form.isRecurring ? "border-accent bg-accent-soft" : "border-accent-weak bg-panel"}`}
+                        onClick={() => onChange({ isRecurring: !form.isRecurring })}
+                        title="Toggle Recurring Entry"
+                        aria-label={form.isRecurring ? "Recurring entry" : "One-time entry"}
+                    >
+                        <span aria-hidden>⟳</span>
+                    </button>
+                </div>
+                <form
+                    ref={formRef}
+                    onSubmit={onSubmit}
+                    onKeyDown={event => {
+                        if (event.key !== "Enter" || event.defaultPrevented || event.shiftKey) return;
+                        const target = event.target as HTMLElement;
+                        if (target?.tagName === "TEXTAREA") return;
+                        event.preventDefault();
+                        formRef.current?.requestSubmit();
+                    }}
+                    className="mt-3 grid gap-3 md:grid-cols-2"
+                >
+                    <label className="text-sm text-muted">
+                        {/* Amount ($) */}
+                        <div className="relative mt-1">
+                            <span className="pointer-events-none absolute left-3 top-1/2 -translate-y-1/2 text-sm text-soft">
+                                {form.entryType === "INCOME" ? "🤑 $" : "😭 $"}
+                            </span>
+                            <input
+                                ref={amountInputRef}
+                                name="amountDollars"
+                                type="number"
+                                min={0}
+                                step="0.01"
+                                className={`w-full input-base px-12 py-2 text-sm ${form.amountDollars ? "" : "border-red-400/70"}`}
+                                value={form.amountDollars}
+                                onChange={e => onChange({ amountDollars: e.target.value })}
+                                required
+                            />
+                        </div>
+                    </label>
+                    <div className="text-sm text-muted">
+                        <div className={`mt-1 inline-flex w-full items-center overflow-hidden rounded-full border ${form.occurredAt ? "border-accent-weak" : "border-red-400/70"} bg-panel`}>
+                            <button type="button" className="h-11 w-full text-sm text-muted hover:bg-accent-soft" onClick={() => shiftDate(-7)}>«</button>
+                            <button type="button" className="h-11 w-full text-sm text-muted hover:bg-accent-soft" onClick={() => shiftDate(-1)}>‹</button>
+                            <input
+                                name="occurredAt"
+                                type="date"
+                                className="no-date-icon h-11 w-40 bg-transparent px-3 text-sm text-[color:var(--color-text)] outline-none"
+                                value={form.occurredAt}
+                                onChange={e => onChange({ occurredAt: e.target.value })}
+                                required
+                            />
+                            <button type="button" className="h-11 w-full text-sm text-muted hover:bg-accent-soft" onClick={() => shiftDate(1)}>›</button>
+                            <button type="button" className="h-11 w-full text-sm text-muted hover:bg-accent-soft" onClick={() => shiftDate(7)}>»</button>
+                        </div>
+                    </div>
+                    <div className="text-sm text-muted">
+                        <div className="mt-1 flex items-center gap-2 rounded-full border border-accent-weak bg-panel" role="group" aria-label="Necessity">
+                            {([
+                                { value: "NECESSARY", label: "Necessary" },
+                                { value: "BOTH", label: "Both" },
+                                { value: "UNNECESSARY", label: "Unnecessary" }
+                            ] as const).map(option => (
+                                <button
+                                    key={option.value}
+                                    type="button"
+                                    className={`flex-1 rounded-full px-3 py-2.5 text-xs font-semibold ${form.necessity === option.value ? "btn-accent" : "text-muted"}`}
+                                    onClick={() => onChange({ necessity: option.value })}
+                                >
+                                    {option.label}
+                                </button>
+                            ))}
+                        </div>
+                    </div>
+
+                    {/* TAGS */}
+                    <TagInput
+                        label="Tags"
+                        tags={form.tags}
+                        suggestions={tagSuggestions}
+                        allowCustom={false}
+                        onToggleTag={tag => onChange({ tags: form.tags.filter(item => item !== tag) })}
+                        onAddTag={tag => onChange({ tags: [...form.tags, tag] })}
+                        emptySuggestionLabel={emptyTagActionLabel}
+                        emptySuggestionDisabled={emptyTagActionDisabled}
+                        onEmptySuggestionClick={onEmptyTagAction}
+                        invalid={!form.tags.length}
+                        inputRef={tagsInputRef}
+                    />
+
+                    {/* RECURRING OPTIONS */}
+                    {form.isRecurring ? (
+                        <div className="md:col-span-2">
+                            <div className="text-sm text-muted">Frequency Conditions</div>
+                            <div className="mt-2 flex flex-wrap items-center justify-center gap-2">
+                                <input
+                                    type="number"
+                                    min={1}
+                                    className="w-14 input-base px-3 py-2 text-center text-sm"
+                                    value={form.intervalCount}
+                                    onChange={e => onChange({ intervalCount: Number(e.target.value || 1) })}
+                                />
+                                <select
+                                    className="w-20 min-w-[110px] input-base px-3 py-2 text-center text-sm"
+                                    value={form.frequency}
+                                    onChange={e => onChange({ frequency: e.target.value as NewEntryForm["frequency"] })}
+                                >
+                                    <option value="DAILY">day(s)</option>
+                                    <option value="WEEKLY">week(s)</option>
+                                    <option value="MONTHLY">month(s)</option>
+                                    <option value="YEARLY">year(s)</option>
+                                </select>
+                                <div className="flex items-center gap-1 rounded-full border border-accent-weak bg-panel" role="group" aria-label="End condition">
+                                    {([
+                                        { value: "NEVER", label: "Forever" },
+                                        { value: "BY_DATE", label: "Until" },
+                                        { value: "AFTER_COUNT", label: "After" }
+                                    ] as const).map(option => (
+                                        <button
+                                            key={option.value}
+                                            type="button"
+                                            className={`rounded-full px-3 py-3 text-xs font-semibold ${form.endCondition === option.value ? "btn-accent" : "text-muted"}`}
+                                            onClick={() => onChange({ endCondition: option.value })}
+                                        >
+                                            {option.label}
+                                        </button>
+                                    ))}
+                                </div>
+                                {form.endCondition === "AFTER_COUNT" ? (
+                                    <input
+                                        type="number"
+                                        min={1}
+                                        className="w-24 input-base px-3 py-2 text-center text-sm"
+                                        value={form.endCount}
+                                        placeholder="Count"
+                                        onChange={e => onChange({ endCount: e.target.value })}
+                                    />
+                                ) : null}
+                                {form.endCondition === "BY_DATE" ? (
+                                    <div className={`inline-flex items-center overflow-hidden rounded-full border ${form.endDate ? "border-accent-weak" : "border-red-400/70"} bg-panel`}>
+                                        <button type="button" className="h-11 w-20 text-sm text-muted hover:bg-accent-soft" onClick={() => {
+                                            const base = form.endDate ? new Date(form.endDate) : new Date(form.occurredAt || Date.now());
+                                            if (Number.isNaN(base.getTime())) return;
+                                            base.setDate(base.getDate() - 1);
+                                            onChange({ endDate: base.toISOString().slice(0, 10) });
+                                        }}>‹</button>
+                                        <input
+                                            type="date"
+                                            className="no-date-icon h-11 w-40 bg-transparent px-3 text-center text-sm text-[color:var(--color-text)] outline-none"
+                                            value={form.endDate}
+                                            onChange={e => onChange({ endDate: e.target.value })}
+                                        />
+                                        <button type="button" className="h-11 w-20 text-sm text-muted hover:bg-accent-soft" onClick={() => {
+                                            const base = form.endDate ? new Date(form.endDate) : new Date(form.occurredAt || Date.now());
+                                            if (Number.isNaN(base.getTime())) return;
+                                            base.setDate(base.getDate() + 1);
+                                            onChange({ endDate: base.toISOString().slice(0, 10) });
+                                        }}>›</button>
+                                    </div>
+                                ) : null}
+                            </div>
+                        </div>
+                    ) : null}
+                    <label className="text-sm text-muted md:col-span-2">
+                        Notes
+                        <textarea
+                            name="notes"
+                            className="mt-1 w-full input-base px-3 py-2 text-sm"
+                            rows={3}
+                            value={form.notes}
+                            onChange={e => onChange({ notes: e.target.value })}
+                            placeholder="Optional"
+                        />
+                    </label>
+                    <div className="md:col-span-2 flex items-center justify-between">
+                        <button
+                            type="submit"
+                            className="rounded-lg btn-accent px-4 py-2 text-sm font-semibold"
+                        >
+                            Add entry
+                        </button>
+                        {error ? <div className="text-sm text-red-400">{error}</div> : null}
+                    </div>
+                </form>
+            </div>
+        </div >
+    );
+}
diff --git a/apps/web/components/notifications-toaster.tsx b/apps/web/components/notifications-toaster.tsx
new file mode 100644
index 0000000..131a7dc
--- /dev/null
+++ b/apps/web/components/notifications-toaster.tsx
@@ -0,0 +1,55 @@
+"use client";
+
+import type { ReactNode } from "react";
+
+export type NotificationTone = "info" | "success" | "danger";
+
+export type NotificationItem = {
+    id: string;
+    title: string;
+    message?: string;
+    tone: NotificationTone;
+    closing: boolean;
+};
+
+type NotificationsToasterProps = {
+    items: NotificationItem[];
+    onDismiss: (id: string) => void;
+};
+
+function toneClasses(tone: NotificationTone) {
+    if (tone === "success") return "border-emerald-400/40 text-emerald-200";
+    if (tone === "danger") return "border-red-400/50 text-red-200";
+    return "border-accent-weak text-[color:var(--color-text)]";
+}
+
+export default function NotificationsToaster({ items, onDismiss }: NotificationsToasterProps) {
+    if (!items.length) return null;
+
+    return (
+        <div className="fixed bottom-4 right-4 z-[60] flex w-80 flex-col-reverse gap-2 pointer-events-none">
+            {items.map(item => (
+                <div
+                    key={item.id}
+                    className={`pointer-events-auto rounded-xl border bg-panel px-3 py-2 text-sm shadow-lg transition-all duration-300 ${toneClasses(item.tone)} ${item.closing ? "opacity-0 translate-y-2" : "opacity-100"}`}
+                    role="status"
+                >
+                    <div className="flex items-start justify-between gap-2">
+                        <div>
+                            <div className="font-semibold">{item.title}</div>
+                            {item.message ? <div className="text-xs text-soft">{item.message}</div> : null}
+                        </div>
+                        <button
+                            type="button"
+                            className="rounded-md border border-accent-weak px-1.5 py-0.5 text-xs text-soft hover:border-accent"
+                            onClick={() => onDismiss(item.id)}
+                            aria-label="Dismiss notification"
+                        >
+                            Close
+                        </button>
+                    </div>
+                </div>
+            ))}
+        </div>
+    );
+}
diff --git a/apps/web/components/recurring-entries-panel.tsx b/apps/web/components/recurring-entries-panel.tsx
new file mode 100644
index 0000000..4675eb2
--- /dev/null
+++ b/apps/web/components/recurring-entries-panel.tsx
@@ -0,0 +1,73 @@
+"use client";
+
+import { useMemo } from "react";
+import useEntries from "@/hooks/use-entries";
+import { useGroupsContext } from "@/hooks/groups-context";
+
+function monthlyMultiplier(frequency: string, intervalCount: number) {
+    const count = intervalCount || 1;
+    switch (frequency) {
+        case "DAILY":
+            return (30 / count);
+        case "WEEKLY":
+            return (52 / 12) / count;
+        case "BIWEEKLY":
+            return (26 / 12) / count;
+        case "MONTHLY":
+            return (1 / count);
+        case "QUARTERLY":
+            return (1 / 3) / count;
+        case "YEARLY":
+            return (1 / 12) / count;
+        default:
+            return 0;
+    }
+}
+
+export default function RecurringEntriesPanel() {
+    const { activeGroupId } = useGroupsContext();
+    const { entries, loading } = useEntries(activeGroupId);
+
+    const recurring = useMemo(() => entries.filter(entry => entry.isRecurring), [entries]);
+
+    return (
+        <div className="panel panel-accent p-4">
+            <div className="card-header">
+                <h2 className="card-title text-lg">Recurring entries</h2>
+            </div>
+            <div className="mt-3 space-y-2">
+                {!activeGroupId ? (
+                    <div className="text-sm text-muted">Select a group to view recurring entries.</div>
+                ) : loading ? (
+                    <div className="space-y-2">
+                        {[0, 1].map(row => (
+                            <div key={row} className="rounded-lg border border-accent-weak bg-panel px-3 py-3">
+                                <div className="animate-pulse space-y-2">
+                                    <div className="h-4 w-28 rounded bg-surface" />
+                                    <div className="h-3 w-40 rounded bg-surface" />
+                                </div>
+                            </div>
+                        ))}
+                    </div>
+                ) : recurring.length ? (
+                    recurring.map(entry => {
+                        const monthly = entry.frequency ? monthlyMultiplier(entry.frequency, entry.intervalCount) * entry.amountDollars : 0;
+                        return (
+                            <div key={entry.id} className="rounded-lg border border-accent-weak bg-panel px-3 py-3 text-sm">
+                                <div className="flex items-center justify-between">
+                                    <div className="font-semibold">${entry.amountDollars.toFixed(2)} · {entry.tags.join(", ") || "No tags"}</div>
+                                    <div className="text-xs text-soft">{entry.entryType}</div>
+                                </div>
+                                <div className="mt-1 text-xs text-soft">
+                                    Next run: {entry.nextRunAt || entry.occurredAt} · Monthly est: ${monthly.toFixed(2)}
+                                </div>
+                            </div>
+                        );
+                    })
+                ) : (
+                    <div className="text-sm text-muted">No recurring entries yet.</div>
+                )}
+            </div>
+        </div>
+    );
+}
diff --git a/apps/web/components/tag-input.tsx b/apps/web/components/tag-input.tsx
new file mode 100644
index 0000000..4949848
--- /dev/null
+++ b/apps/web/components/tag-input.tsx
@@ -0,0 +1,260 @@
+"use client";
+
+import type React from "react";
+import { useEffect, useMemo, useRef, useState } from "react";
+
+function normalizeTag(tag: string) {
+    return tag
+        .trim()
+        .replace(/^#/, "")
+        .replace(/\s+/g, "-")
+        .toLowerCase();
+}
+
+type TagInputProps = {
+    label: string;
+    labelAction?: React.ReactNode;
+    tags: string[];
+    suggestions: string[];
+    removedTags?: string[];
+    highlightTags?: string[];
+    onToggleTag?: (tag: string) => void;
+    onAddTag: (tag: string) => void;
+    allowCustom?: boolean;
+    chipsBelow?: boolean;
+    emptySuggestionLabel?: string;
+    emptySuggestionDisabled?: boolean;
+    onEmptySuggestionClick?: () => void;
+    enableBackspaceRemove?: boolean;
+    invalid?: boolean;
+    inputRef?: React.Ref<HTMLInputElement>;
+};
+
+export default function TagInput({ label, labelAction, tags, suggestions, removedTags = [], highlightTags = [], onToggleTag, onAddTag, allowCustom = true, chipsBelow = false, emptySuggestionLabel, emptySuggestionDisabled = false, onEmptySuggestionClick, enableBackspaceRemove = false, invalid = false, inputRef }: TagInputProps) {
+    const [value, setValue] = useState("");
+    const [desiredIndex, setDesiredIndex] = useState(0);
+    const [highlightIndex, setHighlightIndex] = useState(-1);
+    const internalInputRef = useRef<HTMLInputElement | null>(null);
+    const ignoreBlurRef = useRef(false);
+    const removedSet = useMemo(() => new Set(removedTags.map(tag => tag.toLowerCase())), [removedTags]);
+    const highlightSet = useMemo(() => new Set(highlightTags.map(tag => tag.toLowerCase())), [highlightTags]);
+    const normalizedSuggestions = useMemo(() => suggestions
+        .map(tag => ({
+            raw: String(tag),
+            normalized: normalizeTag(String(tag))
+        }))
+        .filter(item => item.normalized.length > 0), [suggestions]);
+    const suggestionSet = useMemo(() => new Set(normalizedSuggestions.map(item => item.normalized.toLowerCase())), [normalizedSuggestions]);
+    const filtered = useMemo(() => {
+        const raw = value.split(/[\n,]/).pop() ?? "";
+        const normalized = normalizeTag(raw);
+        if (!normalized) return [] as string[];
+        return normalizedSuggestions
+            .filter(item => item.normalized.toLowerCase().includes(normalized))
+            .filter(item => !tags.some(existing => normalizeTag(existing) === item.normalized))
+            .map(item => item.raw)
+            .slice(0, 6);
+    }, [normalizedSuggestions, tags, value]);
+    const showEmptySuggestion = !allowCustom && suggestions.length === 0 && Boolean(emptySuggestionLabel) && !filtered.length && value.trim().length > 0;
+
+    useEffect(() => {
+        if (!filtered.length) {
+            setHighlightIndex(-1);
+            return;
+        }
+        const next = Math.min(desiredIndex, filtered.length - 1);
+        setHighlightIndex(next);
+    }, [filtered.length, desiredIndex]);
+
+    function setInputRef(node: HTMLInputElement | null) {
+        internalInputRef.current = node;
+        if (!inputRef) return;
+        if (typeof inputRef === "function") {
+            inputRef(node);
+            return;
+        }
+        (inputRef as React.MutableRefObject<HTMLInputElement | null>).current = node;
+    }
+
+    function commitTags(raw: string) {
+        const parts = raw.split(/[\n,]+/);
+        const nextTags: string[] = [];
+        const seen = new Set(tags.map(tag => tag.toLowerCase()));
+        for (const part of parts) {
+            const next = normalizeTag(part);
+            if (!next) continue;
+            const lower = next.toLowerCase();
+            if (seen.has(lower)) continue;
+            if (!allowCustom && !suggestionSet.has(lower)) continue;
+            seen.add(lower);
+            nextTags.push(next);
+        }
+        if (!nextTags.length) return false;
+        nextTags.forEach(tag => onAddTag(tag));
+        setValue("");
+        return true;
+    }
+
+    function addSuggestedTag(raw: string) {
+        const next = normalizeTag(raw);
+        if (!next) return false;
+        if (tags.some(tag => normalizeTag(tag) === next)) return false;
+        onAddTag(next);
+        setValue("");
+        return true;
+    }
+
+    function handleKeyDown(event: React.KeyboardEvent<HTMLInputElement>) {
+        if (false && event.key === "Backspace" && !value && tags.length) {
+            console.log("Backspace pressed with empty input, removing last tag");
+            event.preventDefault();
+            onToggleTag?.(tags[tags.length - 1]);
+            return;
+        }
+        if (event.key === "ArrowDown" && filtered.length) {
+            event.preventDefault();
+            const next = Math.min(desiredIndex + 1, filtered.length - 1);
+            setDesiredIndex(next);
+            setHighlightIndex(next);
+            return;
+        }
+        if (event.key === "ArrowUp" && filtered.length) {
+            event.preventDefault();
+            const next = Math.max(desiredIndex - 1, 0);
+            setDesiredIndex(next);
+            setHighlightIndex(next);
+            return;
+        }
+        if (event.key === "Enter" || event.key === "," || event.key === " ") {
+            event.preventDefault();
+            if (filtered.length) {
+                const targetIndex = highlightIndex >= 0 ? highlightIndex : 0;
+                addSuggestedTag(filtered[targetIndex]);
+                return;
+            }
+            commitTags(value);
+        }
+    }
+
+    function handlePaste(event: React.ClipboardEvent<HTMLInputElement>) {
+        const text = event.clipboardData.getData("text");
+        if (!text) return;
+        if (!/[\n,]/.test(text)) return;
+        event.preventDefault();
+        commitTags(text);
+    }
+
+    function handleBlur() {
+        if (ignoreBlurRef.current) {
+            ignoreBlurRef.current = false;
+            return;
+        }
+        commitTags(value);
+    }
+
+    return (
+        <label className="text-sm text-muted">
+            <span className="flex items-center justify-between gap-2">
+                {/* <span>{label}</span> */}
+                {labelAction ? <span className="flex items-center gap-2">{labelAction}</span> : null}
+            </span>
+            <div className="relative mt-1">
+                <div className={`rounded-lg border ${invalid ? "border-red-400/70" : "border-accent-weak"} bg-panel p-2`}>
+                    <div className="flex flex-wrap gap-2">
+                        {false && !chipsBelow ? tags.map(tag => {
+                            const isRemoved = removedSet.has(tag.toLowerCase());
+                            const isHighlighted = highlightSet.has(tag.toLowerCase());
+                            return (
+                                <button
+                                    key={tag}
+                                    type="button"
+                                    onClick={() => onToggleTag?.(tag)}
+                                    className={`rounded-full border px-2 py-0.5 text-xs transition ${isRemoved ? "border-red-400/60 text-red-200 bg-red-500/10" : isHighlighted ? "border-2 border-[color:var(--color-accent)] text-[color:var(--color-text)] bg-accent-soft" : "border-accent-weak text-[color:var(--color-text)] bg-accent-soft hover:border-accent"}`}
+                                >
+                                    #{tag}
+                                </button>
+                            );
+                        }) : null}
+                        <input
+                            ref={setInputRef}
+                            value={value}
+                            onChange={e => setValue(e.target.value)}
+                            onKeyDown={handleKeyDown}
+                            onPaste={handlePaste}
+                            onBlur={handleBlur}
+                            placeholder={"Add tags... (who, where, why, etc.)"}
+                            className="min-w-[140px] flex-1 bg-transparent text-sm text-[color:var(--color-text)] outline-none"
+                        />
+                    </div>
+                </div>
+                {true || chipsBelow ? (
+                    <div className="mt-2 flex flex-wrap gap-2">
+                        {tags.map(tag => {
+                            const isRemoved = removedSet.has(tag.toLowerCase());
+                            const isHighlighted = highlightSet.has(tag.toLowerCase());
+                            return (
+                                <button
+                                    key={tag}
+                                    type="button"
+                                    onClick={() => onToggleTag?.(tag)}
+                                    className={`rounded-full border px-2 py-0.5 text-xs transition ${isRemoved ? "border-red-400/60 text-red-200 bg-red-500/10" : isHighlighted ? "border-2 border-[color:var(--color-accent)] text-[color:var(--color-text)] bg-accent-soft" : "border-accent-weak text-[color:var(--color-text)] bg-accent-soft hover:border-accent"}`}
+                                >
+                                    #{tag}
+                                </button>
+                            );
+                        })}
+                    </div>
+                ) : null}
+                {filtered.length ? (
+                    <div className="absolute left-0 right-0 top-full z-20 mt-2 rounded-lg border border-accent-weak bg-panel shadow-lg">
+                        {filtered.map((tag, index) => (
+                            <button
+                                key={tag}
+                                type="button"
+                                className={`flex w-full items-center justify-between px-2 py-1 text-left text-xs text-muted ${index === highlightIndex ? "bg-accent-soft" : "hover:bg-accent-soft"}`}
+                                onMouseEnter={() => {
+                                    setDesiredIndex(index);
+                                    setHighlightIndex(index);
+                                }}
+                                onMouseDown={event => {
+                                    event.preventDefault();
+                                    ignoreBlurRef.current = true;
+                                    addSuggestedTag(tag);
+                                    internalInputRef.current?.focus();
+                                }}
+                                onClick={event => {
+                                    event.preventDefault();
+                                }}
+                            >
+                                <span>#{tag}</span>
+                                <span className="text-[10px] text-soft">Use tag</span>
+                            </button>
+                        ))}
+                    </div>
+                ) : showEmptySuggestion ? (
+                    <div className="absolute left-0 right-0 top-full z-20 mt-2 rounded-lg border-2 border-yellow-400 bg-panel shadow-lg">
+                        <button
+                            type="button"
+                            className="flex w-full items-center justify-between px-2 py-2 text-left text-sm text-yellow-200 hover:bg-accent-soft disabled:cursor-not-allowed disabled:opacity-60"
+                            onMouseDown={event => {
+                                event.preventDefault();
+                                ignoreBlurRef.current = true;
+                            }}
+                            onClick={() => {
+                                onEmptySuggestionClick?.();
+                                internalInputRef.current?.focus();
+                            }}
+                            disabled={emptySuggestionDisabled}
+                        >
+                            <span className="flex items-center gap-2">
+                                <span aria-hidden>⚠</span>
+                                {emptySuggestionLabel}
+                            </span>
+                            <span className="text-xs text-yellow-200/80">Go</span>
+                        </button>
+                    </div>
+                ) : null}
+            </div>
+        </label>
+    );
+}
diff --git a/apps/web/e2e/auth.spec.ts b/apps/web/e2e/auth.spec.ts
new file mode 100644
index 0000000..13c2b69
--- /dev/null
+++ b/apps/web/e2e/auth.spec.ts
@@ -0,0 +1,21 @@
+import { test, expect } from "@playwright/test";
+import { login } from "./test-helpers";
+
+test("login and register hide navbar", async ({ page }) => {
+    await page.goto("/login");
+    await expect(page.locator("header")).toHaveCount(0);
+    await page.goto("/register");
+    await expect(page.locator("header")).toHaveCount(0);
+});
+
+test("login shows entries for seeded owner", async ({ page }) => {
+    await login(page, "owner1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+    await expect(page.getByRole("heading", { name: "Entries" })).toBeVisible();
+});
+
+test("no-group user sees empty state", async ({ page }) => {
+    await login(page, "nogroup@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+    await expect(page.getByText("Create or join a group to add entries.")).toBeVisible();
+});
diff --git a/apps/web/e2e/groups.spec.ts b/apps/web/e2e/groups.spec.ts
new file mode 100644
index 0000000..cae4a52
--- /dev/null
+++ b/apps/web/e2e/groups.spec.ts
@@ -0,0 +1,28 @@
+import { test, expect } from "@playwright/test";
+import { login } from "./test-helpers";
+
+test("group dropdown lists seeded groups", async ({ page }) => {
+    await login(page, "admin1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    const dropdown = page.getByRole("button", { name: /Group:/ });
+    await dropdown.click();
+
+    await expect(page.getByRole("button", { name: "Alpha Household GROUP_ADMIN" })).toBeVisible();
+    await expect(page.getByRole("button", { name: "Beta Office GROUP_OWNER" })).toBeVisible();
+    await expect(page.getByRole("button", { name: "Gamma Club MEMBER" })).toBeVisible();
+});
+
+test("group settings show join requests and policy", async ({ page }) => {
+    await login(page, "admin1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    await page.getByRole("button", { name: "Group settings" }).click();
+    await expect(page).toHaveURL(/\/groups\/[0-9]+\/settings/);
+
+    await expect(page.getByText("Join requests")).toBeVisible();
+    await expect(page.getByText("requester1@fiddy.dev")).toBeVisible();
+
+    const approvalButton = page.getByRole("button", { name: "Manual" });
+    await expect(approvalButton).toHaveAttribute("aria-pressed", "true");
+});
diff --git a/apps/web/e2e/smoke.spec.ts b/apps/web/e2e/smoke.spec.ts
new file mode 100644
index 0000000..6fd134b
--- /dev/null
+++ b/apps/web/e2e/smoke.spec.ts
@@ -0,0 +1,6 @@
+import { test, expect } from "@playwright/test";
+
+test("home redirects to login when unauthenticated", async ({ page }) => {
+    await page.goto("/");
+    await expect(page).toHaveURL(/\/login/);
+});
diff --git a/apps/web/e2e/spendings.spec.ts b/apps/web/e2e/spendings.spec.ts
new file mode 100644
index 0000000..bb2a44d
--- /dev/null
+++ b/apps/web/e2e/spendings.spec.ts
@@ -0,0 +1,54 @@
+import { test, expect } from "@playwright/test";
+import { login } from "./test-helpers";
+
+test("seeded entries render with tags and no-tag state", async ({ page }) => {
+    await login(page, "owner1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    await expect(page.getByRole("heading", { name: "Entries" })).toBeVisible();
+    await expect(page.getByText("$12.50")).toBeVisible();
+    await expect(page.getByText("#Food")).toBeVisible();
+    await expect(page.getByText("#Travel")).toBeVisible();
+    await expect(page.getByText("No tags")).toBeVisible();
+});
+
+test("entry details modal opens", async ({ page }) => {
+    await login(page, "owner1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    await page.getByText("$12.50").click();
+    await expect(page.getByRole("heading", { name: "Entry details" })).toBeVisible();
+    await page.getByRole("button", { name: "Close" }).click();
+    await expect(page.getByRole("heading", { name: "Entry details" })).toBeHidden();
+});
+
+test("empty tag callout shows contact admin for members", async ({ page }) => {
+    await login(page, "admin1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    const dropdown = page.getByRole("button", { name: /Group:/ });
+    await dropdown.click();
+    const waitSetActive = page.waitForResponse(res => res.url().includes("/api/groups/active") && res.request().method() === "POST");
+    await page.getByRole("button", { name: /Gamma Club/ }).click();
+    await waitSetActive;
+
+    await page.getByRole("button", { name: "Add entry" }).click();
+    const callout = page.getByRole("button", { name: "No Tags Assigned Yet - Contact Your Group Admin" });
+    await expect(callout).toBeVisible();
+    await expect(callout).toBeDisabled();
+});
+
+test("empty tag callout navigates to settings for admins", async ({ page }) => {
+    await login(page, "member1@fiddy.dev", "FiddyDev123!");
+    await expect(page).toHaveURL("/");
+
+    const dropdown = page.getByRole("button", { name: /Group:/ });
+    await dropdown.click();
+    const waitSetActive = page.waitForResponse(res => res.url().includes("/api/groups/active") && res.request().method() === "POST");
+    await page.getByRole("button", { name: /Gamma Club/ }).click();
+    await waitSetActive;
+
+    await page.getByRole("button", { name: "Add entry" }).click();
+    await page.getByRole("button", { name: "No Tags Assigned Yet - Click To Assign Tags" }).click();
+    await expect(page).toHaveURL(/\/groups\/[0-9]+\/settings/);
+});
diff --git a/apps/web/e2e/test-helpers.ts b/apps/web/e2e/test-helpers.ts
new file mode 100644
index 0000000..b51a1a2
--- /dev/null
+++ b/apps/web/e2e/test-helpers.ts
@@ -0,0 +1,13 @@
+import type { Page } from "@playwright/test";
+
+export async function login(page: Page, email: string, password: string) {
+    await page.goto("/login");
+    await page.getByLabel("Email").fill(email);
+    await page.getByLabel("Password").fill(password);
+    await page.getByRole("button", { name: "Sign in" }).click();
+    await page.waitForURL("/");
+    const waitGroups = page.waitForResponse(res => res.url().includes("/api/groups") && res.request().method() === "GET");
+    const waitActive = page.waitForResponse(res => res.url().includes("/api/groups/active") && res.request().method() === "GET");
+    await page.reload();
+    await Promise.all([waitGroups, waitActive]);
+}
diff --git a/apps/web/hooks/auth-context.tsx b/apps/web/hooks/auth-context.tsx
new file mode 100644
index 0000000..f05491c
--- /dev/null
+++ b/apps/web/hooks/auth-context.tsx
@@ -0,0 +1,21 @@
+"use client";
+
+import { createContext, useContext } from "react";
+import useAuth from "@/hooks/use-auth";
+
+const AuthContext = createContext<ReturnType<typeof useAuth> | null>(null);
+
+type AuthProviderProps = {
+    children: React.ReactNode;
+};
+
+export function AuthProvider({ children }: AuthProviderProps) {
+    const auth = useAuth();
+    return <AuthContext.Provider value={auth}>{children}</AuthContext.Provider>;
+}
+
+export function useAuthContext() {
+    const ctx = useContext(AuthContext);
+    if (!ctx) throw new Error("AuthProvider is missing");
+    return ctx;
+}
diff --git a/apps/web/hooks/entry-mutation-context.tsx b/apps/web/hooks/entry-mutation-context.tsx
new file mode 100644
index 0000000..816aeb9
--- /dev/null
+++ b/apps/web/hooks/entry-mutation-context.tsx
@@ -0,0 +1,30 @@
+"use client";
+
+import { createContext, useContext, useState, useCallback, type ReactNode } from "react";
+
+type EntryMutationContextValue = {
+    mutationVersion: number;
+    notifyEntryMutation: () => void;
+};
+
+const EntryMutationContext = createContext<EntryMutationContextValue | null>(null);
+
+export function EntryMutationProvider({ children }: { children: ReactNode }) {
+    const [mutationVersion, setMutationVersion] = useState(0);
+
+    const notifyEntryMutation = useCallback(() => {
+        setMutationVersion(prev => prev + 1);
+    }, []);
+
+    return (
+        <EntryMutationContext.Provider value={{ mutationVersion, notifyEntryMutation }}>
+            {children}
+        </EntryMutationContext.Provider>
+    );
+}
+
+export function useEntryMutation() {
+    const context = useContext(EntryMutationContext);
+    if (!context) throw new Error("useEntryMutation must be used within EntryMutationProvider");
+    return context;
+}
diff --git a/apps/web/hooks/groups-context.tsx b/apps/web/hooks/groups-context.tsx
new file mode 100644
index 0000000..9262e4b
--- /dev/null
+++ b/apps/web/hooks/groups-context.tsx
@@ -0,0 +1,21 @@
+"use client";
+
+import { createContext, useContext } from "react";
+import useGroups from "@/hooks/use-groups";
+
+const GroupsContext = createContext<ReturnType<typeof useGroups> | null>(null);
+
+type GroupsProviderProps = {
+    children: React.ReactNode;
+};
+
+export function GroupsProvider({ children }: GroupsProviderProps) {
+    const groups = useGroups();
+    return <GroupsContext.Provider value={groups}>{children}</GroupsContext.Provider>;
+}
+
+export function useGroupsContext() {
+    const ctx = useContext(GroupsContext);
+    if (!ctx) throw new Error("GroupsProvider is missing");
+    return ctx;
+}
diff --git a/apps/web/hooks/notifications-context.tsx b/apps/web/hooks/notifications-context.tsx
new file mode 100644
index 0000000..b69067b
--- /dev/null
+++ b/apps/web/hooks/notifications-context.tsx
@@ -0,0 +1,83 @@
+"use client";
+
+import { createContext, useContext, useEffect, useMemo, useRef, useState } from "react";
+import NotificationsToaster, { type NotificationItem, type NotificationTone } from "@/components/notifications-toaster";
+
+type NotifyInput = {
+    title: string;
+    message?: string;
+    tone?: NotificationTone;
+    durationMs?: number;
+};
+
+type NotificationsContextValue = {
+    notify: (input: NotifyInput) => void;
+};
+
+const NotificationsContext = createContext<NotificationsContextValue | null>(null);
+
+function createId() {
+    if (typeof crypto !== "undefined" && "randomUUID" in crypto) return crypto.randomUUID();
+    return `${Date.now()}-${Math.random().toString(16).slice(2)}`;
+}
+
+export function NotificationsProvider({ children }: { children: React.ReactNode }) {
+    const [items, setItems] = useState<NotificationItem[]>([]);
+    const timersRef = useRef<number[]>([]);
+
+    function dismiss(id: string) {
+        setItems(prev => prev.map(item => item.id === id ? { ...item, closing: true } : item));
+        const t = window.setTimeout(() => {
+            setItems(prev => prev.filter(item => item.id !== id));
+        }, 250);
+        timersRef.current.push(t);
+    }
+
+    function notify(input: NotifyInput) {
+        const id = createId();
+        const durationMs = Math.max(1200, input.durationMs ?? 4200);
+        const tone = input.tone ?? "info";
+
+        setItems(prev => [
+            ...prev,
+            {
+                id,
+                title: input.title,
+                message: input.message,
+                tone,
+                closing: false
+            }
+        ]);
+
+        const fadeMs = 250;
+        const t1 = window.setTimeout(() => {
+            setItems(prev => prev.map(item => item.id === id ? { ...item, closing: true } : item));
+        }, Math.max(0, durationMs - fadeMs));
+        const t2 = window.setTimeout(() => {
+            setItems(prev => prev.filter(item => item.id !== id));
+        }, durationMs);
+        timersRef.current.push(t1, t2);
+    }
+
+    useEffect(() => {
+        return () => {
+            timersRef.current.forEach(timer => window.clearTimeout(timer));
+            timersRef.current = [];
+        };
+    }, []);
+
+    const value = useMemo(() => ({ notify }), []);
+
+    return (
+        <NotificationsContext.Provider value={value}>
+            {children}
+            <NotificationsToaster items={items} onDismiss={dismiss} />
+        </NotificationsContext.Provider>
+    );
+}
+
+export function useNotificationsContext() {
+    const ctx = useContext(NotificationsContext);
+    if (!ctx) throw new Error("NotificationsProvider is missing");
+    return ctx;
+}
diff --git a/apps/web/hooks/use-auth.ts b/apps/web/hooks/use-auth.ts
new file mode 100644
index 0000000..537147b
--- /dev/null
+++ b/apps/web/hooks/use-auth.ts
@@ -0,0 +1,72 @@
+import { useCallback, useState } from "react";
+import { authLogin, authMe, authRegister, authLogout } from "@/lib/client/auth";
+import type { User } from "@/lib/shared/types";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+type LoginInput = {
+    email: string;
+    password: string;
+    remember: boolean;
+};
+
+type RegisterInput = {
+    email: string;
+    password: string;
+    displayName?: string;
+};
+
+export default function useAuth() {
+    const [error, setError] = useState("");
+    const [loading, setLoading] = useState(false);
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const checkSession = useCallback(async () => {
+        const res = await authMe();
+        if (isError(res)) return null;
+        return res.data.user as User;
+    }, []);
+
+    const login = useCallback(async (input: LoginInput) => {
+        setError("");
+        setLoading(true);
+        try {
+            const result = await authLogin(input);
+            if (isError(result)) {
+                setError(result.error.message || "");
+                return { ok: false, error: result.error.message || "" };
+            }
+            return { ok: true } as { ok: true };
+        } finally {
+            setLoading(false);
+        }
+    }, []);
+
+    const register = useCallback(async (input: RegisterInput) => {
+        setError("");
+        setLoading(true);
+        try {
+            const result = await authRegister(input);
+            if (isError(result)) {
+                setError(result.error.message || "");
+                return { ok: false, error: result.error.message || "" };
+            }
+            return { ok: true } as { ok: true };
+        } finally {
+            setLoading(false);
+        }
+    }, []);
+
+    const logout = useCallback(async () => {
+        const result = await authLogout();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return { ok: false, error: result.error.message || "" };
+        }
+        return { ok: true } as { ok: true };
+    }, []);
+
+    return { checkSession, login, register, logout, error, loading };
+}
diff --git a/apps/web/hooks/use-buckets.ts b/apps/web/hooks/use-buckets.ts
new file mode 100644
index 0000000..408967d
--- /dev/null
+++ b/apps/web/hooks/use-buckets.ts
@@ -0,0 +1,119 @@
+import { useCallback, useEffect, useState } from "react";
+import { bucketsCreate, bucketsDelete, bucketsList, bucketsUpdate } from "@/lib/client/buckets";
+import type { Bucket } from "@/lib/client/buckets";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+type CreateBucketInput = {
+    name: string;
+    description?: string;
+    iconKey?: string | null;
+    budgetLimitDollars?: number | null;
+    position?: number;
+    tags?: string[];
+    necessity?: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays?: number;
+};
+
+type UpdateBucketInput = CreateBucketInput & { id: number };
+
+export default function useBuckets(activeGroupId?: number | null) {
+    const [buckets, setBuckets] = useState<Bucket[]>([]);
+    const [loading, setLoading] = useState(true);
+    const [error, setError] = useState("");
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setError("");
+            setBuckets([]);
+            setLoading(false);
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await bucketsList();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            setBuckets([]);
+        } else {
+            setBuckets(result.data.buckets || []);
+        }
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const createBucket = useCallback(async (input: CreateBucketInput) => {
+        setError("");
+        const result = await bucketsCreate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const updateBucket = useCallback(async (input: UpdateBucketInput) => {
+        setError("");
+        const result = await bucketsUpdate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const reorderBuckets = useCallback(async (ordered: Bucket[]) => {
+        setError("");
+        const updates = ordered.map((bucket, index) => bucketsUpdate({
+            id: bucket.id,
+            name: bucket.name,
+            description: bucket.description || undefined,
+            iconKey: bucket.iconKey,
+            budgetLimitDollars: bucket.budgetLimitDollars,
+            position: index,
+            tags: bucket.tags,
+            necessity: bucket.necessity,
+            windowDays: bucket.windowDays
+        }));
+        const results = await Promise.all(updates);
+        const failed = results.find(result => isError(result));
+        if (failed && "error" in failed) {
+            setError(failed.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const deleteBucket = useCallback(async (id: number | string) => {
+        setError("");
+        const result = await bucketsDelete({ id });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        buckets,
+        loading,
+        error,
+        createBucket,
+        updateBucket,
+        reorderBuckets,
+        deleteBucket,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-entries.ts b/apps/web/hooks/use-entries.ts
new file mode 100644
index 0000000..20f536c
--- /dev/null
+++ b/apps/web/hooks/use-entries.ts
@@ -0,0 +1,124 @@
+import { useCallback, useEffect, useState } from "react";
+import type { Entry } from "@/lib/shared/types";
+import { entriesCreate, entriesDelete, entriesList, entriesUpdate } from "@/lib/client/entries";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+type CreateEntryInput = {
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    isRecurring?: boolean;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+};
+
+type UpdateEntryInput = CreateEntryInput & { id: number };
+
+function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+    return "error" in result;
+}
+
+function compareEntriesDesc(a: Entry, b: Entry) {
+    if (a.occurredAt === b.occurredAt) return Number(b.id) - Number(a.id);
+    return a.occurredAt > b.occurredAt ? -1 : 1;
+}
+
+function upsertEntrySorted(entries: Entry[], next: Entry) {
+    const without = entries.filter(entry => Number(entry.id) !== Number(next.id));
+    const merged = [next, ...without];
+    merged.sort(compareEntriesDesc);
+    return merged;
+}
+
+export default function useEntries(activeGroupId?: number | null) {
+    const [entries, setEntries] = useState<Entry[]>([]);
+    const [loading, setLoading] = useState(true);
+    const [error, setError] = useState("");
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setError("");
+            setEntries([]);
+            setLoading(false);
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await entriesList();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            setEntries([]);
+        } else {
+            setEntries(result.data.entries || []);
+        }
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const createEntry = useCallback(async (input: CreateEntryInput) => {
+        setError("");
+        const result = await entriesCreate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return null;
+        }
+        const created = result.data.entry;
+        setEntries(prev => upsertEntrySorted(prev, created));
+        return created;
+    }, []);
+
+    const updateEntry = useCallback(async (input: UpdateEntryInput) => {
+        setError("");
+        const result = await entriesUpdate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return null;
+        }
+        const updated = result.data.entry;
+        setEntries(prev => {
+            return upsertEntrySorted(prev, updated);
+        });
+        return updated;
+    }, []);
+
+    const deleteEntry = useCallback(async (id: number | string) => {
+        setError("");
+        const numericId = Number(id);
+        if (!Number.isFinite(numericId) || numericId <= 0) return null;
+        let removed: Entry | null = null;
+        const result = await entriesDelete({ id });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return null;
+        }
+        setEntries(prev => {
+            const index = prev.findIndex(entry => Number(entry.id) === numericId);
+            if (index < 0) return prev;
+            removed = prev[index];
+            return [...prev.slice(0, index), ...prev.slice(index + 1)];
+        });
+        return removed;
+    }, []);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        entries,
+        loading,
+        error,
+        createEntry,
+        updateEntry,
+        deleteEntry,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-group-audit.ts b/apps/web/hooks/use-group-audit.ts
new file mode 100644
index 0000000..401bc3e
--- /dev/null
+++ b/apps/web/hooks/use-group-audit.ts
@@ -0,0 +1,33 @@
+import { useCallback, useEffect, useState } from "react";
+import type { ApiResult } from "@/lib/client/fetch-json";
+import { groupAuditList, type GroupAuditEvent } from "@/lib/client/group-audit";
+
+function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+    return "error" in result;
+}
+
+export default function useGroupAudit(activeGroupId?: number | null) {
+    const [events, setEvents] = useState<GroupAuditEvent[]>([]);
+    const [loading, setLoading] = useState(false);
+    const [error, setError] = useState("");
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setEvents([]);
+            setError("");
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await groupAuditList();
+        if (isError(result)) setError(result.error.message || "");
+        else setEvents(result.data.events || []);
+        setLoading(false);
+    }, [activeGroupId]);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return { events, loading, error, reload: load };
+}
diff --git a/apps/web/hooks/use-group-invites.ts b/apps/web/hooks/use-group-invites.ts
new file mode 100644
index 0000000..d9ef687
--- /dev/null
+++ b/apps/web/hooks/use-group-invites.ts
@@ -0,0 +1,82 @@
+import { useCallback, useEffect, useState } from "react";
+import type { ApiResult } from "@/lib/client/fetch-json";
+import { groupInvitesCreate, groupInvitesDelete, groupInvitesList, groupInvitesRevoke, groupInvitesRevive, type InviteLink, type JoinPolicy } from "@/lib/client/group-invites";
+
+function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+    return "error" in result;
+}
+
+export default function useGroupInvites(activeGroupId?: number | null) {
+    const [links, setLinks] = useState<InviteLink[]>([]);
+    const [loading, setLoading] = useState(false);
+    const [error, setError] = useState("");
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setLinks([]);
+            setError("");
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await groupInvitesList();
+        if (isError(result)) setError(result.error.message || "");
+        else setLinks(result.data.links || []);
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const create = useCallback(async (input: { policy: JoinPolicy; singleUse: boolean; ttlDays: number }) => {
+        const result = await groupInvitesCreate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return null;
+        }
+        await load();
+        return result.data.link;
+    }, [load]);
+
+    const revoke = useCallback(async (linkId: number) => {
+        const result = await groupInvitesRevoke({ linkId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const revive = useCallback(async (linkId: number, ttlDays: number) => {
+        const result = await groupInvitesRevive({ linkId, ttlDays });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const remove = useCallback(async (linkId: number) => {
+        const result = await groupInvitesDelete({ linkId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        links,
+        loading,
+        error,
+        create,
+        revoke,
+        revive,
+        remove,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-group-members.ts b/apps/web/hooks/use-group-members.ts
new file mode 100644
index 0000000..6c4274d
--- /dev/null
+++ b/apps/web/hooks/use-group-members.ts
@@ -0,0 +1,136 @@
+import { useCallback, useEffect, useState } from "react";
+import type { ApiResult } from "@/lib/client/fetch-json";
+import {
+    groupMembersApprove,
+    groupMembersDemote,
+    groupMembersKick,
+    groupMembersLeave,
+    groupMembersList,
+    groupMembersPromote,
+    groupMembersTransferOwner,
+    groupMembersDeny,
+    type GroupMember,
+    type JoinRequest
+} from "@/lib/client/group-members";
+
+function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+    return "error" in result;
+}
+
+export default function useGroupMembers(activeGroupId?: number | null) {
+    const [members, setMembers] = useState<GroupMember[]>([]);
+    const [requests, setRequests] = useState<JoinRequest[]>([]);
+    const [currentUserId, setCurrentUserId] = useState<number | null>(null);
+    const [loading, setLoading] = useState(false);
+    const [error, setError] = useState("");
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setMembers([]);
+            setRequests([]);
+            setCurrentUserId(null);
+            setError("");
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await groupMembersList();
+        if (isError(result)) {
+            setError(result.error.message || "");
+        } else {
+            setMembers(result.data.members || []);
+            setRequests(result.data.requests || []);
+            setCurrentUserId(result.data.currentUserId || null);
+        }
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const approve = useCallback(async (userId: number, requestId?: number) => {
+        const result = await groupMembersApprove({ userId, requestId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const deny = useCallback(async (userId: number) => {
+        const result = await groupMembersDeny({ userId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const kick = useCallback(async (userId: number) => {
+        const result = await groupMembersKick({ userId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const promote = useCallback(async (userId: number) => {
+        const result = await groupMembersPromote({ userId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const demote = useCallback(async (userId: number) => {
+        const result = await groupMembersDemote({ userId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const transferOwner = useCallback(async (userId: number) => {
+        const result = await groupMembersTransferOwner({ userId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const leave = useCallback(async () => {
+        const result = await groupMembersLeave();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        return true;
+    }, []);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        members,
+        requests,
+        currentUserId,
+        loading,
+        error,
+        approve,
+        deny,
+        kick,
+        promote,
+        demote,
+        transferOwner,
+        leave,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-group-settings.ts b/apps/web/hooks/use-group-settings.ts
new file mode 100644
index 0000000..7890d76
--- /dev/null
+++ b/apps/web/hooks/use-group-settings.ts
@@ -0,0 +1,43 @@
+import { useCallback, useEffect, useState } from "react";
+import { groupSettingsGet, groupSettingsUpdate } from "@/lib/client/group-settings";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+export default function useGroupSettings(activeGroupId?: number | null) {
+    const [settings, setSettings] = useState({ allowMemberTagManage: false, joinPolicy: "NOT_ACCEPTING" as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED" });
+    const [loading, setLoading] = useState(false);
+    const [error, setError] = useState("");
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setSettings({ allowMemberTagManage: false, joinPolicy: "NOT_ACCEPTING" });
+            setError("");
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await groupSettingsGet();
+        if (isError(result)) setError(result.error.message || "");
+        else setSettings(result.data.settings);
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const updateSettings = useCallback(async (allowMemberTagManage: boolean, joinPolicy?: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED") => {
+        setLoading(true);
+        setError("");
+        const result = await groupSettingsUpdate({ allowMemberTagManage, joinPolicy });
+        if (isError(result)) setError(result.error.message || "");
+        else setSettings(result.data.settings);
+        setLoading(false);
+        return isError(result) ? false : true;
+    }, []);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return { settings, loading, error, updateSettings, reload: load };
+}
diff --git a/apps/web/hooks/use-groups.ts b/apps/web/hooks/use-groups.ts
new file mode 100644
index 0000000..6917f29
--- /dev/null
+++ b/apps/web/hooks/use-groups.ts
@@ -0,0 +1,100 @@
+import { useCallback, useEffect, useState } from "react";
+import type { Group } from "@/lib/shared/types";
+import { groupsActive, groupsCreate, groupsJoin, groupsList, groupsSetActive } from "@/lib/client/groups";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+type CreateGroupInput = {
+    name: string;
+};
+
+type JoinGroupInput = {
+    inviteCode: string;
+};
+
+export default function useGroups() {
+    const [groups, setGroups] = useState<Group[]>([]);
+    const [activeGroupId, setActiveGroupId] = useState<number | null>(null);
+    const [loading, setLoading] = useState(true);
+    const [error, setError] = useState("");
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const load = useCallback(async () => {
+        setError("");
+        setLoading(true);
+        try {
+            const res = await groupsList();
+            if (!isError(res)) setGroups(res.data.groups || []);
+            const activeRes = await groupsActive();
+            if (!isError(activeRes)) setActiveGroupId(activeRes.data.active?.id || null);
+        } finally {
+            setLoading(false);
+        }
+    }, []);
+
+    const createGroup = useCallback(async (input: CreateGroupInput) => {
+        setError("");
+        setLoading(true);
+        try {
+            const result = await groupsCreate(input);
+            if (isError(result)) {
+                setError(result.error.message || "");
+                return null as { id: number; name: string; inviteCode?: string } | null;
+            }
+            const group = result.data.group as { id: number; name: string; inviteCode?: string };
+            setGroups(prev => [{ id: group.id, name: group.name, role: "GROUP_ADMIN" }, ...prev]);
+            setActiveGroupId(group.id);
+            await setActiveGroup(group.id);
+            return group;
+        } finally {
+            setLoading(false);
+        }
+    }, []);
+
+    const joinGroup = useCallback(async (input: JoinGroupInput) => {
+        setError("");
+        setLoading(true);
+        try {
+            const result = await groupsJoin(input);
+            if (isError(result)) {
+                setError(result.error.message || "");
+                return null as { id: number; name: string } | null;
+            }
+            const group = result.data.group as { id: number; name: string };
+            setGroups(prev => prev.some(g => g.id === group.id) ? prev : [{ id: group.id, name: group.name, role: "MEMBER" }, ...prev]);
+            setActiveGroupId(group.id);
+            await setActiveGroup(group.id);
+            return group;
+        } finally {
+            setLoading(false);
+        }
+    }, []);
+
+    const setActiveGroup = useCallback(async (groupId: number) => {
+        setError("");
+        const result = await groupsSetActive({ groupId });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        setActiveGroupId(groupId);
+        return true;
+    }, []);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        groups,
+        activeGroupId,
+        loading,
+        error,
+        createGroup,
+        joinGroup,
+        setActiveGroup,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-invite-link.ts b/apps/web/hooks/use-invite-link.ts
new file mode 100644
index 0000000..2d627d0
--- /dev/null
+++ b/apps/web/hooks/use-invite-link.ts
@@ -0,0 +1,64 @@
+import { useCallback, useEffect, useState } from "react";
+import type { ApiResult } from "@/lib/client/fetch-json";
+import { inviteLinkAccept, inviteLinkGet, type InviteAcceptResult, type InviteLinkSummary } from "@/lib/client/invite-links";
+
+function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+    return "error" in result;
+}
+
+export default function useInviteLink(token: string | null) {
+    const [link, setLink] = useState<InviteLinkSummary | null>(null);
+    const [loading, setLoading] = useState(false);
+    const [accepting, setAccepting] = useState(false);
+    const [error, setError] = useState("");
+    const [result, setResult] = useState<InviteAcceptResult | null>(null);
+
+    const load = useCallback(async () => {
+        if (!token) {
+            setLink(null);
+            setError("");
+            setResult(null);
+            return;
+        }
+        setLoading(true);
+        setError("");
+        setResult(null);
+        const response = await inviteLinkGet(token);
+        if (isError(response)) {
+            setError(response.error.message || "");
+            setLink(null);
+        } else {
+            setLink(response.data.link);
+        }
+        setLoading(false);
+    }, [token]);
+
+    const accept = useCallback(async () => {
+        if (!token) return null;
+        setAccepting(true);
+        setError("");
+        const response = await inviteLinkAccept(token);
+        if (isError(response)) {
+            setError(response.error.message || "");
+            setAccepting(false);
+            return null;
+        }
+        setResult(response.data.result);
+        setAccepting(false);
+        return response.data.result;
+    }, [token]);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        link,
+        loading,
+        accepting,
+        error,
+        result,
+        accept,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-recurring-entries.ts b/apps/web/hooks/use-recurring-entries.ts
new file mode 100644
index 0000000..ad28617
--- /dev/null
+++ b/apps/web/hooks/use-recurring-entries.ts
@@ -0,0 +1,99 @@
+import { useCallback, useEffect, useState } from "react";
+import type { Entry } from "@/lib/shared/types";
+import { recurringEntriesCreate, recurringEntriesDelete, recurringEntriesList, recurringEntriesUpdate } from "@/lib/client/recurring-entries";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+type CreateRecurringEntryInput = {
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+};
+
+type UpdateRecurringEntryInput = CreateRecurringEntryInput & { id: number };
+
+export default function useRecurringEntries(activeGroupId?: number | null) {
+    const [entries, setEntries] = useState<Entry[]>([]);
+    const [loading, setLoading] = useState(true);
+    const [error, setError] = useState("");
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setError("");
+            setEntries([]);
+            setLoading(false);
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await recurringEntriesList();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            setEntries([]);
+        } else {
+            setEntries(result.data.entries || []);
+        }
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const createEntry = useCallback(async (input: CreateRecurringEntryInput) => {
+        setError("");
+        const result = await recurringEntriesCreate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const updateEntry = useCallback(async (input: UpdateRecurringEntryInput) => {
+        setError("");
+        const result = await recurringEntriesUpdate(input);
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const deleteEntry = useCallback(async (id: number | string) => {
+        setError("");
+        const result = await recurringEntriesDelete({ id });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return {
+        entries,
+        loading,
+        error,
+        createEntry,
+        updateEntry,
+        deleteEntry,
+        reload: load
+    };
+}
diff --git a/apps/web/hooks/use-tags.ts b/apps/web/hooks/use-tags.ts
new file mode 100644
index 0000000..d23fe6b
--- /dev/null
+++ b/apps/web/hooks/use-tags.ts
@@ -0,0 +1,59 @@
+import { useCallback, useEffect, useState } from "react";
+import { tagsCreate, tagsDelete, tagsList } from "@/lib/client/tags";
+import type { ApiResult } from "@/lib/client/fetch-json";
+
+export default function useTags(activeGroupId?: number | null) {
+    const [tags, setTags] = useState<string[]>([]);
+    const [loading, setLoading] = useState(false);
+    const [error, setError] = useState("");
+
+    function isError<T>(result: ApiResult<T>): result is { error: { code: string; message: string } } {
+        return "error" in result;
+    }
+
+    const load = useCallback(async () => {
+        if (!activeGroupId) {
+            setTags([]);
+            setError("");
+            return;
+        }
+        setLoading(true);
+        setError("");
+        const result = await tagsList();
+        if (isError(result)) {
+            setError(result.error.message || "");
+            setTags([]);
+        } else {
+            setTags(result.data.tags || []);
+        }
+        setLoading(false);
+    }, [activeGroupId]);
+
+    const addTags = useCallback(async (nextTags: string[]) => {
+        setError("");
+        const result = await tagsCreate({ tags: nextTags });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    const removeTag = useCallback(async (tag: string) => {
+        setError("");
+        const result = await tagsDelete({ name: tag });
+        if (isError(result)) {
+            setError(result.error.message || "");
+            return false;
+        }
+        await load();
+        return true;
+    }, [load]);
+
+    useEffect(() => {
+        load();
+    }, [load]);
+
+    return { tags, loading, error, addTags, removeTag, reload: load };
+}
diff --git a/apps/web/lib/auth.ts b/apps/web/lib/auth.ts
new file mode 100644
index 0000000..2234b9c
--- /dev/null
+++ b/apps/web/lib/auth.ts
@@ -0,0 +1 @@
+export { };
diff --git a/apps/web/lib/client/auth.ts b/apps/web/lib/client/auth.ts
new file mode 100644
index 0000000..a2ca0ff
--- /dev/null
+++ b/apps/web/lib/client/auth.ts
@@ -0,0 +1,24 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+import type { User } from "@/lib/shared/types";
+
+export async function authMe() {
+    return fetchJson<{ user: User }>("/api/auth/me", { method: "GET" });
+}
+
+export async function authLogin(input: { email: string; password: string; remember: boolean }) {
+    return fetchJson<{ user: User }>("/api/auth/login", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function authRegister(input: { email: string; password: string; displayName?: string }) {
+    return fetchJson<{ user: User }>("/api/auth/register", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function authLogout() {
+    return fetchJson<{ ok: true }>("/api/auth/logout", { method: "POST" });
+}
diff --git a/apps/web/lib/client/buckets.ts b/apps/web/lib/client/buckets.ts
new file mode 100644
index 0000000..190e007
--- /dev/null
+++ b/apps/web/lib/client/buckets.ts
@@ -0,0 +1,68 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type Bucket = {
+    id: number;
+    name: string;
+    description: string | null;
+    iconKey: string | null;
+    budgetLimitDollars: number | null;
+    position: number;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays: number;
+    tags: string[];
+    totalUsage: number;
+    matchedCount: number;
+};
+
+export async function bucketsList() {
+    return fetchJson<{ buckets: Bucket[] }>("/api/buckets", { method: "GET" });
+}
+
+export async function bucketsCreate(input: {
+    name: string;
+    description?: string;
+    iconKey?: string | null;
+    budgetLimitDollars?: number | null;
+    position?: number;
+    tags?: string[];
+    necessity?: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays?: number;
+}) {
+    return fetchJson<{ bucket: Bucket }>("/api/buckets", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function bucketsUpdate(input: {
+    id: number;
+    name: string;
+    description?: string;
+    iconKey?: string | null;
+    budgetLimitDollars?: number | null;
+    position?: number;
+    tags?: string[];
+    necessity?: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays?: number;
+}) {
+    return fetchJson<{ bucket: Bucket }>(`/api/buckets/${input.id}`, {
+        method: "PATCH",
+        body: JSON.stringify({
+            name: input.name,
+            description: input.description,
+            iconKey: input.iconKey,
+            budgetLimitDollars: input.budgetLimitDollars,
+            position: input.position,
+            tags: input.tags,
+            necessity: input.necessity,
+            windowDays: input.windowDays
+        })
+    });
+}
+
+export async function bucketsDelete(input: { id: number | string }) {
+    const numericId = Number(input.id);
+    if (!Number.isFinite(numericId) || numericId <= 0)
+        return { error: { code: "INVALID_ID", message: "Invalid id" } } as const;
+    return fetchJson<{ ok: true }>(`/api/buckets/${numericId}`, { method: "DELETE" });
+}
diff --git a/apps/web/lib/client/entries.ts b/apps/web/lib/client/entries.ts
new file mode 100644
index 0000000..570a229
--- /dev/null
+++ b/apps/web/lib/client/entries.ts
@@ -0,0 +1,76 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+import type { Entry } from "@/lib/shared/types";
+
+export async function entriesList() {
+    return fetchJson<{ entries: Entry[] }>("/api/entries", { method: "GET" });
+}
+
+export async function entriesCreate(input: {
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    isRecurring?: boolean;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+}) {
+    return fetchJson<{ entry: Entry }>("/api/entries", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function entriesUpdate(input: {
+    id: number;
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    isRecurring?: boolean;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+}) {
+    return fetchJson<{ entry: Entry }>(`/api/entries/${input.id}`, {
+        method: "PATCH",
+        body: JSON.stringify({
+            entryType: input.entryType,
+            amountDollars: input.amountDollars,
+            occurredAt: input.occurredAt,
+            necessity: input.necessity,
+            purchaseType: input.purchaseType,
+            notes: input.notes,
+            tags: input.tags,
+            bucketId: input.bucketId,
+            isRecurring: input.isRecurring,
+            frequency: input.frequency,
+            intervalCount: input.intervalCount,
+            endCondition: input.endCondition,
+            endCount: input.endCount,
+            endDate: input.endDate,
+            nextRunAt: input.nextRunAt
+        })
+    });
+}
+
+export async function entriesDelete(input: { id: number | string }) {
+    const numericId = Number(input.id);
+    if (!Number.isFinite(numericId) || numericId <= 0)
+        return { error: { code: "INVALID_ID", message: "Invalid id" } } as const;
+    return fetchJson<{ ok: true }>(`/api/entries/${numericId}`, { method: "DELETE" });
+}
diff --git a/apps/web/lib/client/entry-mutation-events.ts b/apps/web/lib/client/entry-mutation-events.ts
new file mode 100644
index 0000000..009f60b
--- /dev/null
+++ b/apps/web/lib/client/entry-mutation-events.ts
@@ -0,0 +1,13 @@
+import type { Entry } from "@/lib/shared/types";
+
+export const ENTRY_MUTATED_EVENT = "fiddy:entry-mutated";
+
+export type EntryMutationDetail = {
+    before: Entry | null;
+    after: Entry | null;
+};
+
+export function emitEntryMutated(detail: EntryMutationDetail) {
+    if (typeof window === "undefined") return;
+    window.dispatchEvent(new CustomEvent<EntryMutationDetail>(ENTRY_MUTATED_EVENT, { detail }));
+}
diff --git a/apps/web/lib/client/fetch-json.ts b/apps/web/lib/client/fetch-json.ts
new file mode 100644
index 0000000..8b0b53a
--- /dev/null
+++ b/apps/web/lib/client/fetch-json.ts
@@ -0,0 +1,32 @@
+export type ApiError = { code: string; message: string };
+export type ApiResult<T> = { data: T } | { error: ApiError };
+
+export async function fetchJson<T>(input: RequestInfo, init?: RequestInit): Promise<ApiResult<T>> {
+    const res = await fetch(input, {
+        ...init,
+        credentials: "include",
+        headers: {
+            "Content-Type": "application/json",
+            ...(init?.headers || {})
+        }
+    });
+
+    const payload = await res.json().catch(() => ({}));
+    if (!res.ok) {
+        const errorPayload = payload?.error;
+        let code = String(res.status);
+        let message = res.statusText || "Request failed";
+
+        if (typeof errorPayload === "string") {
+            message = errorPayload;
+        } else if (errorPayload && typeof errorPayload === "object") {
+            if (typeof errorPayload.code === "string") code = errorPayload.code;
+            if (typeof errorPayload.message === "string") message = errorPayload.message;
+        } else if (typeof payload?.message === "string") {
+            message = payload.message;
+        }
+
+        return { error: { code, message } };
+    }
+    return { data: payload as T };
+}
diff --git a/apps/web/lib/client/group-audit.ts b/apps/web/lib/client/group-audit.ts
new file mode 100644
index 0000000..240f59e
--- /dev/null
+++ b/apps/web/lib/client/group-audit.ts
@@ -0,0 +1,20 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type GroupAuditEvent = {
+    id: number;
+    groupId: number;
+    actorUserId: number | null;
+    actorRole: string | null;
+    eventType: string;
+    requestId: string;
+    ip: string | null;
+    userAgent: string | null;
+    success: boolean;
+    errorCode: string | null;
+    metadata: Record<string, unknown>;
+    createdAt: string;
+};
+
+export async function groupAuditList() {
+    return fetchJson<{ events: GroupAuditEvent[] }>("/api/groups/audit", { method: "GET" });
+}
diff --git a/apps/web/lib/client/group-invites.ts b/apps/web/lib/client/group-invites.ts
new file mode 100644
index 0000000..f7e3661
--- /dev/null
+++ b/apps/web/lib/client/group-invites.ts
@@ -0,0 +1,47 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type JoinPolicy = "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+
+export type InviteLink = {
+    id: number;
+    groupId: number;
+    token: string;
+    policy: JoinPolicy;
+    singleUse: boolean;
+    expiresAt: string;
+    usedAt: string | null;
+    revokedAt: string | null;
+    createdAt: string;
+};
+
+export async function groupInvitesList() {
+    return fetchJson<{ links: InviteLink[] }>("/api/groups/invites", { method: "GET" });
+}
+
+export async function groupInvitesCreate(input: { policy: JoinPolicy; singleUse: boolean; ttlDays: number }) {
+    return fetchJson<{ link: InviteLink }>("/api/groups/invites", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupInvitesRevoke(input: { linkId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/invites/revoke", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupInvitesRevive(input: { linkId: number; ttlDays: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/invites/revive", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupInvitesDelete(input: { linkId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/invites/delete", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
diff --git a/apps/web/lib/client/group-members.ts b/apps/web/lib/client/group-members.ts
new file mode 100644
index 0000000..78b574b
--- /dev/null
+++ b/apps/web/lib/client/group-members.ts
@@ -0,0 +1,75 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type GroupRole = "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER";
+
+export type GroupMember = {
+    userId: number;
+    email: string;
+    displayName: string | null;
+    role: GroupRole;
+    joinedAt: string;
+    lastLoginAt: string | null;
+    lastActiveAt: string | null;
+};
+
+export type JoinRequest = {
+    id: number;
+    groupId: number;
+    userId: number;
+    email: string;
+    displayName: string | null;
+    status: "PENDING" | "APPROVED" | "DENIED" | "CANCELED";
+    createdAt: string;
+};
+
+export async function groupMembersList() {
+    return fetchJson<{ members: GroupMember[]; requests: JoinRequest[]; currentUserId: number }>("/api/groups/members", { method: "GET" });
+}
+
+export async function groupMembersApprove(input: { userId: number; requestId?: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/approve", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupMembersDeny(input: { userId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/deny", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupMembersKick(input: { userId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/kick", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupMembersPromote(input: { userId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/promote", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupMembersDemote(input: { userId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/demote", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupMembersLeave() {
+    return fetchJson<{ ok: true }>("/api/groups/members/leave", {
+        method: "POST"
+    });
+}
+
+export async function groupMembersTransferOwner(input: { userId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/members/transfer-owner", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
diff --git a/apps/web/lib/client/group-settings.ts b/apps/web/lib/client/group-settings.ts
new file mode 100644
index 0000000..864397c
--- /dev/null
+++ b/apps/web/lib/client/group-settings.ts
@@ -0,0 +1,17 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type GroupSettings = {
+    allowMemberTagManage: boolean;
+    joinPolicy: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+};
+
+export async function groupSettingsGet() {
+    return fetchJson<{ settings: GroupSettings }>("/api/groups/settings", { method: "GET" });
+}
+
+export async function groupSettingsUpdate(input: { allowMemberTagManage: boolean; joinPolicy?: GroupSettings["joinPolicy"] }) {
+    return fetchJson<{ settings: GroupSettings }>("/api/groups/settings", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
diff --git a/apps/web/lib/client/groups.ts b/apps/web/lib/client/groups.ts
new file mode 100644
index 0000000..29ffbe3
--- /dev/null
+++ b/apps/web/lib/client/groups.ts
@@ -0,0 +1,44 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+import type { Group } from "@/lib/shared/types";
+
+export async function groupsList() {
+    return fetchJson<{ groups: Group[] }>("/api/groups", { method: "GET" });
+}
+
+export async function groupsActive() {
+    return fetchJson<{ active: Group | null }>("/api/groups/active", { method: "GET" });
+}
+
+export async function groupsCreate(input: { name: string }) {
+    return fetchJson<{ group: { id: number; name: string; inviteCode: string } }>("/api/groups", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupsJoin(input: { inviteCode: string }) {
+    return fetchJson<{ group: { id: number; name: string } }>("/api/groups/join", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupsSetActive(input: { groupId: number }) {
+    return fetchJson<{ ok: true }>("/api/groups/active", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupsRename(input: { name: string }) {
+    return fetchJson<{ ok: true }>("/api/groups/rename", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function groupsDelete() {
+    return fetchJson<{ ok: true }>("/api/groups/delete", {
+        method: "POST"
+    });
+}
diff --git a/apps/web/lib/client/invite-links.ts b/apps/web/lib/client/invite-links.ts
new file mode 100644
index 0000000..30b8a77
--- /dev/null
+++ b/apps/web/lib/client/invite-links.ts
@@ -0,0 +1,32 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export type InviteLinkSummary = {
+    id: number;
+    groupId: number;
+    groupName: string;
+    policy: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+    groupJoinPolicy: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+    singleUse: boolean;
+    expiresAt: string;
+    usedAt: string | null;
+    revokedAt: string | null;
+    createdAt: string;
+    viewerStatus?: "ALREADY_MEMBER" | "PENDING";
+};
+
+export type InviteAcceptResult = {
+    status: "JOINED" | "PENDING" | "ALREADY_MEMBER";
+    group: { id: number; name: string };
+};
+
+export async function inviteLinkGet(token: string) {
+    return fetchJson<{ link: InviteLinkSummary }>(`/api/invite-links/${encodeURIComponent(token)}`, {
+        method: "GET"
+    });
+}
+
+export async function inviteLinkAccept(token: string) {
+    return fetchJson<{ result: InviteAcceptResult }>(`/api/invite-links/${encodeURIComponent(token)}`, {
+        method: "POST"
+    });
+}
diff --git a/apps/web/lib/client/recurring-entries.ts b/apps/web/lib/client/recurring-entries.ts
new file mode 100644
index 0000000..1bda639
--- /dev/null
+++ b/apps/web/lib/client/recurring-entries.ts
@@ -0,0 +1,73 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+import type { Entry } from "@/lib/shared/types";
+
+export async function recurringEntriesList() {
+    return fetchJson<{ entries: Entry[] }>("/api/recurring-entries", { method: "GET" });
+}
+
+export async function recurringEntriesCreate(input: {
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+}) {
+    return fetchJson<{ entry: Entry }>("/api/recurring-entries", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function recurringEntriesUpdate(input: {
+    id: number;
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    bucketId?: number | null;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+}) {
+    return fetchJson<{ entry: Entry }>(`/api/recurring-entries/${input.id}`, {
+        method: "PATCH",
+        body: JSON.stringify({
+            entryType: input.entryType,
+            amountDollars: input.amountDollars,
+            occurredAt: input.occurredAt,
+            necessity: input.necessity,
+            purchaseType: input.purchaseType,
+            notes: input.notes,
+            tags: input.tags,
+            bucketId: input.bucketId,
+            frequency: input.frequency,
+            intervalCount: input.intervalCount,
+            endCondition: input.endCondition,
+            endCount: input.endCount,
+            endDate: input.endDate,
+            nextRunAt: input.nextRunAt
+        })
+    });
+}
+
+export async function recurringEntriesDelete(input: { id: number | string }) {
+    const numericId = Number(input.id);
+    if (!Number.isFinite(numericId) || numericId <= 0)
+        return { error: { code: "INVALID_ID", message: "Invalid id" } } as const;
+    return fetchJson<{ ok: true }>(`/api/recurring-entries/${numericId}`, { method: "DELETE" });
+}
diff --git a/apps/web/lib/client/tags.ts b/apps/web/lib/client/tags.ts
new file mode 100644
index 0000000..a505792
--- /dev/null
+++ b/apps/web/lib/client/tags.ts
@@ -0,0 +1,18 @@
+import { fetchJson } from "@/lib/client/fetch-json";
+
+export async function tagsList() {
+    return fetchJson<{ tags: string[] }>("/api/tags", { method: "GET" });
+}
+
+export async function tagsCreate(input: { tags: string[] }) {
+    return fetchJson<{ tags: string[] }>("/api/tags", {
+        method: "POST",
+        body: JSON.stringify(input)
+    });
+}
+
+export async function tagsDelete(input: { name: string }) {
+    return fetchJson<{ ok: true }>(`/api/tags/${encodeURIComponent(input.name)}`, {
+        method: "DELETE"
+    });
+}
diff --git a/apps/web/lib/db.ts b/apps/web/lib/db.ts
new file mode 100644
index 0000000..2234b9c
--- /dev/null
+++ b/apps/web/lib/db.ts
@@ -0,0 +1 @@
+export { };
diff --git a/apps/web/lib/groups.ts b/apps/web/lib/groups.ts
new file mode 100644
index 0000000..2234b9c
--- /dev/null
+++ b/apps/web/lib/groups.ts
@@ -0,0 +1 @@
+export { };
diff --git a/apps/web/lib/server/auth-service.ts b/apps/web/lib/server/auth-service.ts
new file mode 100644
index 0000000..9b4e379
--- /dev/null
+++ b/apps/web/lib/server/auth-service.ts
@@ -0,0 +1,63 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { createSession, getSessionTtlMs, hashPassword, hashToken, verifyPassword } from "@/lib/server/auth";
+import { apiError } from "@/lib/server/errors";
+
+export async function registerUser(input: { email: string; password: string; displayName?: string }) {
+    const pool = getPool();
+    const email = input.email.trim().toLowerCase();
+    const existing = await pool.query("select id from users where email=$1", [email]);
+    if (existing.rowCount)
+        apiError("EMAIL_EXISTS", { email });
+
+    const passwordHash = await hashPassword(input.password);
+    let rows;
+    try {
+        const result = await pool.query(
+            "insert into users(email, display_name, password_hash) values($1,$2,$3) returning id, email, display_name",
+            [email, input.displayName || null, passwordHash]
+        );
+        rows = result.rows;
+    } catch (error) {
+        if (typeof error === "object" && error && "code" in error && error.code === "23505")
+            apiError("EMAIL_EXISTS", { email });
+        throw error;
+    }
+    const user = rows[0];
+    const session = await createSession(user.id);
+    return {
+        user: { id: user.id, email: user.email, displayName: user.display_name },
+        session
+    };
+}
+
+export async function loginUser(input: { email: string; password: string; remember: boolean }) {
+    const pool = getPool();
+    const email = input.email.trim().toLowerCase();
+    const { rows } = await pool.query(
+        "select id, email, display_name, password_hash from users where email=$1",
+        [email]
+    );
+    const user = rows[0];
+    if (!user)
+        apiError("INVALID_CREDENTIALS", { email });
+
+    const ok = await verifyPassword(input.password, user.password_hash);
+    if (!ok)
+        apiError("INVALID_CREDENTIALS", { email });
+
+    const shortTtlMs = 24 * 60 * 60 * 1000;
+    const session = await createSession(user.id, input.remember ? undefined : { ttlMs: shortTtlMs });
+    const ttlMs = input.remember ? getSessionTtlMs() : shortTtlMs;
+
+    return {
+        user: { id: user.id, email: user.email, displayName: user.display_name },
+        session: { ...session, ttlMs }
+    };
+}
+
+export async function logoutUser(token: string) {
+    const pool = getPool();
+    await pool.query("delete from sessions where token_hash=$1", [hashToken(token)]);
+}
diff --git a/apps/web/lib/server/auth.ts b/apps/web/lib/server/auth.ts
new file mode 100644
index 0000000..b4e50d7
--- /dev/null
+++ b/apps/web/lib/server/auth.ts
@@ -0,0 +1,45 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import crypto from "node:crypto";
+import bcrypt from "bcryptjs";
+import getPool from "@/lib/server/db";
+
+const defaultSessionDays = 30;
+
+export function getSessionCookieName() {
+    return process.env.SESSION_COOKIE_NAME || "fiddy_session";
+}
+
+export function getSessionTtlMs() {
+    const days = Number(process.env.SESSION_TTL_DAYS || defaultSessionDays);
+    return Math.max(1, days) * 24 * 60 * 60 * 1000;
+}
+
+export function hashToken(token: string) {
+    return crypto.createHash("sha256").update(token).digest("hex");
+}
+
+export function createSessionToken() {
+    return crypto.randomBytes(32).toString("hex");
+}
+
+export async function hashPassword(password: string) {
+    return bcrypt.hash(password, 12);
+}
+
+export async function verifyPassword(password: string, hash: string) {
+    return bcrypt.compare(password, hash);
+}
+
+export async function createSession(userId: number, options?: { ttlMs?: number }) {
+    const token = createSessionToken();
+    const tokenHash = hashToken(token);
+    const ttlMs = options?.ttlMs ?? getSessionTtlMs();
+    const expiresAt = new Date(Date.now() + ttlMs);
+    const pool = getPool();
+    await pool.query(
+        "insert into sessions(user_id, token_hash, expires_at) values($1,$2,$3)",
+        [userId, tokenHash, expiresAt]
+    );
+    return { token, expiresAt, ttlMs };
+}
diff --git a/apps/web/lib/server/buckets.ts b/apps/web/lib/server/buckets.ts
new file mode 100644
index 0000000..75a31c7
--- /dev/null
+++ b/apps/web/lib/server/buckets.ts
@@ -0,0 +1,220 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { ensureTagsForGroup, listTagsForBuckets, normalizeTags, setBucketTags } from "@/lib/server/tags";
+import { calculateBucketUsage } from "@/lib/shared/bucket-usage";
+
+export { requireActiveGroup };
+
+type BucketRow = {
+    id: number;
+    name: string;
+    description: string | null;
+    icon_key: string | null;
+    budget_limit_dollars: string | number | null;
+    position: number;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    window_days: number;
+};
+
+type BucketTagRow = { name: string };
+
+type UsageEntryRow = {
+    id: number;
+    amount_dollars: string | number;
+    occurred_at: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    is_recurring: boolean;
+    tags: string[] | null;
+};
+
+export type Bucket = {
+    id: number;
+    name: string;
+    description: string | null;
+    iconKey: string | null;
+    budgetLimitDollars: number | null;
+    position: number;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays: number;
+    tags: string[];
+    totalUsage: number;
+    matchedCount: number;
+};
+
+async function listUsageEntries(groupId: number) {
+    const pool = getPool();
+    const rows = (await pool.query<UsageEntryRow>(
+        `select e.id, e.amount_dollars, e.occurred_at, e.necessity, e.is_recurring,
+                array_remove(array_agg(distinct t.name), null) as tags
+         from entries e
+         left join entry_tags et on et.entry_id = e.id
+         left join tags t on t.id = et.tag_id and t.group_id = $1
+         where e.group_id = $1 and e.entry_type = 'SPENDING'
+         group by e.id, e.amount_dollars, e.occurred_at, e.necessity, e.is_recurring`,
+        [groupId]
+    )).rows;
+    return rows.map(row => ({
+        amountDollars: Number(row.amount_dollars),
+        occurredAt: row.occurred_at,
+        necessity: row.necessity,
+        isRecurring: row.is_recurring,
+        tags: row.tags || [],
+        entryType: "SPENDING" as const
+    }));
+}
+
+export async function listBuckets(groupId: number): Promise<Bucket[]> {
+    const pool = getPool();
+    const rows = (await pool.query<BucketRow>(
+        `select id, name, description, icon_key, budget_limit_dollars, position, necessity, window_days
+         from buckets
+         where group_id=$1
+         order by position asc, name asc`,
+        [groupId]
+    )).rows;
+    const bucketIds = rows.map(row => Number(row.id));
+    const tagsMap = await listTagsForBuckets({ groupId, bucketIds });
+    const usageEntries = await listUsageEntries(groupId);
+
+    return rows.map(row => ({
+        id: Number(row.id),
+        name: row.name,
+        description: row.description,
+        iconKey: row.icon_key,
+        budgetLimitDollars: row.budget_limit_dollars == null ? null : Number(row.budget_limit_dollars),
+        position: Number(row.position || 0),
+        necessity: row.necessity,
+        windowDays: Number(row.window_days || 0),
+        tags: tagsMap.get(Number(row.id)) || [],
+        ...calculateBucketUsage({
+            tags: tagsMap.get(Number(row.id)) || [],
+            necessity: row.necessity,
+            windowDays: Number(row.window_days || 0)
+        }, usageEntries, new Date())
+    }));
+}
+
+export async function createBucket(input: {
+    groupId: number;
+    userId: number;
+    name: string;
+    description?: string;
+    iconKey?: string | null;
+    budgetLimitDollars?: number | null;
+    position?: number;
+    tags?: string[];
+    necessity?: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays?: number;
+}) {
+    const pool = getPool();
+    const rows = (await pool.query<BucketRow>(
+        `insert into buckets(group_id, created_by, name, description, icon_key, budget_limit_dollars, position, necessity, window_days)
+         values($1,$2,$3,$4,$5,$6,$7,$8,$9)
+         returning id, name, description, icon_key, budget_limit_dollars, position, necessity, window_days`,
+        [
+            input.groupId,
+            input.userId,
+            input.name,
+            input.description || null,
+            input.iconKey || null,
+            input.budgetLimitDollars ?? null,
+            input.position ?? 0,
+            input.necessity || "BOTH",
+            input.windowDays ?? 30
+        ]
+    )).rows;
+    const row = rows[0];
+    const tags = normalizeTags(input.tags || []);
+    const tagIds = await ensureTagsForGroup({ userId: input.userId, groupId: input.groupId, tags });
+    await setBucketTags({ bucketId: Number(row.id), tagIds });
+    return {
+        id: Number(row.id),
+        name: row.name,
+        description: row.description,
+        iconKey: row.icon_key,
+        budgetLimitDollars: row.budget_limit_dollars == null ? null : Number(row.budget_limit_dollars),
+        position: Number(row.position || 0),
+        necessity: row.necessity,
+        windowDays: Number(row.window_days || 0),
+        tags,
+        totalUsage: 0,
+        matchedCount: 0
+    } as Bucket;
+}
+
+export async function updateBucket(input: {
+    id: number;
+    groupId: number;
+    userId: number;
+    name: string;
+    description?: string;
+    iconKey?: string | null;
+    budgetLimitDollars?: number | null;
+    position?: number;
+    tags?: string[];
+    necessity?: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays?: number;
+}) {
+    const pool = getPool();
+    const rows = (await pool.query<BucketRow>(
+        `update buckets
+         set name=$1, description=$2, icon_key=$3, budget_limit_dollars=$4, position=$5, necessity=$6, window_days=$7
+         where id=$8 and group_id=$9
+         returning id, name, description, icon_key, budget_limit_dollars, position, necessity, window_days`,
+        [
+            input.name,
+            input.description || null,
+            input.iconKey || null,
+            input.budgetLimitDollars ?? null,
+            input.position ?? 0,
+            input.necessity || "BOTH",
+            input.windowDays ?? 30,
+            input.id,
+            input.groupId
+        ]
+    )).rows;
+    if (!rows[0]) return null;
+    const tags = normalizeTags(input.tags || []);
+    const tagIds = await ensureTagsForGroup({ userId: input.userId, groupId: input.groupId, tags });
+    await setBucketTags({ bucketId: Number(input.id), tagIds });
+    const usageEntries = await listUsageEntries(input.groupId);
+    const usage = calculateBucketUsage({
+        tags,
+        necessity: rows[0].necessity,
+        windowDays: Number(rows[0].window_days || 0)
+    }, usageEntries, new Date());
+    return {
+        id: Number(rows[0].id),
+        name: rows[0].name,
+        description: rows[0].description,
+        iconKey: rows[0].icon_key,
+        budgetLimitDollars: rows[0].budget_limit_dollars == null ? null : Number(rows[0].budget_limit_dollars),
+        position: Number(rows[0].position || 0),
+        necessity: rows[0].necessity,
+        windowDays: Number(rows[0].window_days || 0),
+        tags,
+        totalUsage: usage.totalUsage,
+        matchedCount: usage.matchedCount
+    } as Bucket;
+}
+
+export async function deleteBucket(input: { id: number; groupId: number }) {
+    const pool = getPool();
+    await pool.query("delete from buckets where id=$1 and group_id=$2", [input.id, input.groupId]);
+}
+
+export async function listBucketTags(bucketId: number, groupId: number) {
+    const pool = getPool();
+    const rows = (await pool.query<BucketTagRow>(
+        `select t.name
+         from bucket_tags bt
+         join tags t on t.id = bt.tag_id
+         where bt.bucket_id=$1 and t.group_id=$2
+         order by t.name asc`,
+        [bucketId, groupId]
+    )).rows;
+    return rows.map(row => String(row.name));
+}
+
diff --git a/apps/web/lib/server/db.ts b/apps/web/lib/server/db.ts
new file mode 100644
index 0000000..6e1c431
--- /dev/null
+++ b/apps/web/lib/server/db.ts
@@ -0,0 +1,45 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import pg from "pg";
+
+const { Pool } = pg;
+
+declare global {
+    // eslint-disable-next-line no-var
+    var __fiddyPool: pg.Pool | undefined;
+}
+
+export default function getPool() {
+    if (!process.env.DATABASE_URL)
+        throw new Error("DATABASE_URL is required");
+    const dbName = (() => {
+        try {
+            const url = new URL(process.env.DATABASE_URL!);
+            const name = url.pathname.replace(/^\/+/, "");
+            return name ? decodeURIComponent(name) : "";
+        } catch {
+            return "";
+        }
+    })();
+    const allowedRaw = process.env.ALLOWED_DB_NAMES;
+    const allowed = allowedRaw
+        ? allowedRaw
+            .split(",")
+            .map(value => value.trim().toLowerCase())
+            .filter(Boolean)
+        : (process.env.NODE_ENV === "test" && dbName ? [dbName.toLowerCase()] : []);
+    if (!allowed.length)
+        throw new Error("ALLOWED_DB_NAMES must include at least one database name");
+    if (!dbName)
+        throw new Error("DATABASE_URL must include a database name");
+    if (!allowed.includes(dbName.toLowerCase()))
+        throw new Error(`DATABASE_URL must target an allowed database. Found "${dbName}"`);
+    if (!globalThis.__fiddyPool) {
+        globalThis.__fiddyPool = new Pool({
+            connectionString: process.env.DATABASE_URL,
+            ssl: process.env.DATABASE_SSL === "false" ? false : { rejectUnauthorized: false },
+            allowExitOnIdle: process.env.NODE_ENV === "test"
+        });
+    }
+    return globalThis.__fiddyPool;
+}
diff --git a/apps/web/lib/server/entries.ts b/apps/web/lib/server/entries.ts
new file mode 100644
index 0000000..555e316
--- /dev/null
+++ b/apps/web/lib/server/entries.ts
@@ -0,0 +1,208 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { requireActiveGroup } from "@/lib/server/groups";
+import { listTagsForEntries, normalizeTags, requireExistingTagsForGroup, setEntryTags } from "@/lib/server/tags";
+import { listBucketTags } from "@/lib/server/buckets";
+import type { Entry } from "@/lib/shared/types";
+
+type EntryRow = {
+    id: number;
+    entry_type: "SPENDING" | "INCOME";
+    amount_dollars: string | number;
+    occurred_at: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchase_type: string;
+    notes: string | null;
+    receipt_id: number | null;
+    is_recurring: boolean;
+    frequency: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    interval_count: number;
+    end_condition: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    end_count: number | null;
+    end_date: string | null;
+    next_run_at: string | null;
+    last_executed_at: string | null;
+};
+
+export { requireActiveGroup };
+
+export async function listEntries(groupId: number): Promise<Entry[]> {
+    const pool = getPool();
+    const rows = (await pool.query<EntryRow>(
+        `select id, entry_type, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id,
+                is_recurring, frequency, interval_count, end_condition, end_count, end_date, next_run_at, last_executed_at
+         from entries
+         where group_id = $1
+         order by occurred_at desc, id desc`,
+        [groupId]
+    )).rows;
+    const entryIds = rows.map((row: EntryRow) => Number(row.id));
+    const tagsMap = await listTagsForEntries({ groupId, entryIds });
+    return rows.map((row: EntryRow) => ({
+        id: Number(row.id),
+        entryType: row.entry_type,
+        amountDollars: Number(row.amount_dollars),
+        occurredAt: row.occurred_at,
+        necessity: row.necessity,
+        purchaseType: row.purchase_type,
+        notes: row.notes,
+        receiptId: row.receipt_id,
+        tags: tagsMap.get(Number(row.id)) || [],
+        isRecurring: row.is_recurring,
+        frequency: row.frequency,
+        intervalCount: Number(row.interval_count || 1),
+        endCondition: row.end_condition,
+        endCount: row.end_count,
+        endDate: row.end_date,
+        nextRunAt: row.next_run_at,
+        lastExecutedAt: row.last_executed_at
+    }));
+}
+
+export async function createEntry(input: {
+    groupId: number;
+    userId: number;
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    isRecurring?: boolean;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+    bucketId?: number | null;
+}) {
+    const pool = getPool();
+    const rows = (await pool.query<EntryRow>(
+        `insert into entries(group_id, created_by, entry_type, amount_dollars, occurred_at, necessity, purchase_type, notes,
+                             is_recurring, frequency, interval_count, end_condition, end_count, end_date, next_run_at)
+         values($1,$2,$3,$4,$5,$6,$7,$8,$9,$10,$11,$12,$13,$14,$15)
+         returning id, entry_type, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id,
+                   is_recurring, frequency, interval_count, end_condition, end_count, end_date, next_run_at, last_executed_at`,
+        [
+            input.groupId,
+            input.userId,
+            input.entryType,
+            input.amountDollars,
+            input.occurredAt,
+            input.necessity,
+            input.purchaseType,
+            input.notes || null,
+            Boolean(input.isRecurring),
+            input.frequency || null,
+            input.intervalCount || 1,
+            input.endCondition || null,
+            input.endCount ?? null,
+            input.endDate || null,
+            input.nextRunAt || null
+        ]
+    )).rows;
+    const row = rows[0];
+    const bucketTags = input.bucketId ? await listBucketTags(input.bucketId, input.groupId) : [];
+    const tags = normalizeTags([...(input.tags || []), ...bucketTags]);
+    const tagIds = await requireExistingTagsForGroup({ groupId: input.groupId, tags });
+    await setEntryTags({ entryId: Number(row.id), groupId: input.groupId, tagIds });
+    return {
+        id: Number(row.id),
+        entryType: row.entry_type,
+        amountDollars: Number(row.amount_dollars),
+        occurredAt: row.occurred_at,
+        necessity: row.necessity,
+        purchaseType: row.purchase_type,
+        notes: row.notes,
+        receiptId: row.receipt_id,
+        tags,
+        isRecurring: row.is_recurring,
+        frequency: row.frequency,
+        intervalCount: Number(row.interval_count || 1),
+        endCondition: row.end_condition,
+        endCount: row.end_count,
+        endDate: row.end_date,
+        nextRunAt: row.next_run_at,
+        lastExecutedAt: row.last_executed_at
+    } as Entry;
+}
+
+export async function updateEntry(input: {
+    id: number;
+    groupId: number;
+    userId: number;
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes?: string;
+    tags?: string[];
+    isRecurring?: boolean;
+    frequency?: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount?: number;
+    endCondition?: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount?: number | null;
+    endDate?: string | null;
+    nextRunAt?: string | null;
+    bucketId?: number | null;
+}) {
+    const pool = getPool();
+    const rows = (await pool.query<EntryRow>(
+        `update entries
+         set entry_type=$1, amount_dollars=$2, occurred_at=$3, necessity=$4, purchase_type=$5, notes=$6,
+             is_recurring=$7, frequency=$8, interval_count=$9, end_condition=$10, end_count=$11, end_date=$12, next_run_at=$13
+         where id=$14 and group_id=$15
+         returning id, entry_type, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id,
+                   is_recurring, frequency, interval_count, end_condition, end_count, end_date, next_run_at, last_executed_at`,
+        [
+            input.entryType,
+            input.amountDollars,
+            input.occurredAt,
+            input.necessity,
+            input.purchaseType,
+            input.notes || null,
+            Boolean(input.isRecurring),
+            input.frequency || null,
+            input.intervalCount || 1,
+            input.endCondition || null,
+            input.endCount ?? null,
+            input.endDate || null,
+            input.nextRunAt || null,
+            input.id,
+            input.groupId
+        ]
+    )).rows;
+    if (!rows[0]) return null;
+    const bucketTags = input.bucketId ? await listBucketTags(input.bucketId, input.groupId) : [];
+    const tags = normalizeTags([...(input.tags || []), ...bucketTags]);
+    const tagIds = await requireExistingTagsForGroup({ groupId: input.groupId, tags });
+    await setEntryTags({ entryId: Number(input.id), groupId: input.groupId, tagIds });
+    return {
+        id: Number(rows[0].id),
+        entryType: rows[0].entry_type,
+        amountDollars: Number(rows[0].amount_dollars),
+        occurredAt: rows[0].occurred_at,
+        necessity: rows[0].necessity,
+        purchaseType: rows[0].purchase_type,
+        notes: rows[0].notes,
+        receiptId: rows[0].receipt_id,
+        tags,
+        isRecurring: rows[0].is_recurring,
+        frequency: rows[0].frequency,
+        intervalCount: Number(rows[0].interval_count || 1),
+        endCondition: rows[0].end_condition,
+        endCount: rows[0].end_count,
+        endDate: rows[0].end_date,
+        nextRunAt: rows[0].next_run_at,
+        lastExecutedAt: rows[0].last_executed_at
+    } as Entry;
+}
+
+export async function deleteEntry(input: { id: number; groupId: number }) {
+    const pool = getPool();
+    await pool.query("delete from entries where id=$1 and group_id=$2", [input.id, input.groupId]);
+}
diff --git a/apps/web/lib/server/errors.ts b/apps/web/lib/server/errors.ts
new file mode 100644
index 0000000..030f6ec
--- /dev/null
+++ b/apps/web/lib/server/errors.ts
@@ -0,0 +1,107 @@
+if (process.env.NODE_ENV !== "test") require("server-only");
+import crypto from "node:crypto";
+
+type ErrorContext = Record<string, unknown> | undefined;
+
+type ErrorPayload = {
+    code: string;
+    message: string;
+    context?: ErrorContext;
+};
+
+const sensitiveKeys = new Set([
+    "password",
+    "token",
+    "authorization",
+    "cookie",
+    "session",
+    "sessionid",
+    "secret"
+]);
+
+const statusMap: Record<string, { status: number; message: string }> = {
+    UNAUTHORIZED: { status: 401, message: "Unauthorized" },
+    FORBIDDEN: { status: 403, message: "Forbidden" },
+    NOT_FOUND: { status: 404, message: "Not found" },
+    NO_ACTIVE_GROUP: { status: 400, message: "No active group" },
+    INVALID_TAGS: { status: 400, message: "Invalid tags" },
+    INVALID_INVITE: { status: 404, message: "Invalid invite code" },
+    INVITE_NOT_FOUND: { status: 404, message: "Invite link not found" },
+    INVITE_REVOKED: { status: 410, message: "Invite link has been revoked" },
+    INVITE_EXPIRED: { status: 410, message: "Invite link has expired" },
+    INVITE_USED: { status: 409, message: "Invite link has already been used" },
+    JOIN_NOT_ACCEPTING: { status: 403, message: "Group is not accepting new members" },
+    JOIN_PENDING: { status: 409, message: "Join request pending approval" },
+    JOIN_REQUEST_NOT_FOUND: { status: 404, message: "Join request not found" },
+    NOT_MEMBER: { status: 404, message: "User is not a group member" },
+    OWNER_MUST_TRANSFER: { status: 403, message: "Owner must transfer ownership before leaving" },
+    CANNOT_LEAVE_LAST_MEMBER: { status: 403, message: "Cannot leave last remaining member" },
+    EMAIL_EXISTS: { status: 409, message: "Email already registered" },
+    INVALID_CREDENTIALS: { status: 401, message: "Invalid credentials" }
+};
+
+export class ApiError extends Error {
+    code: string;
+    context?: ErrorContext;
+
+    constructor(code: string, context?: ErrorContext) {
+        super(code);
+        this.code = code;
+        this.context = context;
+    }
+}
+
+export function createRequestId() {
+    return crypto.randomBytes(16).toString("hex");
+}
+
+export function apiError(code: string, context?: ErrorContext): never {
+    throw new ApiError(code, context);
+}
+
+function redactContext(context?: ErrorContext) {
+    if (!context) return context;
+    return Object.fromEntries(
+        Object.entries(context).map(([key, value]) => {
+            if (sensitiveKeys.has(key.toLowerCase())) return [key, "[redacted]"];
+            return [key, value];
+        })
+    );
+}
+
+function logApiError(payload: ErrorPayload) {
+    const safeContext = redactContext(payload.context);
+    console.error("API_ERROR", { code: payload.code, message: payload.message, context: safeContext });
+}
+
+export function toErrorResponse(e: unknown, route: string, requestId?: string) {
+    const debugEnabled = process.env.DEBUG_API === "1";
+    console.log()
+    let payload: ErrorPayload = { code: "SERVER_ERROR", message: "Server error" };
+    let status = 500;
+
+    if (e instanceof ApiError) {
+        const mapped = statusMap[e.code];
+        payload = {
+            code: e.code,
+            message: mapped?.message || "Server error",
+            context: e.context
+        };
+        status = mapped?.status || 500;
+    }
+
+    if (debugEnabled) {
+        const context = payload.context || {};
+        payload = { ...payload, context: { ...context, route } };
+        logApiError(payload);
+    }
+
+    return {
+        status,
+        body: {
+            requestId,
+            error: { code: payload.code, message: payload.message },
+            ...(debugEnabled ? { debug: payload.context } : {})
+        }
+    };
+}
diff --git a/apps/web/lib/server/group-access.ts b/apps/web/lib/server/group-access.ts
new file mode 100644
index 0000000..278ddc8
--- /dev/null
+++ b/apps/web/lib/server/group-access.ts
@@ -0,0 +1,37 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+
+export type GroupRole = "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER";
+
+export async function getGroupRole(userId: number, groupId: number): Promise<GroupRole | null> {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select role from group_members where user_id=$1 and group_id=$2",
+        [userId, groupId]
+    );
+    return (rows[0]?.role as GroupRole | undefined) ?? null;
+}
+
+export function isAdminRole(role: GroupRole | null | undefined) {
+    return role === "GROUP_ADMIN" || role === "GROUP_OWNER";
+}
+
+export async function requireGroupMember(userId: number, groupId: number): Promise<GroupRole> {
+    const role = await getGroupRole(userId, groupId);
+    if (!role) apiError("FORBIDDEN", { userId, groupId });
+    return role;
+}
+
+export async function requireGroupAdmin(userId: number, groupId: number): Promise<GroupRole> {
+    const role = await getGroupRole(userId, groupId);
+    if (!isAdminRole(role)) apiError("FORBIDDEN", { userId, groupId });
+    return role!;
+}
+
+export async function requireGroupOwner(userId: number, groupId: number): Promise<GroupRole> {
+    const role = await getGroupRole(userId, groupId);
+    if (role !== "GROUP_OWNER") apiError("FORBIDDEN", { userId, groupId });
+    return role;
+}
diff --git a/apps/web/lib/server/group-audit.ts b/apps/web/lib/server/group-audit.ts
new file mode 100644
index 0000000..25ddee1
--- /dev/null
+++ b/apps/web/lib/server/group-audit.ts
@@ -0,0 +1,90 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import type { GroupRole } from "@/lib/server/group-access";
+import { requireGroupAdmin } from "@/lib/server/group-access";
+
+export type GroupAuditEvent = {
+    groupId: number;
+    actorUserId: number | null;
+    actorRole: GroupRole | null;
+    eventType: string;
+    requestId: string;
+    ip?: string | null;
+    userAgent?: string | null;
+    success?: boolean;
+    errorCode?: string | null;
+    metadata?: Record<string, unknown>;
+};
+
+export async function recordGroupAudit(event: GroupAuditEvent) {
+    const pool = getPool();
+    await pool.query(
+        `insert into group_audit_log(
+            group_id,
+            actor_user_id,
+            actor_role,
+            event_type,
+            request_id,
+            ip,
+            user_agent,
+            success,
+            error_code,
+            metadata
+        ) values($1,$2,$3,$4,$5,$6,$7,$8,$9,$10)`,
+        [
+            event.groupId,
+            event.actorUserId,
+            event.actorRole,
+            event.eventType,
+            event.requestId,
+            event.ip ?? null,
+            event.userAgent ?? null,
+            event.success ?? true,
+            event.errorCode ?? null,
+            event.metadata ?? {}
+        ]
+    );
+}
+
+type GroupAuditRow = {
+    id: number;
+    group_id: number;
+    actor_user_id: number | null;
+    actor_role: GroupRole | null;
+    event_type: string;
+    request_id: string;
+    ip: string | null;
+    user_agent: string | null;
+    success: boolean;
+    error_code: string | null;
+    metadata: Record<string, unknown>;
+    created_at: string;
+};
+
+export async function listGroupAudit(input: { userId: number; groupId: number }) {
+    await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select id, group_id, actor_user_id, actor_role, event_type, request_id, ip, user_agent, success, error_code, metadata, created_at
+         from group_audit_log
+         where group_id=$1
+         order by created_at desc
+         limit 100`,
+        [input.groupId]
+    );
+    return rows.map((row: GroupAuditRow) => ({
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        actorUserId: row.actor_user_id === null ? null : Number(row.actor_user_id),
+        actorRole: row.actor_role,
+        eventType: row.event_type,
+        requestId: row.request_id,
+        ip: row.ip,
+        userAgent: row.user_agent,
+        success: Boolean(row.success),
+        errorCode: row.error_code,
+        metadata: row.metadata || {},
+        createdAt: row.created_at
+    }));
+}
diff --git a/apps/web/lib/server/group-invites.ts b/apps/web/lib/server/group-invites.ts
new file mode 100644
index 0000000..c78c256
--- /dev/null
+++ b/apps/web/lib/server/group-invites.ts
@@ -0,0 +1,353 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import crypto from "node:crypto";
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+import { requireGroupAdmin } from "@/lib/server/group-access";
+import { recordGroupAudit } from "@/lib/server/group-audit";
+
+export type JoinPolicy = "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+
+export type InviteLink = {
+    id: number;
+    groupId: number;
+    token: string;
+    policy: JoinPolicy;
+    singleUse: boolean;
+    groupJoinPolicy: JoinPolicy;
+    expiresAt: string;
+    usedAt: string | null;
+    revokedAt: string | null;
+    createdAt: string;
+};
+
+export type InviteLinkSummary = {
+    id: number;
+    groupId: number;
+    groupName: string;
+    policy: JoinPolicy;
+    groupJoinPolicy: JoinPolicy;
+    singleUse: boolean;
+    expiresAt: string;
+    usedAt: string | null;
+    revokedAt: string | null;
+    createdAt: string;
+    viewerStatus?: "ALREADY_MEMBER" | "PENDING";
+};
+
+export async function getInviteViewerStatus(input: { userId: number; groupId: number }) {
+    const pool = getPool();
+    const existing = await pool.query(
+        "select 1 from group_members where group_id=$1 and user_id=$2",
+        [input.groupId, input.userId]
+    );
+    if (existing.rowCount) return "ALREADY_MEMBER" as const;
+    const pending = await pool.query(
+        "select 1 from group_join_requests where group_id=$1 and user_id=$2 and status='PENDING'",
+        [input.groupId, input.userId]
+    );
+    if (pending.rowCount) return "PENDING" as const;
+    return null;
+}
+
+type InviteLinkRow = {
+    id: number;
+    group_id: number;
+    token: string;
+    policy: JoinPolicy;
+    single_use: boolean;
+    expires_at: string;
+    used_at: string | null;
+    revoked_at: string | null;
+    created_at: string;
+};
+
+function createToken() {
+    return crypto.randomBytes(16).toString("hex");
+}
+
+function last4(value: string) {
+    return value.slice(-4);
+}
+
+export async function createInviteLink(input: {
+    userId: number;
+    groupId: number;
+    policy: JoinPolicy;
+    singleUse: boolean;
+    expiresAt: Date;
+    requestId: string;
+    ip?: string | null;
+    userAgent?: string | null;
+}) {
+    const role = await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const token = createToken();
+    const { rows } = await pool.query(
+        `insert into group_invite_links(group_id, created_by, token, policy, single_use, expires_at)
+         values($1,$2,$3,$4,$5,$6)
+         returning id, group_id, token, policy, single_use, expires_at, used_at, revoked_at, created_at`,
+        [input.groupId, input.userId, token, input.policy, input.singleUse, input.expiresAt]
+    );
+    const row = rows[0];
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_INVITE_CREATED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: {
+            inviteCodeLast4: last4(token),
+            policy: input.policy,
+            singleUse: input.singleUse,
+            expiresAt: input.expiresAt.toISOString()
+        }
+    });
+    return {
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        token: String(row.token),
+        policy: row.policy as JoinPolicy,
+        singleUse: Boolean(row.single_use),
+        expiresAt: row.expires_at,
+        usedAt: row.used_at,
+        revokedAt: row.revoked_at,
+        createdAt: row.created_at
+    } satisfies InviteLink;
+}
+
+export async function listInviteLinks(input: { userId: number; groupId: number }) {
+    await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select id, group_id, token, policy, single_use, expires_at, used_at, revoked_at, created_at
+         from group_invite_links
+         where group_id=$1
+         order by created_at desc`,
+        [input.groupId]
+    );
+    return rows.map((row: InviteLinkRow) => ({
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        token: String(row.token),
+        policy: row.policy as JoinPolicy,
+        singleUse: Boolean(row.single_use),
+        expiresAt: row.expires_at,
+        usedAt: row.used_at,
+        revokedAt: row.revoked_at,
+        createdAt: row.created_at
+    })) as InviteLink[];
+}
+
+export async function revokeInviteLink(input: { userId: number; groupId: number; linkId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `update group_invite_links
+         set revoked_at=now()
+         where id=$1 and group_id=$2
+         returning token`,
+        [input.linkId, input.groupId]
+    );
+    if (!rows[0]) apiError("INVITE_NOT_FOUND", { groupId: input.groupId, linkId: input.linkId });
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_INVITE_REVOKED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { inviteCodeLast4: last4(String(rows[0].token)) }
+    });
+}
+
+export async function reviveInviteLink(input: { userId: number; groupId: number; linkId: number; expiresAt: Date; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `update group_invite_links
+         set used_at=null,
+             revoked_at=null,
+             expires_at=$3
+         where id=$1 and group_id=$2
+         returning token`,
+        [input.linkId, input.groupId, input.expiresAt]
+    );
+    if (!rows[0]) apiError("INVITE_NOT_FOUND", { groupId: input.groupId, linkId: input.linkId });
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_INVITE_REVIVED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: {
+            inviteCodeLast4: last4(String(rows[0].token)),
+            expiresAt: input.expiresAt.toISOString()
+        }
+    });
+}
+
+export async function getInviteLinkByToken(token: string) {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select id, group_id, token, policy, single_use, expires_at, used_at, revoked_at, created_at
+         from group_invite_links
+         where token=$1`,
+        [token]
+    );
+    const row = rows[0];
+    if (!row) return null;
+    return {
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        token: String(row.token),
+        policy: row.policy as JoinPolicy,
+        singleUse: Boolean(row.single_use),
+        expiresAt: row.expires_at,
+        usedAt: row.used_at,
+        revokedAt: row.revoked_at,
+        createdAt: row.created_at
+    } satisfies InviteLink;
+}
+
+export async function getInviteLinkSummaryByToken(token: string) {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select l.id, l.group_id, g.name as group_name, l.policy, l.single_use, l.expires_at, l.used_at, l.revoked_at, l.created_at,
+            gs.join_policy as group_join_policy
+         from group_invite_links l
+         join groups g on g.id = l.group_id
+         left join group_settings gs on gs.group_id = l.group_id
+         where l.token=$1`,
+        [token]
+    );
+    const row = rows[0];
+    if (!row) return null;
+    return {
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        groupName: String(row.group_name),
+        policy: row.policy as JoinPolicy,
+        groupJoinPolicy: row.group_join_policy as JoinPolicy,
+        singleUse: Boolean(row.single_use),
+        expiresAt: row.expires_at,
+        usedAt: row.used_at,
+        revokedAt: row.revoked_at,
+        createdAt: row.created_at
+    } satisfies InviteLinkSummary;
+}
+
+export async function acceptInviteLink(input: { userId: number; token: string; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const summary = await getInviteLinkSummaryByToken(input.token);
+    if (!summary) apiError("INVITE_NOT_FOUND", { tokenLast4: last4(input.token) });
+
+    const pool = getPool();
+    const existing = await pool.query(
+        "select 1 from group_members where group_id=$1 and user_id=$2",
+        [summary.groupId, input.userId]
+    );
+    if (existing.rowCount) {
+        return { status: "ALREADY_MEMBER" as const, group: { id: summary.groupId, name: summary.groupName } };
+    }
+
+    const pending = await pool.query(
+        "select 1 from group_join_requests where group_id=$1 and user_id=$2 and status='PENDING'",
+        [summary.groupId, input.userId]
+    );
+    if (pending.rowCount) {
+        return { status: "PENDING" as const, group: { id: summary.groupId, name: summary.groupName } };
+    }
+
+    if (summary.revokedAt) apiError("INVITE_REVOKED", { groupId: summary.groupId, linkId: summary.id });
+    const expiresAtMs = new Date(summary.expiresAt).getTime();
+    if (Number.isNaN(expiresAtMs) || Date.now() > expiresAtMs)
+        apiError("INVITE_EXPIRED", { groupId: summary.groupId, linkId: summary.id });
+    if (summary.singleUse && summary.usedAt)
+        apiError("INVITE_USED", { groupId: summary.groupId, linkId: summary.id });
+
+    const activePolicy = summary.groupJoinPolicy || summary.policy;
+    if (activePolicy === "NOT_ACCEPTING")
+        apiError("JOIN_NOT_ACCEPTING", { groupId: summary.groupId, userId: input.userId });
+
+    if (activePolicy === "AUTO_ACCEPT") {
+        await pool.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'MEMBER') on conflict do nothing",
+            [summary.groupId, input.userId]
+        );
+        if (summary.singleUse) {
+            await pool.query(
+                "update group_invite_links set used_at=now(), revoked_at=now() where id=$1",
+                [summary.id]
+            );
+        }
+        await recordGroupAudit({
+            groupId: summary.groupId,
+            actorUserId: input.userId,
+            actorRole: "MEMBER",
+            eventType: "GROUP_INVITE_USED",
+            requestId: input.requestId,
+            ip: input.ip,
+            userAgent: input.userAgent,
+            metadata: { inviteCodeLast4: last4(input.token) }
+        });
+        return { status: "JOINED" as const, group: { id: summary.groupId, name: summary.groupName } };
+    }
+
+    await pool.query(
+        `insert into group_join_requests(group_id, user_id, status)
+         values($1,$2,'PENDING')
+         on conflict (group_id, user_id) where status='PENDING'
+         do update set updated_at=now()`,
+        [summary.groupId, input.userId]
+    );
+    if (summary.singleUse) {
+        await pool.query(
+            "update group_invite_links set used_at=now(), revoked_at=now() where id=$1",
+            [summary.id]
+        );
+    }
+    await recordGroupAudit({
+        groupId: summary.groupId,
+        actorUserId: input.userId,
+        actorRole: "MEMBER",
+        eventType: "GROUP_INVITE_REQUESTED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { inviteCodeLast4: last4(input.token) }
+    });
+    return { status: "PENDING" as const, group: { id: summary.groupId, name: summary.groupName } };
+}
+
+export async function markInviteLinkUsed(input: { linkId: number }) {
+    const pool = getPool();
+    await pool.query(
+        "update group_invite_links set used_at=now() where id=$1",
+        [input.linkId]
+    );
+}
+
+export async function deleteInviteLink(input: { userId: number; groupId: number; linkId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "delete from group_invite_links where id=$1 and group_id=$2 returning token",
+        [input.linkId, input.groupId]
+    );
+    if (!rows[0]) apiError("INVITE_NOT_FOUND", { groupId: input.groupId, linkId: input.linkId });
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_INVITE_DELETED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { inviteCodeLast4: last4(String(rows[0].token)) }
+    });
+}
diff --git a/apps/web/lib/server/group-members.ts b/apps/web/lib/server/group-members.ts
new file mode 100644
index 0000000..7e6866a
--- /dev/null
+++ b/apps/web/lib/server/group-members.ts
@@ -0,0 +1,371 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+import { getGroupRole, isAdminRole, requireGroupAdmin, requireGroupOwner } from "@/lib/server/group-access";
+import { recordGroupAudit } from "@/lib/server/group-audit";
+
+export type GroupRole = "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER";
+
+export type GroupMember = {
+    userId: number;
+    email: string;
+    displayName: string | null;
+    role: GroupRole;
+    joinedAt: string;
+    lastLoginAt: string | null;
+    lastActiveAt: string | null;
+};
+
+export type JoinRequest = {
+    id: number;
+    groupId: number;
+    userId: number;
+    email: string;
+    displayName: string | null;
+    status: "PENDING" | "APPROVED" | "DENIED" | "CANCELED";
+    createdAt: string;
+};
+
+type GroupMemberRow = {
+    user_id: number;
+    role: GroupRole;
+    created_at: string;
+    last_active_at: string | null;
+    email: string;
+    display_name: string | null;
+    last_login_at: string | null;
+};
+
+type JoinRequestRow = {
+    id: number;
+    group_id: number;
+    user_id: number;
+    status: "PENDING" | "APPROVED" | "DENIED" | "CANCELED";
+    created_at: string;
+    email: string;
+    display_name: string | null;
+};
+
+export async function listGroupMembers(groupId: number): Promise<GroupMember[]> {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select gm.user_id, gm.role, gm.created_at, gm.last_active_at, u.email, u.display_name, u.last_login_at
+         from group_members gm
+         join users u on u.id = gm.user_id
+         where gm.group_id=$1
+         order by gm.created_at asc`,
+        [groupId]
+    );
+    return rows.map((row: GroupMemberRow) => ({
+        userId: Number(row.user_id),
+        email: row.email,
+        displayName: row.display_name,
+        role: row.role as GroupRole,
+        joinedAt: row.created_at,
+        lastLoginAt: row.last_login_at,
+        lastActiveAt: row.last_active_at
+    }));
+}
+
+export async function listJoinRequests(input: { userId: number; groupId: number }) {
+    await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select r.id, r.group_id, r.user_id, r.status, r.created_at, u.email, u.display_name
+         from group_join_requests r
+         join users u on u.id = r.user_id
+         where r.group_id=$1 and r.status='PENDING'
+         order by r.created_at asc`,
+        [input.groupId]
+    );
+    return rows.map((row: JoinRequestRow) => ({
+        id: Number(row.id),
+        groupId: Number(row.group_id),
+        userId: Number(row.user_id),
+        email: row.email,
+        displayName: row.display_name,
+        status: row.status,
+        createdAt: row.created_at
+    })) as JoinRequest[];
+}
+
+export async function createJoinRequest(input: { userId: number; groupId: number }) {
+    const pool = getPool();
+    const role = await getGroupRole(input.userId, input.groupId);
+    if (role) return;
+    await pool.query(
+        `insert into group_join_requests(group_id, user_id, status)
+         values($1,$2,'PENDING')
+         on conflict (group_id, user_id) where status='PENDING'
+         do update set updated_at=now()`,
+        [input.groupId, input.userId]
+    );
+}
+
+export async function approveJoinRequest(input: { actorUserId: number; groupId: number; userId: number; requestId: string; ip?: string | null; userAgent?: string | null; requestRowId?: number }) {
+    const role = await requireGroupAdmin(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const client = await pool.connect();
+    let approvedUserId = input.userId;
+    try {
+        await client.query("begin");
+        const { rows } = await client.query(
+            input.requestRowId
+                ? `select id, status, user_id from group_join_requests
+                   where group_id=$1 and id=$2
+                   for update`
+                : `select id, status, user_id from group_join_requests
+                   where group_id=$1 and user_id=$2
+                   for update`,
+            input.requestRowId
+                ? [input.groupId, input.requestRowId]
+                : [input.groupId, input.userId]
+        );
+        const request = rows[0];
+        if (!request || request.status !== "PENDING") apiError("JOIN_REQUEST_NOT_FOUND", { groupId: input.groupId, userId: input.userId });
+        approvedUserId = Number(request.user_id || input.userId);
+
+        await client.query(
+            `update group_join_requests
+             set status='APPROVED', decided_by=$3, decided_at=now(), updated_at=now()
+             where group_id=$1 and user_id=$2`,
+            [input.groupId, approvedUserId, input.actorUserId]
+        );
+
+        await client.query(
+            `insert into group_members(group_id, user_id, role)
+             values($1,$2,'MEMBER')
+             on conflict (group_id, user_id) do nothing`,
+            [input.groupId, approvedUserId]
+        );
+
+        await client.query("commit");
+    } catch (e) {
+        await client.query("rollback");
+        throw e;
+    } finally {
+        client.release();
+    }
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: role,
+        eventType: "GROUP_JOIN_APPROVED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { targetUserId: approvedUserId }
+    });
+}
+
+export async function denyJoinRequest(input: { actorUserId: number; groupId: number; userId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const { rowCount } = await pool.query(
+        `update group_join_requests
+         set status='DENIED', decided_by=$3, decided_at=now(), updated_at=now()
+         where group_id=$1 and user_id=$2 and status='PENDING'`,
+        [input.groupId, input.userId, input.actorUserId]
+    );
+    if (!rowCount) apiError("JOIN_REQUEST_NOT_FOUND", { groupId: input.groupId, userId: input.userId });
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: role,
+        eventType: "GROUP_JOIN_DENIED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { targetUserId: input.userId }
+    });
+}
+
+export async function kickMember(input: { actorUserId: number; groupId: number; targetUserId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const client = await pool.connect();
+    try {
+        await client.query("begin");
+        const { rows } = await client.query(
+            "select role from group_members where group_id=$1 and user_id=$2 for update",
+            [input.groupId, input.targetUserId]
+        );
+        const targetRole = rows[0]?.role as GroupRole | undefined;
+        if (!targetRole) apiError("NOT_MEMBER", { groupId: input.groupId, userId: input.targetUserId });
+        if (targetRole === "GROUP_OWNER") apiError("FORBIDDEN", { groupId: input.groupId, userId: input.targetUserId });
+
+        const countRes = await client.query(
+            "select count(*)::int as count from group_members where group_id=$1",
+            [input.groupId]
+        );
+        if (Number(countRes.rows[0]?.count || 0) <= 1)
+            apiError("FORBIDDEN", { groupId: input.groupId, userId: input.targetUserId });
+
+        await client.query(
+            "delete from group_members where group_id=$1 and user_id=$2",
+            [input.groupId, input.targetUserId]
+        );
+        await client.query("commit");
+    } catch (e) {
+        await client.query("rollback");
+        throw e;
+    } finally {
+        client.release();
+    }
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: role,
+        eventType: "GROUP_MEMBER_KICKED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { targetUserId: input.targetUserId }
+    });
+}
+
+export async function leaveGroup(input: { userId: number; groupId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const pool = getPool();
+    const client = await pool.connect();
+    let role: GroupRole | null = null;
+    try {
+        await client.query("begin");
+        const { rows } = await client.query(
+            "select role from group_members where group_id=$1 and user_id=$2 for update",
+            [input.groupId, input.userId]
+        );
+        role = (rows[0]?.role as GroupRole | undefined) ?? null;
+        if (!role) apiError("NOT_MEMBER", { groupId: input.groupId, userId: input.userId });
+        if (role === "GROUP_OWNER") apiError("OWNER_MUST_TRANSFER", { groupId: input.groupId, userId: input.userId });
+
+        const countRes = await client.query(
+            "select count(*)::int as count from group_members where group_id=$1",
+            [input.groupId]
+        );
+        if (Number(countRes.rows[0]?.count || 0) <= 1)
+            apiError("CANNOT_LEAVE_LAST_MEMBER", { groupId: input.groupId, userId: input.userId });
+
+        await client.query(
+            "delete from group_members where group_id=$1 and user_id=$2",
+            [input.groupId, input.userId]
+        );
+        await client.query("commit");
+    } catch (e) {
+        await client.query("rollback");
+        throw e;
+    } finally {
+        client.release();
+    }
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_MEMBER_LEFT",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent
+    });
+}
+
+export async function promoteToAdmin(input: { actorUserId: number; groupId: number; targetUserId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select role from group_members where group_id=$1 and user_id=$2",
+        [input.groupId, input.targetUserId]
+    );
+    const targetRole = rows[0]?.role as GroupRole | undefined;
+    if (!targetRole) apiError("NOT_MEMBER", { groupId: input.groupId, userId: input.targetUserId });
+    if (targetRole === "GROUP_OWNER") apiError("FORBIDDEN", { groupId: input.groupId, userId: input.targetUserId });
+
+    await pool.query(
+        "update group_members set role='GROUP_ADMIN' where group_id=$1 and user_id=$2",
+        [input.groupId, input.targetUserId]
+    );
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: role,
+        eventType: "GROUP_MEMBER_PROMOTED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { targetUserId: input.targetUserId }
+    });
+}
+
+export async function demoteAdmin(input: { actorUserId: number; groupId: number; targetUserId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select role from group_members where group_id=$1 and user_id=$2",
+        [input.groupId, input.targetUserId]
+    );
+    const targetRole = rows[0]?.role as GroupRole | undefined;
+    if (!targetRole) apiError("NOT_MEMBER", { groupId: input.groupId, userId: input.targetUserId });
+    if (targetRole === "GROUP_OWNER") apiError("FORBIDDEN", { groupId: input.groupId, userId: input.targetUserId });
+    if (targetRole !== "GROUP_ADMIN") return;
+
+    await pool.query(
+        "update group_members set role='MEMBER' where group_id=$1 and user_id=$2",
+        [input.groupId, input.targetUserId]
+    );
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: role,
+        eventType: "GROUP_MEMBER_DEMOTED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { targetUserId: input.targetUserId }
+    });
+}
+
+export async function transferOwnership(input: { actorUserId: number; groupId: number; newOwnerUserId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    await requireGroupOwner(input.actorUserId, input.groupId);
+    const pool = getPool();
+    const client = await pool.connect();
+    try {
+        await client.query("begin");
+        const { rows: targetRows } = await client.query(
+            "select role from group_members where group_id=$1 and user_id=$2 for update",
+            [input.groupId, input.newOwnerUserId]
+        );
+        const targetRole = targetRows[0]?.role as GroupRole | undefined;
+        if (!targetRole) apiError("NOT_MEMBER", { groupId: input.groupId, userId: input.newOwnerUserId });
+
+        await client.query(
+            "update group_members set role='GROUP_ADMIN' where group_id=$1 and user_id=$2",
+            [input.groupId, input.actorUserId]
+        );
+        await client.query(
+            "update group_members set role='GROUP_OWNER' where group_id=$1 and user_id=$2",
+            [input.groupId, input.newOwnerUserId]
+        );
+        await client.query("commit");
+    } catch (e) {
+        await client.query("rollback");
+        throw e;
+    } finally {
+        client.release();
+    }
+
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.actorUserId,
+        actorRole: "GROUP_OWNER",
+        eventType: "GROUP_OWNERSHIP_TRANSFERRED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { newOwnerUserId: input.newOwnerUserId }
+    });
+}
diff --git a/apps/web/lib/server/group-settings.ts b/apps/web/lib/server/group-settings.ts
new file mode 100644
index 0000000..ea0a035
--- /dev/null
+++ b/apps/web/lib/server/group-settings.ts
@@ -0,0 +1,32 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+import { requireGroupAdmin } from "@/lib/server/group-access";
+
+export async function getGroupSettings(groupId: number) {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select allow_member_tag_manage, join_policy from group_settings where group_id=$1",
+        [groupId]
+    );
+    return {
+        allowMemberTagManage: Boolean(rows[0]?.allow_member_tag_manage),
+        joinPolicy: String(rows[0]?.join_policy || "NOT_ACCEPTING") as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED"
+    };
+}
+
+export async function setGroupSettings(input: { userId: number; groupId: number; allowMemberTagManage: boolean; joinPolicy?: "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED" }) {
+    await requireGroupAdmin(input.userId, input.groupId);
+
+    const pool = getPool();
+    await pool.query(
+        `insert into group_settings(group_id, allow_member_tag_manage, join_policy)
+         values($1,$2,$3)
+         on conflict (group_id) do update
+         set allow_member_tag_manage=$2,
+             join_policy=$3,
+             updated_at=now()`,
+        [input.groupId, input.allowMemberTagManage, input.joinPolicy ?? "NOT_ACCEPTING"]
+    );
+}
diff --git a/apps/web/lib/server/groups.ts b/apps/web/lib/server/groups.ts
new file mode 100644
index 0000000..4795446
--- /dev/null
+++ b/apps/web/lib/server/groups.ts
@@ -0,0 +1,176 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import crypto from "node:crypto";
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+import type { Group } from "@/lib/shared/types";
+import { requireGroupAdmin, requireGroupOwner } from "@/lib/server/group-access";
+import { recordGroupAudit } from "@/lib/server/group-audit";
+
+function createInviteCode() {
+    return crypto.randomBytes(4).toString("hex").toUpperCase();
+}
+
+type GroupRow = {
+    id: number;
+    name: string;
+    role: "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER";
+};
+
+export async function listGroups(userId: number): Promise<Group[]> {
+    const pool = getPool();
+    const rows = (await pool.query<GroupRow>(
+        `select g.id, g.name, gm.role
+     from group_members gm
+     join groups g on g.id = gm.group_id
+     where gm.user_id = $1
+     order by g.created_at desc`,
+        [userId]
+    )).rows;
+
+    return rows.map((row: GroupRow) => ({ id: Number(row.id), name: row.name, role: row.role }));
+}
+
+export async function getActiveGroupId(userId: number): Promise<number | null> {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select data->>'activeGroupId' as active_group_id from user_settings where user_id=$1",
+        [userId]
+    );
+    const value = rows[0]?.active_group_id;
+    if (!value) return null;
+    const id = Number(value);
+    return Number.isFinite(id) ? id : null;
+}
+
+export async function setActiveGroupId(userId: number, groupId: number) {
+    const pool = getPool();
+    await pool.query(
+        `insert into user_settings(user_id, data)
+     values($1, jsonb_build_object('activeGroupId', $2::int))
+     on conflict (user_id) do update
+     set data = user_settings.data || jsonb_build_object('activeGroupId', $2::int),
+        updated_at = now()`,
+        [userId, groupId]
+    );
+}
+
+export async function setActiveGroupForUser(userId: number, groupId: number) {
+    const pool = getPool();
+    const { rowCount } = await pool.query(
+        "select 1 from group_members where group_id=$1 and user_id=$2",
+        [groupId, userId]
+    );
+    if (!rowCount) apiError("FORBIDDEN", { userId, groupId });
+    await setActiveGroupId(userId, groupId);
+}
+
+export async function createGroup(userId: number, name: string) {
+    const pool = getPool();
+    const inviteCode = createInviteCode();
+    const { rows } = await pool.query(
+        "insert into groups(name, invite_code, created_by) values($1,$2,$3) returning id, name, invite_code",
+        [name, inviteCode, userId]
+    );
+    const group = rows[0];
+    await pool.query(
+        "insert into group_members(group_id, user_id, role) values($1,$2,'GROUP_OWNER')",
+        [group.id, userId]
+    );
+    await pool.query(
+        "insert into group_settings(group_id, allow_member_tag_manage, join_policy) values($1,false,'NOT_ACCEPTING') on conflict (group_id) do nothing",
+        [group.id]
+    );
+    return { id: group.id, name: group.name, inviteCode: group.invite_code } as { id: number; name: string; inviteCode: string };
+}
+
+export async function renameGroup(input: { userId: number; groupId: number; name: string; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    const role = await requireGroupAdmin(input.userId, input.groupId);
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "update groups set name=$2 where id=$1 returning name",
+        [input.groupId, input.name]
+    );
+    if (!rows[0]) apiError("NOT_FOUND", { groupId: input.groupId });
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: role,
+        eventType: "GROUP_RENAMED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent,
+        metadata: { name: input.name }
+    });
+}
+
+export async function deleteGroup(input: { userId: number; groupId: number; requestId: string; ip?: string | null; userAgent?: string | null }) {
+    await requireGroupOwner(input.userId, input.groupId);
+    const pool = getPool();
+    await pool.query(
+        "delete from groups where id=$1",
+        [input.groupId]
+    );
+    await recordGroupAudit({
+        groupId: input.groupId,
+        actorUserId: input.userId,
+        actorRole: "GROUP_OWNER",
+        eventType: "GROUP_DELETED",
+        requestId: input.requestId,
+        ip: input.ip,
+        userAgent: input.userAgent
+    });
+}
+
+export async function joinGroup(userId: number, inviteCode: string) {
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select id, name from groups where invite_code=$1",
+        [inviteCode]
+    );
+    const group = rows[0];
+    if (!group)
+        apiError("INVALID_INVITE", { inviteCode });
+
+    const existing = await pool.query(
+        "select 1 from group_members where group_id=$1 and user_id=$2",
+        [group.id, userId]
+    );
+    if (existing.rowCount)
+        return { id: group.id, name: group.name } as { id: number; name: string };
+
+    const settings = await pool.query(
+        "select join_policy from group_settings where group_id=$1",
+        [group.id]
+    );
+    const joinPolicy = String(settings.rows[0]?.join_policy || "NOT_ACCEPTING") as "NOT_ACCEPTING" | "AUTO_ACCEPT" | "APPROVAL_REQUIRED";
+
+    if (joinPolicy === "NOT_ACCEPTING")
+        apiError("JOIN_NOT_ACCEPTING", { groupId: group.id, userId });
+
+    if (joinPolicy === "AUTO_ACCEPT") {
+        await pool.query(
+            "insert into group_members(group_id, user_id, role) values($1,$2,'MEMBER')",
+            [group.id, userId]
+        );
+        return { id: group.id, name: group.name } as { id: number; name: string };
+    }
+
+    await pool.query(
+        `insert into group_join_requests(group_id, user_id, status)
+         values($1,$2,'PENDING')
+         on conflict (group_id, user_id) where status='PENDING'
+         do update set updated_at=now()`,
+        [group.id, userId]
+    );
+    apiError("JOIN_PENDING", { groupId: group.id, userId });
+}
+
+export async function requireActiveGroup(userId: number): Promise<number> {
+    const activeGroupId = await getActiveGroupId(userId);
+    if (!activeGroupId) apiError("NO_ACTIVE_GROUP", { userId });
+    const groups = await listGroups(userId);
+    const isMember = groups.some(group => Number(group.id) === activeGroupId);
+    if (!isMember) apiError("FORBIDDEN", { userId, groupId: activeGroupId });
+    return activeGroupId;
+}
diff --git a/apps/web/lib/server/recurring-entries.ts b/apps/web/lib/server/recurring-entries.ts
new file mode 100644
index 0000000..1fca525
--- /dev/null
+++ b/apps/web/lib/server/recurring-entries.ts
@@ -0,0 +1,23 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import { createEntry, deleteEntry, listEntries, updateEntry, requireActiveGroup } from "@/lib/server/entries";
+import type { Entry } from "@/lib/shared/types";
+
+export { requireActiveGroup };
+
+export async function listRecurringEntries(groupId: number): Promise<Entry[]> {
+    const entries = await listEntries(groupId);
+    return entries.filter(entry => entry.isRecurring);
+}
+
+export async function createRecurringEntry(input: Parameters<typeof createEntry>[0]) {
+    return createEntry({ ...input, isRecurring: true });
+}
+
+export async function updateRecurringEntry(input: Parameters<typeof updateEntry>[0]) {
+    return updateEntry({ ...input, isRecurring: true });
+}
+
+export async function deleteRecurringEntry(input: { id: number; groupId: number }) {
+    return deleteEntry(input);
+}
diff --git a/apps/web/lib/server/request.ts b/apps/web/lib/server/request.ts
new file mode 100644
index 0000000..26ee301
--- /dev/null
+++ b/apps/web/lib/server/request.ts
@@ -0,0 +1,13 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import { headers } from "next/headers";
+import { createRequestId } from "@/lib/server/errors";
+
+export async function getRequestMeta() {
+    const headerStore = await headers();
+    return {
+        requestId: createRequestId(),
+        ip: headerStore.get("x-forwarded-for") || headerStore.get("x-real-ip"),
+        userAgent: headerStore.get("user-agent")
+    };
+}
diff --git a/apps/web/lib/server/session.ts b/apps/web/lib/server/session.ts
new file mode 100644
index 0000000..b7c8298
--- /dev/null
+++ b/apps/web/lib/server/session.ts
@@ -0,0 +1,35 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import { cookies } from "next/headers";
+import getPool from "@/lib/server/db";
+import { getSessionCookieName, hashToken } from "@/lib/server/auth";
+import { apiError } from "@/lib/server/errors";
+import type { User } from "@/lib/shared/types";
+
+export async function getSessionUser(): Promise<User | null> {
+    const cookieStore = await cookies();
+    const token = cookieStore.get(getSessionCookieName())?.value;
+    if (!token)
+        return null;
+
+    const pool = getPool();
+    const { rows } = await pool.query(
+        `select u.id, u.email, u.display_name
+     from sessions s
+     join users u on u.id = s.user_id
+     where s.token_hash = $1 and s.expires_at > now()`,
+        [hashToken(token)]
+    );
+
+    const user = rows[0];
+    if (!user)
+        return null;
+
+    return { id: user.id, email: user.email, displayName: user.display_name };
+}
+
+export async function requireSessionUser(): Promise<User> {
+    const user = await getSessionUser();
+    if (!user) apiError("UNAUTHORIZED");
+    return user;
+}
diff --git a/apps/web/lib/server/tags.ts b/apps/web/lib/server/tags.ts
new file mode 100644
index 0000000..24a3f30
--- /dev/null
+++ b/apps/web/lib/server/tags.ts
@@ -0,0 +1,152 @@
+if (process.env.NODE_ENV !== "test")
+    require("server-only");
+import getPool from "@/lib/server/db";
+import { apiError } from "@/lib/server/errors";
+import { getGroupRole, isAdminRole } from "@/lib/server/group-access";
+
+type TagRow = { id: number; name: string };
+type TagListRow = { name: string };
+type EntryTagsRow = { entry_id: number; tags: string[] };
+type BucketTagsRow = { bucket_id: number; tags: string[] };
+
+function normalizeTag(tag: string) {
+    return tag
+        .trim()
+        .replace(/^#/, "")
+        .replace(/\s+/g, "-")
+        .toLowerCase();
+}
+
+export function normalizeTags(tags: string[]) {
+    const normalized = tags.map(normalizeTag).filter(tag => tag.length > 0);
+    return Array.from(new Set(normalized));
+}
+
+export async function listGroupTags(groupId: number) {
+    const pool = getPool();
+    const rows = (await pool.query<TagListRow>(
+        "select name from tags where group_id=$1 order by name asc",
+        [groupId]
+    )).rows;
+    return rows.map((row: TagListRow) => String(row.name));
+}
+
+export async function canManageTags(userId: number, groupId: number) {
+    const role = await getGroupRole(userId, groupId);
+    if (isAdminRole(role)) return true;
+
+    const pool = getPool();
+    const { rows } = await pool.query(
+        "select allow_member_tag_manage from group_settings where group_id=$1",
+        [groupId]
+    );
+    return Boolean(rows[0]?.allow_member_tag_manage);
+}
+
+export async function deleteTagForGroup(input: { userId: number; groupId: number; name: string }) {
+    const allowed = await canManageTags(input.userId, input.groupId);
+    if (!allowed) apiError("FORBIDDEN", { userId: input.userId, groupId: input.groupId });
+    const pool = getPool();
+    await pool.query(
+        "delete from tags where group_id=$1 and lower(name)=lower($2)",
+        [input.groupId, input.name]
+    );
+}
+
+export async function ensureTagsForGroup(input: { userId: number; groupId: number; tags: string[] }) {
+    const tags = normalizeTags(input.tags);
+    if (!tags.length) return [] as number[];
+
+    const pool = getPool();
+    const rows = (await pool.query<TagRow>(
+        "select id, name from tags where group_id=$1 and lower(name) = any($2::text[])",
+        [input.groupId, tags]
+    )).rows;
+    const existing = new Map<string, number>();
+    rows.forEach((row: TagRow) => existing.set(String(row.name).toLowerCase(), Number(row.id)));
+
+    const missing = tags.filter(tag => !existing.has(tag));
+    if (missing.length) {
+        const allowed = await canManageTags(input.userId, input.groupId);
+        if (!allowed) apiError("FORBIDDEN", { userId: input.userId, groupId: input.groupId, missing });
+
+        const values = missing.map((_, idx) => `($1,$2,$${idx + 3})`).join(",");
+        const params = [input.groupId, input.userId, ...missing];
+        const insert = await pool.query<TagRow>(
+            `insert into tags(group_id, created_by, name) values ${values} returning id, name`,
+            params
+        );
+        insert.rows.forEach((row: TagRow) => existing.set(String(row.name).toLowerCase(), Number(row.id)));
+    }
+
+    return tags.map(tag => existing.get(tag)!).filter(Boolean);
+}
+
+export async function requireExistingTagsForGroup(input: { groupId: number; tags: string[] }) {
+    const tags = normalizeTags(input.tags);
+    if (!tags.length) return [] as number[];
+
+    const pool = getPool();
+    const rows = (await pool.query<TagRow>(
+        "select id, name from tags where group_id=$1 and lower(name) = any($2::text[])",
+        [input.groupId, tags]
+    )).rows;
+
+    const existing = new Map<string, number>();
+    rows.forEach((row: TagRow) => existing.set(String(row.name).toLowerCase(), Number(row.id)));
+    const missing = tags.filter(tag => !existing.has(tag));
+    if (missing.length) apiError("INVALID_TAGS", { groupId: input.groupId, missing });
+    return tags.map(tag => existing.get(tag)!).filter(Boolean);
+}
+
+export async function setEntryTags(input: { entryId: number; groupId: number; tagIds: number[] }) {
+    const pool = getPool();
+    await pool.query("delete from entry_tags where entry_id=$1", [input.entryId]);
+    if (!input.tagIds.length) return;
+
+    const values = input.tagIds.map((_, idx) => `($1,$${idx + 2})`).join(",");
+    const params = [input.entryId, ...input.tagIds];
+    await pool.query(`insert into entry_tags(entry_id, tag_id) values ${values}`, params);
+}
+
+export async function listTagsForEntries(input: { groupId: number; entryIds: number[] }) {
+    if (!input.entryIds.length) return new Map<number, string[]>();
+    const pool = getPool();
+    const rows = (await pool.query<EntryTagsRow>(
+        `select st.entry_id, array_agg(t.name order by t.name asc) as tags
+         from entry_tags st
+         join tags t on t.id = st.tag_id
+         where t.group_id=$1 and st.entry_id = any($2::bigint[])
+         group by st.entry_id`,
+        [input.groupId, input.entryIds]
+    )).rows;
+    const map = new Map<number, string[]>();
+    rows.forEach((row: EntryTagsRow) => map.set(Number(row.entry_id), (row.tags || []).map((tag: string) => String(tag))));
+    return map;
+}
+
+export async function setBucketTags(input: { bucketId: number; tagIds: number[] }) {
+    const pool = getPool();
+    await pool.query("delete from bucket_tags where bucket_id=$1", [input.bucketId]);
+    if (!input.tagIds.length) return;
+
+    const values = input.tagIds.map((_, idx) => `($1,$${idx + 2})`).join(",");
+    const params = [input.bucketId, ...input.tagIds];
+    await pool.query(`insert into bucket_tags(bucket_id, tag_id) values ${values}`, params);
+}
+
+export async function listTagsForBuckets(input: { groupId: number; bucketIds: number[] }) {
+    if (!input.bucketIds.length) return new Map<number, string[]>();
+    const pool = getPool();
+    const rows = (await pool.query<BucketTagsRow>(
+        `select bt.bucket_id, array_agg(t.name order by t.name asc) as tags
+         from bucket_tags bt
+         join tags t on t.id = bt.tag_id
+         where t.group_id=$1 and bt.bucket_id = any($2::bigint[])
+         group by bt.bucket_id`,
+        [input.groupId, input.bucketIds]
+    )).rows;
+    const map = new Map<number, string[]>();
+    rows.forEach((row: BucketTagsRow) => map.set(Number(row.bucket_id), (row.tags || []).map((tag: string) => String(tag))));
+    return map;
+}
diff --git a/apps/web/lib/session.ts b/apps/web/lib/session.ts
new file mode 100644
index 0000000..2234b9c
--- /dev/null
+++ b/apps/web/lib/session.ts
@@ -0,0 +1 @@
+export { };
diff --git a/apps/web/lib/shared/bucket-icons.ts b/apps/web/lib/shared/bucket-icons.ts
new file mode 100644
index 0000000..8367c45
--- /dev/null
+++ b/apps/web/lib/shared/bucket-icons.ts
@@ -0,0 +1,405 @@
+export type BucketIcon = { key: string; label: string; icon: string };
+export type BucketIconGroup = { key: string; label: string; items: BucketIcon[] };
+
+export const bucketIconGroups: BucketIconGroup[] = [
+    {
+        key: "core", label: "Core", items: [
+            { key: "none", label: "None", icon: "🚫" },
+            { key: "general", label: "General", icon: "🗂️" },
+            { key: "misc", label: "Misc", icon: "✨" },
+            { key: "other", label: "Other", icon: "📌" },
+            { key: "adjustment", label: "Adjustment", icon: "🧮" },
+            { key: "refund", label: "Refund", icon: "↩️" },
+            { key: "reimbursement", label: "Reimbursement", icon: "🧾" },
+            { key: "cash", label: "Cash", icon: "💵" },
+            { key: "transfer", label: "Transfer", icon: "🔄" },
+            { key: "emergency", label: "Emergency", icon: "🚨" },
+            { key: "goal", label: "Goal", icon: "🎯" },
+            { key: "notes", label: "Notes", icon: "📝" },
+        ]
+    },
+
+    {
+        key: "food_drink", label: "Food & Drink", items: [
+            { key: "food", label: "Food", icon: "🍔" },
+            { key: "groceries", label: "Groceries", icon: "🛒" },
+            { key: "coffee", label: "Coffee", icon: "☕" },
+            { key: "dining", label: "Dining", icon: "🍽️" },
+            { key: "snacks", label: "Snacks", icon: "🍿" },
+            { key: "tea", label: "Tea", icon: "🍵" },
+            { key: "breakfast", label: "Breakfast", icon: "🥞" },
+            { key: "lunch", label: "Lunch", icon: "🥪" },
+            { key: "dinner", label: "Dinner", icon: "🍛" },
+            { key: "dessert", label: "Dessert", icon: "🍰" },
+            { key: "fast-food", label: "Fast Food", icon: "🍟" },
+            { key: "pizza", label: "Pizza", icon: "🍕" },
+            { key: "sushi", label: "Sushi", icon: "🍣" },
+            { key: "bbq", label: "BBQ", icon: "🍖" },
+            { key: "takeout", label: "Takeout", icon: "🥡" },
+            { key: "delivery", label: "Delivery", icon: "🛵" },
+            { key: "meal-prep", label: "Meal Prep", icon: "🥗" },
+            { key: "ingredients", label: "Ingredients", icon: "🧄" },
+            { key: "farmers-market", label: "Farmer's Market", icon: "🥕" },
+            { key: "drinks", label: "Drinks", icon: "🥤" },
+            { key: "water", label: "Water", icon: "💧" },
+            { key: "alcohol", label: "Alcohol", icon: "🍺" },
+            { key: "cocktails", label: "Cocktails", icon: "🍸" },
+            { key: "wine", label: "Wine", icon: "🍷" },
+            { key: "protein", label: "Protein", icon: "🥩" },
+        ]
+    },
+
+    {
+        key: "home_housing", label: "Home & Housing", items: [
+            { key: "home", label: "Home", icon: "🏠" },
+            { key: "rent", label: "Rent", icon: "🏢" },
+            { key: "mortgage", label: "Mortgage", icon: "🏦" },
+            { key: "hoa", label: "HOA", icon: "🏘️" },
+            { key: "furniture", label: "Furniture", icon: "🛋️" },
+            { key: "appliances", label: "Appliances", icon: "🧺" },
+            { key: "decor", label: "Home Decor", icon: "🖼️" },
+            { key: "kitchen", label: "Kitchen", icon: "🍳" },
+            { key: "bathroom", label: "Bathroom", icon: "🛁" },
+            { key: "bedroom", label: "Bedroom", icon: "🛏️" },
+            { key: "moving", label: "Moving", icon: "📦" },
+            { key: "storage", label: "Storage Unit", icon: "🗄️" },
+            { key: "home-insurance", label: "Home Insurance", icon: "🛡️" },
+            { key: "security", label: "Security", icon: "🔐" },
+            { key: "smart-home", label: "Smart Home", icon: "🏡" },
+            { key: "mail", label: "Mail", icon: "📬" },
+        ]
+    },
+
+    {
+        key: "utilities_services", label: "Utilities & Services", items: [
+            { key: "bills", label: "Bills", icon: "🧾" },
+            { key: "utilities", label: "Utilities", icon: "💡" },
+            { key: "electricity", label: "Electricity", icon: "⚡" },
+            { key: "water-bill", label: "Water Bill", icon: "🚰" },
+            { key: "gas-utility", label: "Gas Utility", icon: "🔥" },
+            { key: "trash", label: "Trash", icon: "🗑️" },
+            { key: "internet", label: "Internet", icon: "📶" },
+            { key: "phone", label: "Phone", icon: "📱" },
+            { key: "mobile-data", label: "Mobile Data", icon: "📡" },
+            { key: "streaming", label: "Streaming", icon: "📺" },
+            { key: "subscriptions", label: "Subscriptions", icon: "🔁" },
+            { key: "cloud-storage", label: "Cloud Storage", icon: "☁️" },
+            { key: "security-monitoring", label: "Monitoring", icon: "📟" },
+            { key: "tv", label: "TV Service", icon: "📡" },
+            { key: "po-box", label: "PO Box", icon: "📮" },
+        ]
+    },
+
+    {
+        key: "transportation", label: "Transportation", items: [
+            { key: "car", label: "Transport", icon: "🚗" },
+            { key: "gas", label: "Gas", icon: "⛽" },
+            { key: "parking", label: "Parking", icon: "🅿️" },
+            { key: "bus", label: "Bus", icon: "🚌" },
+            { key: "train", label: "Train", icon: "🚆" },
+            { key: "bike", label: "Bike", icon: "🚲" },
+            { key: "rideshare", label: "Rideshare", icon: "🚕" },
+            { key: "taxi", label: "Taxi", icon: "🚖" },
+            { key: "public-transit", label: "Public Transit", icon: "🚇" },
+            { key: "tolls", label: "Tolls", icon: "🛣️" },
+            { key: "car-payment", label: "Car Payment", icon: "🚙" },
+            { key: "car-insurance", label: "Car Insurance", icon: "🛡️" },
+            { key: "car-maintenance", label: "Car Maintenance", icon: "🔧" },
+            { key: "car-wash", label: "Car Wash", icon: "🧼" },
+            { key: "ev-charging", label: "EV Charging", icon: "🔌" },
+            { key: "registration", label: "Registration", icon: "🪪" },
+            { key: "parking-ticket", label: "Parking Ticket", icon: "🎫" },
+            { key: "roadside", label: "Roadside", icon: "🛞" },
+            { key: "scooter", label: "Scooter", icon: "🛴" },
+            { key: "motorcycle", label: "Motorcycle", icon: "🏍️" },
+        ]
+    },
+
+    {
+        key: "travel", label: "Travel", items: [
+            { key: "travel", label: "Travel", icon: "✈️" },
+            { key: "hotel", label: "Hotel", icon: "🏨" },
+            { key: "vacation", label: "Vacation", icon: "🏝️" },
+            { key: "travel-gear", label: "Gear", icon: "🎒" },
+            { key: "flight", label: "Flights", icon: "🛫" },
+            { key: "car-rental", label: "Car Rental", icon: "🚘" },
+            { key: "lodging", label: "Lodging", icon: "🛌" },
+            { key: "camping", label: "Camping", icon: "🏕️" },
+            { key: "road-trip", label: "Road Trip", icon: "🗺️" },
+            { key: "cruise", label: "Cruise", icon: "🛳️" },
+            { key: "souvenirs", label: "Souvenirs", icon: "🧿" },
+            { key: "tours", label: "Tours", icon: "🧭" },
+            { key: "passport", label: "Passport", icon: "🛂" },
+            { key: "travel-insurance", label: "Travel Insurance", icon: "🛡️" },
+            { key: "currency-exchange", label: "Currency Exchange", icon: "💱" },
+            { key: "baggage", label: "Baggage", icon: "🧳" },
+        ]
+    },
+
+    {
+        key: "shopping_retail", label: "Shopping & Retail", items: [
+            { key: "shopping", label: "Shopping", icon: "🛍️" },
+            { key: "online-shopping", label: "Online Shopping", icon: "🛒" },
+            { key: "amazon", label: "Amazon", icon: "📦" },
+            { key: "costco", label: "Warehouse", icon: "🏬" },
+            { key: "marketplace", label: "Marketplace", icon: "🧾" },
+            { key: "gifts", label: "Gift Shopping", icon: "🎁" },
+            { key: "returns", label: "Returns", icon: "↩️" },
+            { key: "shipping", label: "Shipping", icon: "🚚" },
+            { key: "subscriptions-box", label: "Subscription Box", icon: "📦" },
+            { key: "electronics-accessories", label: "Accessories", icon: "🎧" },
+            { key: "stationery", label: "Stationery", icon: "📎" },
+            { key: "crafts", label: "Crafts", icon: "🧵" },
+            { key: "photo-print", label: "Photo Print", icon: "🖨️" },
+            { key: "sports-gear", label: "Sports Gear", icon: "🎽" },
+            { key: "outdoor-gear", label: "Outdoor Gear", icon: "🧗" },
+        ]
+    },
+
+    {
+        key: "clothing", label: "Clothing & Accessories", items: [
+            { key: "clothes", label: "Clothes", icon: "👕" },
+            { key: "shoes", label: "Shoes", icon: "👟" },
+            { key: "accessories", label: "Accessories", icon: "👜" },
+            { key: "jewelry", label: "Jewelry", icon: "💍" },
+            { key: "watches", label: "Watches", icon: "⌚" },
+            { key: "bags", label: "Bags", icon: "🧳" },
+            { key: "uniform", label: "Uniform", icon: "🥼" },
+            { key: "tailoring", label: "Tailoring", icon: "🪡" },
+            { key: "dry-cleaning", label: "Dry Cleaning", icon: "🧺" },
+            { key: "sportswear", label: "Sportswear", icon: "🎽" },
+            { key: "winter-gear", label: "Winter Gear", icon: "🧣" },
+            { key: "sunglasses", label: "Sunglasses", icon: "🕶️" },
+        ]
+    },
+
+    {
+        key: "health_medical", label: "Health & Medical", items: [
+            { key: "health", label: "Health", icon: "🩺" },
+            { key: "medical", label: "Medical", icon: "🏥" },
+            { key: "pharmacy", label: "Pharmacy", icon: "💊" },
+            { key: "dentist", label: "Dentist", icon: "🦷" },
+            { key: "vision", label: "Vision", icon: "👓" },
+            { key: "therapy", label: "Therapy", icon: "🧠" },
+            { key: "insurance", label: "Insurance", icon: "🛡️" },
+            { key: "checkup", label: "Checkup", icon: "🩻" },
+            { key: "labs", label: "Lab Tests", icon: "🧪" },
+            { key: "urgent-care", label: "Urgent Care", icon: "🚑" },
+            { key: "vaccines", label: "Vaccines", icon: "💉" },
+            { key: "medical-supplies", label: "Medical Supplies", icon: "🩹" },
+            { key: "mental-health", label: "Mental Health", icon: "🧘‍♂️" },
+            { key: "wellness", label: "Wellness", icon: "🌱" },
+        ]
+    },
+
+    {
+        key: "fitness_sports", label: "Fitness & Sports", items: [
+            { key: "fitness", label: "Fitness", icon: "🏋️" },
+            { key: "gym", label: "Gym", icon: "🏋️‍♀️" },
+            { key: "yoga", label: "Yoga", icon: "🧘" },
+            { key: "running", label: "Running", icon: "🏃" },
+            { key: "cycling", label: "Cycling", icon: "🚴" },
+            { key: "swimming", label: "Swimming", icon: "🏊" },
+            { key: "sports", label: "Sports", icon: "🏅" },
+            { key: "team-sports", label: "Team Sports", icon: "⚽" },
+            { key: "martial-arts", label: "Martial Arts", icon: "🥋" },
+            { key: "hiking", label: "Hiking", icon: "🥾" },
+            { key: "training", label: "Training", icon: "📈" },
+            { key: "race-fees", label: "Race Fees", icon: "🏁" },
+        ]
+    },
+
+    {
+        key: "personal_care", label: "Personal Care", items: [
+            { key: "beauty", label: "Beauty", icon: "💄" },
+            { key: "haircut", label: "Haircut", icon: "💇" },
+            { key: "skincare", label: "Skincare", icon: "🧴" },
+            { key: "toiletries", label: "Toiletries", icon: "🧼" },
+            { key: "spa", label: "Spa", icon: "💆" },
+            { key: "cosmetics", label: "Cosmetics", icon: "🧿" },
+            { key: "self-care", label: "Self Care", icon: "🕯️" },
+            { key: "nails", label: "Nails", icon: "💅" },
+            { key: "barber", label: "Barber", icon: "💈" },
+            { key: "fragrance", label: "Fragrance", icon: "🧴" },
+            { key: "contacts", label: "Contacts", icon: "👁️" },
+            { key: "massage", label: "Massage", icon: "🤲" },
+        ]
+    },
+
+    {
+        key: "entertainment", label: "Entertainment & Leisure", items: [
+            { key: "fun", label: "Fun", icon: "🎉" },
+            { key: "games", label: "Games", icon: "🎮" },
+            { key: "movies", label: "Movies", icon: "🎬" },
+            { key: "music", label: "Music", icon: "🎵" },
+            { key: "books", label: "Books", icon: "📚" },
+            { key: "events", label: "Events", icon: "🎟️" },
+            { key: "concerts", label: "Concerts", icon: "🎤" },
+            { key: "streaming-ent", label: "Streaming", icon: "📺" },
+            { key: "arcade", label: "Arcade", icon: "🕹️" },
+            { key: "board-games", label: "Board Games", icon: "🎲" },
+            { key: "hobbies", label: "Hobbies", icon: "🎨" },
+            { key: "sports-events", label: "Sports Events", icon: "🏟️" },
+            { key: "night-out", label: "Night Out", icon: "🌙" },
+            { key: "date-night", label: "Date Night", icon: "💘" },
+            { key: "museum", label: "Museum", icon: "🏛️" },
+            { key: "theme-park", label: "Theme Park", icon: "🎢" },
+        ]
+    },
+
+    {
+        key: "kids_family", label: "Kids & Family", items: [
+            { key: "kids", label: "Kids", icon: "🧸" },
+            { key: "baby", label: "Baby", icon: "👶" },
+            { key: "childcare", label: "Childcare", icon: "🧑‍🍼" },
+            { key: "school", label: "School", icon: "🏫" },
+            { key: "school-supplies", label: "School Supplies", icon: "✏️" },
+            { key: "toys", label: "Toys", icon: "🧩" },
+            { key: "birthday", label: "Birthday", icon: "🎂" },
+            { key: "family", label: "Family", icon: "👨‍👩‍👧‍👦" },
+            { key: "activities", label: "Activities", icon: "🏀" },
+            { key: "lessons", label: "Lessons", icon: "🎻" },
+            { key: "allowance", label: "Allowance", icon: "💵" },
+            { key: "kids-clothes", label: "Kids Clothes", icon: "🧒" },
+            { key: "kids-health", label: "Kids Health", icon: "🩺" },
+        ]
+    },
+
+    {
+        key: "pets", label: "Pets", items: [
+            { key: "pets", label: "Pets", icon: "🐶" },
+            { key: "pet-food", label: "Pet Food", icon: "🥫" },
+            { key: "vet", label: "Vet", icon: "🐾" },
+            { key: "pet-grooming", label: "Pet Grooming", icon: "🛁" },
+            { key: "pet-toys", label: "Pet Toys", icon: "🦴" },
+            { key: "pet-supplies", label: "Pet Supplies", icon: "🧻" },
+            { key: "pet-insurance", label: "Pet Insurance", icon: "🛡️" },
+            { key: "cat", label: "Cat", icon: "🐱" },
+            { key: "dog", label: "Dog", icon: "🐕" },
+            { key: "training-pet", label: "Training", icon: "🦮" },
+            { key: "pet-sitting", label: "Pet Sitting", icon: "🏠" },
+            { key: "pet-walks", label: "Dog Walks", icon: "🦴" },
+        ]
+    },
+
+    {
+        key: "education_learning", label: "Education & Learning", items: [
+            { key: "education", label: "Education", icon: "🎓" },
+            { key: "courses", label: "Courses", icon: "📘" },
+            { key: "tuition", label: "Tuition", icon: "🏫" },
+            { key: "books-edu", label: "Textbooks", icon: "📚" },
+            { key: "supplies-edu", label: "Supplies", icon: "🖊️" },
+            { key: "certifications", label: "Certifications", icon: "📜" },
+            { key: "workshops", label: "Workshops", icon: "🛠️" },
+            { key: "language", label: "Language", icon: "🗣️" },
+            { key: "online-learning", label: "Online Learning", icon: "💻" },
+            { key: "subscriptions-edu", label: "Learning Subs", icon: "🧾" },
+            { key: "exam-fees", label: "Exam Fees", icon: "🧪" },
+            { key: "library", label: "Library", icon: "🏛️" },
+        ]
+    },
+
+    {
+        key: "work_business", label: "Work & Business", items: [
+            { key: "work", label: "Work", icon: "💼" },
+            { key: "office", label: "Office", icon: "🏢" },
+            { key: "office-supplies", label: "Office Supplies", icon: "🗂️" },
+            { key: "coworking", label: "Coworking", icon: "🧑‍💻" },
+            { key: "software", label: "Software", icon: "💾" },
+            { key: "hardware", label: "Hardware", icon: "🔧" },
+            { key: "electronics", label: "Electronics", icon: "💻" },
+            { key: "business-travel", label: "Business Travel", icon: "🧳" },
+            { key: "meals-work", label: "Work Meals", icon: "🥪" },
+            { key: "client", label: "Client", icon: "🤝" },
+            { key: "marketing", label: "Marketing", icon: "📣" },
+            { key: "ads", label: "Ads", icon: "📢" },
+            { key: "domain", label: "Domain", icon: "🌐" },
+            { key: "hosting", label: "Hosting", icon: "🖥️" },
+            { key: "printing", label: "Printing", icon: "🖨️" },
+        ]
+    },
+
+    {
+        key: "finance_admin", label: "Finance & Admin", items: [
+            { key: "bank", label: "Bank", icon: "🏛️" },
+            { key: "taxes", label: "Taxes", icon: "🧮" },
+            { key: "savings", label: "Savings", icon: "💰" },
+            { key: "investing", label: "Investing", icon: "📈" },
+            { key: "fees", label: "Fees", icon: "💳" },
+            { key: "income", label: "Income", icon: "💵" },
+            { key: "salary", label: "Salary", icon: "💼" },
+            { key: "bonus", label: "Bonus", icon: "🎁" },
+            { key: "interest", label: "Interest", icon: "📊" },
+            { key: "dividends", label: "Dividends", icon: "🪙" },
+            { key: "credit-card", label: "Credit Card", icon: "💳" },
+            { key: "loan", label: "Loan", icon: "🏦" },
+            { key: "mortgage-extra", label: "Mortgage Extra", icon: "🏠" },
+            { key: "retirement", label: "Retirement", icon: "🧓" },
+            { key: "budgeting", label: "Budgeting", icon: "🧠" },
+            { key: "accounting", label: "Accounting", icon: "📒" },
+            { key: "legal", label: "Legal", icon: "⚖️" },
+            { key: "government", label: "Government", icon: "🏛️" },
+        ]
+    },
+
+    {
+        key: "giving_gifts", label: "Giving & Gifts", items: [
+            { key: "gift", label: "Gifts", icon: "🎁" },
+            { key: "charity", label: "Charity", icon: "🤝" },
+            { key: "donation", label: "Donation", icon: "💝" },
+            { key: "volunteering", label: "Volunteering", icon: "🙌" },
+            { key: "fundraiser", label: "Fundraiser", icon: "🎗️" },
+            { key: "tips", label: "Tips", icon: "🙏" },
+            { key: "wedding", label: "Wedding", icon: "💍" },
+            { key: "anniversary", label: "Anniversary", icon: "💞" },
+            { key: "holiday", label: "Holiday", icon: "🎄" },
+            { key: "cards", label: "Cards", icon: "💌" },
+        ]
+    },
+
+    {
+        key: "maintenance_diy", label: "Maintenance & DIY", items: [
+            { key: "tools", label: "Tools", icon: "🧰" },
+            { key: "garden", label: "Garden", icon: "🌿" },
+            { key: "cleaning", label: "Cleaning", icon: "🧹" },
+            { key: "laundry", label: "Laundry", icon: "🧺" },
+            { key: "home-improvement", label: "Home Improvement", icon: "🪚" },
+            { key: "plumbing", label: "Plumbing", icon: "🚽" },
+            { key: "electrical", label: "Electrical", icon: "🔌" },
+            { key: "paint", label: "Paint", icon: "🎨" },
+            { key: "hardware-store", label: "Hardware Store", icon: "🏪" },
+            { key: "yard", label: "Yard", icon: "🌳" },
+            { key: "pest-control", label: "Pest Control", icon: "🪳" },
+            { key: "repairs-home", label: "Repairs", icon: "🛠️" },
+            { key: "contractor", label: "Contractor", icon: "👷" },
+            { key: "tools-rental", label: "Tool Rental", icon: "🪝" },
+        ]
+    },
+
+    {
+        key: "digital", label: "Digital & Subscriptions", items: [
+            { key: "apps", label: "Apps", icon: "📲" },
+            { key: "ai-tools", label: "AI Tools", icon: "🤖" },
+            { key: "productivity", label: "Productivity", icon: "✅" },
+            { key: "software-license", label: "Software License", icon: "🪪" },
+            { key: "developer-tools", label: "Developer Tools", icon: "🧑‍💻" },
+            { key: "vpn", label: "VPN", icon: "🛡️" },
+            { key: "antivirus", label: "Antivirus", icon: "🦠" },
+            { key: "password-manager", label: "Password Manager", icon: "🔑" },
+            { key: "backup", label: "Backup", icon: "💾" },
+            { key: "email-service", label: "Email Service", icon: "✉️" },
+            { key: "website-tools", label: "Website Tools", icon: "🌐" },
+            { key: "storage-digital", label: "Digital Storage", icon: "🗄️" },
+            { key: "in-app-purchases", label: "In-App Purchases", icon: "🧩" },
+            { key: "digital-goods", label: "Digital Goods", icon: "🧾" },
+            { key: "ebooks", label: "eBooks", icon: "📖" },
+            { key: "music-subscription", label: "Music Subscription", icon: "🎧" },
+        ]
+    },
+];
+
+export const bucketIcons: BucketIcon[] = bucketIconGroups.flatMap(g => g.items);
+
+export const bucketIconByKey: Record<string, BucketIcon> = Object.fromEntries(
+    bucketIcons.map(i => [i.key, i])
+);
diff --git a/apps/web/lib/shared/bucket-usage.ts b/apps/web/lib/shared/bucket-usage.ts
new file mode 100644
index 0000000..5ee6278
--- /dev/null
+++ b/apps/web/lib/shared/bucket-usage.ts
@@ -0,0 +1,76 @@
+export type BucketUsageBucket = {
+    tags: string[];
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    windowDays: number;
+};
+
+export type BucketUsageEntry = {
+    amountDollars: number;
+    occurredAt: string | Date;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    tags: string[];
+    isRecurring: boolean;
+    entryType?: "SPENDING" | "INCOME";
+};
+
+const MS_PER_DAY = 24 * 60 * 60 * 1000;
+
+function toDateOnly(value: string | Date) {
+    if (value instanceof Date) {
+        return new Date(Date.UTC(value.getUTCFullYear(), value.getUTCMonth(), value.getUTCDate()));
+    }
+    if (!value) return null;
+    const parsed = new Date(`${value}T00:00:00Z`);
+    if (Number.isNaN(parsed.getTime())) return null;
+    return parsed;
+}
+
+function daysBetween(today: Date, occurred: Date) {
+    return Math.floor((today.getTime() - occurred.getTime()) / MS_PER_DAY);
+}
+
+function hasAllTags(bucketTags: string[], entryTags: string[]) {
+    if (!bucketTags.length) return true;
+    if (!entryTags.length) return false;
+    const entrySet = new Set(entryTags.map(tag => tag.toLowerCase()));
+    return bucketTags.every(tag => entrySet.has(tag.toLowerCase()));
+}
+
+export function calculateBucketUsage(bucket: BucketUsageBucket, entries: BucketUsageEntry[], today: string | Date) {
+    const windowDays = Number(bucket.windowDays || 0);
+    if (!Number.isFinite(windowDays) || windowDays <= 0)
+        return { totalUsage: 0, matchedCount: 0 };
+
+    const todayDate = toDateOnly(today);
+    if (!todayDate) return { totalUsage: 0, matchedCount: 0 };
+
+    const bucketNecessity = bucket.necessity;
+    let totalUsage = 0;
+    let matchedCount = 0;
+
+    entries.forEach(entry => {
+        if (entry.entryType && entry.entryType !== "SPENDING") return;
+        if (entry.isRecurring) return;
+        if (!hasAllTags(bucket.tags || [], entry.tags || [])) return;
+
+        const occurred = toDateOnly(entry.occurredAt);
+        if (!occurred) return;
+        const diffDays = daysBetween(todayDate, occurred);
+        if (diffDays < 0 || diffDays > windowDays - 1) return;
+
+        const entryNecessity = entry.necessity;
+        if (bucketNecessity !== "BOTH") {
+            if (entryNecessity === "BOTH") {
+                totalUsage += entry.amountDollars / 2;
+                matchedCount += 1;
+                return;
+            }
+            if (entryNecessity !== bucketNecessity) return;
+        }
+
+        totalUsage += entry.amountDollars;
+        matchedCount += 1;
+    });
+
+    return { totalUsage, matchedCount };
+}
diff --git a/apps/web/lib/shared/types.ts b/apps/web/lib/shared/types.ts
new file mode 100644
index 0000000..cee6355
--- /dev/null
+++ b/apps/web/lib/shared/types.ts
@@ -0,0 +1,32 @@
+export type User = {
+    id: number;
+    email: string;
+    displayName: string | null;
+};
+
+export type Group = {
+    id: number;
+    name: string;
+    role: "MEMBER" | "GROUP_ADMIN" | "GROUP_OWNER";
+};
+
+export type Entry = {
+    id: number;
+    entryType: "SPENDING" | "INCOME";
+    amountDollars: number;
+    occurredAt: string;
+    necessity: "NECESSARY" | "BOTH" | "UNNECESSARY";
+    purchaseType: string;
+    notes: string | null;
+    receiptId: number | null;
+    bucketId: number | null;
+    tags: string[];
+    isRecurring: boolean;
+    frequency: "DAILY" | "WEEKLY" | "BIWEEKLY" | "MONTHLY" | "QUARTERLY" | "YEARLY" | null;
+    intervalCount: number;
+    endCondition: "NEVER" | "AFTER_COUNT" | "BY_DATE" | null;
+    endCount: number | null;
+    endDate: string | null;
+    nextRunAt: string | null;
+    lastExecutedAt: string | null;
+};
diff --git a/apps/web/lib/spendings.ts b/apps/web/lib/spendings.ts
new file mode 100644
index 0000000..2234b9c
--- /dev/null
+++ b/apps/web/lib/spendings.ts
@@ -0,0 +1 @@
+export { };
diff --git a/apps/web/next-env.d.ts b/apps/web/next-env.d.ts
new file mode 100644
index 0000000..c4b7818
--- /dev/null
+++ b/apps/web/next-env.d.ts
@@ -0,0 +1,6 @@
+/// <reference types="next" />
+/// <reference types="next/image-types/global" />
+import "./.next/dev/types/routes.d.ts";
+
+// NOTE: This file should not be edited
+// see https://nextjs.org/docs/app/api-reference/config/typescript for more information.
diff --git a/apps/web/next.config.mjs b/apps/web/next.config.mjs
new file mode 100644
index 0000000..ff8b4c5
--- /dev/null
+++ b/apps/web/next.config.mjs
@@ -0,0 +1 @@
+export default {};
diff --git a/apps/web/package.json b/apps/web/package.json
new file mode 100644
index 0000000..8486cb4
--- /dev/null
+++ b/apps/web/package.json
@@ -0,0 +1,39 @@
+{
+  "name": "@fiddy/web",
+  "private": true,
+  "version": "0.0.0",
+  "scripts": {
+    "dev": "next dev",
+    "build": "next build",
+    "start": "next start",
+    "lint": "next lint && node scripts/check-no-group-id-routes.cjs",
+    "test": "node __tests__/run-tests.cjs",
+    "pretest:ui": "npm --prefix ../.. --workspace @fiddy/db run test:ui-seed",
+    "test:ui": "playwright test"
+  },
+  "dependencies": {
+    "bcryptjs": "^2.4.3",
+    "next": "^16.1.6",
+    "pg": "^8.13.0",
+    "react": "18.3.1",
+    "react-dom": "18.3.1"
+  },
+  "devDependencies": {
+    "@playwright/test": "^1.58.2",
+    "@types/bcryptjs": "^2.4.6",
+    "@types/node": "^20.14.12",
+    "@types/pg": "^8.11.10",
+    "@types/react": "^18.3.3",
+    "@types/react-dom": "^18.3.0",
+    "autoprefixer": "^10.4.19",
+    "dotenv": "^16.4.5",
+    "eslint": "^9.39.2",
+    "eslint-config-next": "^16.1.6",
+    "playwright": "^1.49.1",
+    "postcss": "^8.4.39",
+    "server-only": "^0.0.1",
+    "tailwindcss": "^3.4.7",
+    "tsx": "^4.19.2",
+    "typescript": "^5.5.4"
+  }
+}
diff --git a/apps/web/playwright.config.ts b/apps/web/playwright.config.ts
new file mode 100644
index 0000000..48b6e82
--- /dev/null
+++ b/apps/web/playwright.config.ts
@@ -0,0 +1,17 @@
+import { defineConfig } from "@playwright/test";
+
+export default defineConfig({
+    testDir: "./e2e",
+    fullyParallel: true,
+    retries: 0,
+    use: {
+        baseURL: process.env.APP_ORIGIN || "http://localhost:3000",
+        trace: "on-first-retry"
+    },
+    webServer: {
+        command: "npm run dev -- --port 3000",
+        url: process.env.APP_ORIGIN || "http://localhost:3000",
+        reuseExistingServer: true,
+        timeout: 120 * 1000
+    }
+});
diff --git a/apps/web/postcss.config.js b/apps/web/postcss.config.js
new file mode 100644
index 0000000..cce4985
--- /dev/null
+++ b/apps/web/postcss.config.js
@@ -0,0 +1 @@
+module.exports = { plugins: { tailwindcss: {}, autoprefixer: {} } };
diff --git a/apps/web/public/icons/icon-48.png b/apps/web/public/icons/icon-48.png
new file mode 100644
index 0000000000000000000000000000000000000000..40aa72e2fe16506e03feb98f46954c81c4737719
GIT binary patch
literal 2291
zcmV<P2n_d$P)<h;3K|Lk000e1NJLTq001xm001xu1^@s6R|5Hm000QONkl<Zc-rlm
zdvI0N6~=#ipK~uHAqfz|qhe_5SbP?h84*PhYDJ3E;<HG_s@0C#R%<&>9keZuXj^N?
z$5^elc53Zd9cQ%dRBb_Us1^l*1i~YLfK7nB2zlPuIeYKbKhC)~!O}5-@CP$FGdpu~
z&pG$3Z|(K1^{sW4b51yp56y9Y3;`GdFa+Qz4>_IzIOotx;hZZhr4%+k?|Yw(uZavU
zWOX!kKq-YW2H*F4jTJ#Fb@<&9LB-bw3y3~a&nu;P=C^-f`ix7sXYmqhw`}9q@BD!2
zGcM(YKfTNcYuEAR%dcVf+$(u+^%`D!<u#_wxRkr@xu0AR6aa`sD<6&ncBgYr2C}TR
zA|jH>WaRu=Uy)6lx5!T({DoXJYpy)<*i*7)Yn?2-@iv(?XTH4gkGEyzs`q5}W%K2#
z>u!?jjkPj+?v=7`Lyd@tSYt%Q9d`BCo+Ad(-P0p;=P!_SIwJ!)zIyFVvigIyVyqSC
zjI7ub%6+Q>Nd-<Cd#pUOK9p3@e|wIY#0rJAj#N4w5!PA6hTsfX1I}QA9APeZ$aB^@
z##WBT(;5+BUzcM`izDHIbx_mj2(0uw!}&+b0c&mi3PF^np);iKYs1h`TwKKP1iZg|
z6)WC(m!{TssyA)p;YXk4x@*41C9^JI(HCLCX@<?Mj<TfUH}et&Zm7W~v4}*eQ)|k~
zO3~Uw92h6Gq%5sz$APra)NM%XB35qrh>Pbf;^}99$HZ}(Me`=|@>2_$@&&`=Pdv!n
z`8Tj_#~u>C&tK|7mhTP_6vp-6Ccpp2gVq|YHG4j;XG8TydQv^06*xy_k&0e!4W%QC
z*|u>5kN)s(est#*EWDx$($&yi4K~Gvr;g^%g;ROyuMJ%Ljq7=2=~5n;GZWBQYw@%m
z+$?0R6>F_@b$844H{UM9MopCRai5n{&$&Qa4jh!uR8Fe*re$4yS~fNY^7@+p$b>U4
zmX&WlF4FOU1Z!tXu;w%|^}iIe{Z<LyEtlMi@gjTX$m-XxlG2JQnL7PT^4{t-A|hgp
z8C(*J2wH0v-gq0!mapVj4=v%ktFOTKd~!L9wGQ6~_%=gnQt|5Z&+x5zRm?hXKe?@M
z;3ot8s=Lt@SEE1sF#d`6kkD;pt5-68awGTO{yElf+QpR%7O}N%J6h{QD)~`yz&VHK
zd3?COhJU}mmOuXfX;!X!mlyy1D%os~bT*_X70{ImNC&X7u7R4(wcK)f3E`eqDBoeS
zo!GIrVA|fsZuuUr=>u%W$CCtR#}2MKFUQOa&ZK<gSf2Rxb10?guRzfK@jgJ^j-5<9
z_Z;@`Z|1dEUZl9VD9Se0L;J%SSyIG=QDtO0yEu7lhDqb=NtkAm$sQ7_6@S;AB*tHa
zfA(W|V@|=Bki;+_-=sOIGR1_l4#reYWbfX6kzra5E{Thai>a&I$+=U{;)Yx9;BS9_
zivw+K+`nWAiR3U+fkkVNwzdx18yZ;rFqp0selh?Oh<O?1UL-r_QgVqCDcM(sb3RUl
z<cM~*?8uQpQ8~J5Ksw1Eh;R$Tkhk7k&e!K(&SjTeOmlM!>2wN|LLoS7@%@Q7&Y``>
z5L!pp8mx7oJe)IVn*tZoIqCa_n$aGFOgg!N6)RV8`s7Ik!8f>R)H#yLB&k%2Wy{{d
zNyH7UHO|^dPK)52U`$kzt#w!zkvx*y(ktGi2@ydMjIorDC}rwdQ&_vchQ_95CX63f
z5RHSh10YUND5|O^QeWRdM@I(`_XF1AL=bTW0xG2tCx!kXU%@55mVd@tM|<afa+xd#
z+77a5^VR|Y&+`Up2jahi5ClQ|ze1^K#RyTT=rs1UASe})QfnXI_hUeUpwP}CD25jm
z)058OtnJm;gRg}mk2)t<W3bkuwTg|Eg6H$+c``b2_?}N=a}#^_?Z?-G6QcW-pkk3%
zS~`N#veH;*9TNZ&w}%#EEzVg$<E+D22O^QY6W0fn!%z6^+`Ws?FXHOE7Gp}rp^2nN
zXoai+oF!L&63tKE3t{Hi01y$ZwfIpV5qmk`|Mtp9XCv>62uf=@Iy&hw!grs1iEXL^
z8$x>kISUyB=@5*AO?x5RWl4C)prwowWmK7sv2l1PD71tsHa;SzlZd>Y=hNES#Hr`c
zp;juG>}7fGLdVQeA@wbWu1-UDm!Z2ezz-eDQv;fG3~UFSV5~)g02B8EeM83P!%Aty
zxx$Wl2rVgxpM?Wi%a(==wI2r<J0hwt4xA`(f;c;%S<S%u0iv)l)<$F&DWpeZO%zJ;
z=p@Q9U`)WM(UsJ%TSjL?Gs_N^aLqqU_*ZHaiIM~v&&Le&$*Kf_=Yf|vb~^xIjHR=y
zom?)!SzE|>3I!URjXa;P2?z`?E}_C}=EI*apm@eNu|;FRS;CkrP9O*sUUv&#Yb_*h
zJ_eOIZ=?uiWu@eDxq{@)=X+-zPF#T>3WY<kCS=_B6VT0#bSzsMfpfwzm1mAZX-N1U
zd$Zk$@&_M4!uQDJvIyX5FPgyFsMNcd1J1cVeXR77KHinlmE##vUV$+t;zytRmC_Nf
z4sOTu22l$s713nMnP(7&A=`KFrlP!@APDe%FET<DB9Spl0ixm%ibAOn)Z$3`9?67<
zwFYBsZ@-G-U`Hn<CB>X}%H&v5>!SytwZd4-q^gPB@$H-W*+Y*oZQ3*{MvaUc4;ME+
zQOxJPE^(MRXX9zxC#th^h;yK#XFGd(*tPQ`e)_<DobZ_m7-R9gPY2Mi*=W8f0o?oJ
zr9Aum3xr{aRx0njL%RR}`Rwq7>T|A04oh;!tvB(|lEu+(<~7z}4tMikShHy>HMN^D
zp~=V0A=3+$|4e$NtolScE`Sj56FyVUIGwYnoL-P4$7DJ!abNIh68A`tNE{AqSa?L^
z^(dU=u&P&mVkDTC*8g9k<eATaI<Z0dePHM}vLOIN0EPez0XXgf{1<$w_4#y4V!QwV
N002ovPDHLkV1l5AV{`xj

literal 0
HcmV?d00001

diff --git a/apps/web/public/icons/navbar-settings.png b/apps/web/public/icons/navbar-settings.png
new file mode 100644
index 0000000000000000000000000000000000000000..9e2c1e09f858541eb866bfaf89f0e90db74d16b1
GIT binary patch
literal 30707
zcmdQ~<x?DAu*D%rumpE^2_D?t0|a+>cXuava0u@1us8&FcPF?mvMg_Z^*+Bp;C-5|
z+M1fZGktHLKIe3_ijp)MG66Ca6cn1QjD#8#6f`7+hC)JsT=ZPZEuf%0J7pzAe|W85
z_ITz{X}JU6d)g|$D{gjIF_BY!5jFc2I(CDh@J-vONEUssf8>*b6GDnzNdF;G+$Rc3
z3>e9zFc&@9s;RCN-_EYeEANl?wn_&LU@cWK(7QVK`)izqWocJuXQ$F@u4{lazG;|_
zO@(=Qv>0?}FGkB^qYHI4t0;3zwFG8y0u<yIb9sBnrGy)*Wl`;a!}N71NXXm*U0#x|
zV*{%K2^SFxAYlcX2qaV^41$FJk8Xf0C*!}r|9`CHs4u;~7tXU6&lCewV(49}uvv^T
zUajrJiz0+Qgp4c*rsj*zhw;+}$&8V*vPcELTlfC^`T>23is!CZ3up)1Jnq-)w@vRD
z^cb?)w;$b{il0JuJ?L%lB0jVdGU)H@HT2#B)=tjLtZfD-*D)3mjHu}XOOY}Ry}1By
zTf=r69oXyxi-%OS`ED@i?K?fHa=%Kguc(3k0)NqD+qx#h0bNnHbzQ;X!_=iTw7h3w
z2kk(5;N;iK<<v=GfNrb9K^w0AK)P-#)+l?GR?U7MZSI&XEeWDXa`79dNw14##9=2P
z_x;<B;q<cohU|Rm<N31lj_*#&pKFgpdm(_%zc0HijMg?tgF#hw9q9nC(Vg2Aju{hc
zXG~L6DG^4imW>?00q5>LF4hyi86O{#W!su3?{0&-(MX|JS)uorI;X*7!sr7k;OwPl
zif^tTg`@vL{@o$1kOx4DT78+h&F)C>;{h7{<|}LjtQ9P_w&6f7!6Q9)`UiV8%D)Z9
zA#wV6OQQN4An1!1q384Rwfp>fXLKgOnfv}8<?0<dcv(SF@orUGFvs)#afA2Y7^MxR
ziZm2r>xnQBv~w3HER;*k@6l-E6GMiiB1bM$d$Hw^5dfIU&jE`G-GKqLNFm8Z=H&ig
zB<(uP8E5$4HFDgS9r5z<%C>9@n?}i_FmW={W%k1WuT4C+T7lr>!lVu1ZEb*1B<{!G
z^Y*=w?B97=#dA>?FVTk;{R0CO@pOmpAI}cp!v|c9QFfhkkk<%a9A**SVfM$PzQJR}
z$Kd27QA!GSm}(|r{)M~c$?;md1M|-FeBfQs+g2AhObaycO{$^olsnJn7-jwq>eJQM
z#Lz09b23Imp*o&8#wiiTqFj^fiUau6TKRZ^^aJDIz_cTHY~ZS@wm03fcUQT6f4oY&
z%jc_eazTrfwK-|oS1GdlN8hK5qp3RIuOH8z*K|jBzl~p}fdON&hA%z{p_#W0pJkH^
zLi>7a2QlK<;dHP^Ki$WofF^u*`Uwr*#?@-`>8}w#-i5t347*b_s}%pt)$>Z=9rhJ1
z6Qq=esg7-K5)m%foLuAwL@H);Q<&IL-U!Qt0A8{I-qQZ~V79*lw<~~`%bfRf*Pksm
zF}zADa_k)Zw#-a1YioR|Y7)j0$utTIarYasEPK_4?-2(Hf)R>@JXjIX@>?t)?>(e9
z$y(ic*$%zo8tN&i`<WuPkk9f{=ihN20p#6MD5`(Y{VXha&s5uc{9Q@t)@!*|JAOH<
zhoi~wLOp-4#qkvdqj0Htyt3KC!y}zH0h4laY6d$3^SesWtPSVO6~3^Ehetw+^7r7s
z(VtS)HXGgfuU{g8x6?o{2juN)&J73kZLev^AxVV|55og>KIJN9LpGOb(vZN}ZP}4j
zQ~Gz9c3a=TjPq@$LB-7z@-lJ?7C4;r4Bzg5=B&qw`R~%rI*QXmCj#I{O45VQb4R1c
z2L@bnI3^Y*EGf)UQcqM{t-9k8X5IGJEJCZ6tmZ7mc}`KrsjD6ifrozd-6hsQdTAmL
zqzrv$t`BhZ$6>NOtLf4Mr!y8d0(q0GYqfSu%t0c5x<}XW(u%<-8qanPBU@70=RnY8
z+3moIVC>nMb%6Ji<MXbxP=7)$|8G1}N+mUzn%}wE2fLx%&KK;S(nC(eX<AM8qe_~J
z%3U%N3yFwSvf~rVfzUHPuj<w<x_(#khDX@>Ak<tXLd;nFxWq)~{<?t45wvsm3Q=o~
z9f=m`_H()9VhPo;6TmZ<!82{0`Bat$)a2y!ouy-d;I;SYhJ4~qt3M*E?-C*JL8P$p
zWv4rysR~QX&nxDX(unf8f-Rf1`EE@-)72(lp1OeHiRYC-AD(!rR8mI^kMxt?)32b@
zQDM`q*T>KDvsAKTbt|JtoY`o$GDJ#q*T6H64DS!&?%0*ye<daNUH`Idy+>RP2hy|*
zC$g5RE^eDkh4E&ufui&}Q#kQbuqgxsbVkn3(dBcy3#4xt%D&?V@}s^-wmXw$LT{3#
zWo6LD4gtX*uj7{9`v)XFhCvPKA6;srCV^fsP<@coQlwfs_8^R_O6xu=BR_#Xf;T~S
zA(b~_t=SoN2fTjrl9JIIwbkX(w0XXUkR!suE;L=Ku@IN&Zs%2P6kr_u5-z#@$m4jj
zBXol<p_)nR$QGr|B{;>?`(T~-v`E`zyWz3Vi%=3(grKgTQf<H`S++%UF0kI^iBQ9p
z|FH<TU)Sn^JWe)wh}f~O!BaSk)bFio^IE8^-uB!Bg^oe8Y0b>XCg!YyK5Ghrjtz<5
z^U`8)1kDe4o_}Jk>@5)5AH<uWZE$5Aw@1wiG96%R{Pk;@%6g#nlE0f#YvKd0Vj?Ke
z>&DE{qRa^SykX-KN0oB?ezTf#I(-^O==K-zc31s+M!4r=P|x{DBT57V!K#G)v!Ek)
z_U1{d?;Ve0AWEYD1LYl-p{D0d0*}!09-$%V%k|r=^vjL(M<}7=dWc#K8S34=Y)b0%
z&&W}sSL1GAZs2f_l2GtaaB2tcY!;O)-$PR9^Iu@^H2?N{qTex!p#^YSznpBW$33f5
z#wJsTYdAI!NVI*Q(B?YUpN%)fZj5)VpP*wqz(y5EvC>{{$B;y|xrQUs2b1V7rAip|
z;c3yAew-S@+mPo@w>bZuwXNq6e&$Gf#*0B1G^hM>_S@2VV!5W+di-#R$`kOWDsX3v
zezb=!xKv6|F*PbpJcAdi7Sjf)cisQp7e@+C-O2G3+GxEVDyCOY!On5o6y&{}OWYMI
z%ehd?nA`KjFq1Nm3j}w0-gRmLa<2WZQKtdBZ5P}8p-|_Vb;sLfn<=BhPjf`RlXF)f
zEU{}Z?H0(+#1Qqav>DobA+K&E4Uw^zuz|h#AcIdD&$Uz&|2J;2j~~TEpd$B+>XT_M
z_l(ziiucGup1|uVMRCQNqjcUSM}40AW!6&njrYuc_>Awe)oi000a1m*bUB_WFQ{JJ
z>$1wQcV^T=Rkk1$L=g4U5xu^7la-5_zC`uk^aQVchpO{jLfA(q%MmfUjY%9xv<b&E
z0<(fWC@l*n^-|Ov$*S4R9Y`g6Cm^7xo=ioZfSpV=)pKXh7klA#J9~?@&-*v+ae2bA
zHTf48ojGstd*ja$BQ`QctY%GbO4TzzPE@SZ;gF}6TP4lf#VN`6XQ@5G6C{61EB`kG
z8jjhnu7MfHZv~4n9FS_*K4>9wBtkgNct(V41lZ<xdU0R2$A!ycLv={mPyBAc>((6v
ziKVxCP7f#Y@`>ebeS1~$)(<+`J6=iDVNtfel!R=mqYRVH=Xz{?r3<@nBS@~jdDEwt
z`qFkn9mn5hxS4bJFQ1AIT#r=54du?Da#!$=#TR$W=b=%!iUtN{E9|J({-wo!c4T<@
zYRB_NjxbmhxiI3~0@ZTUh><P7eYGIXsQYwxSuJYlyMKUxiqn+R-iWuT%8<p;4+a}p
zCu#Ay=Jx&?<<2Ss_7258$E&$qb_~hwnb|}%6nW=<U6mFbm(e@u8nW40)UOi_H?O3l
zOiy2P6ZV@jkPW-Pm0<ons23JdhSm{h3?sBaGwc~5=ndo(mSVJmvl*t7LW9{BW$%b|
zO$+L(yaq6TuZS7arfTvPGYR8m=Z4GJa6tptS1rniO}RQfrDrCBxsO9GV;V{kObzd;
zcNAa1?oO|=G3wlOnmp1c5A-p_@&k$7gxl}uVfON~4h-N+zd<tmo6ff|q9z^8Ggwl*
zYP3G$5h$sXgAdb`G{2Z~<lVpZ=^3bDhufsTy4}(VaQWy&_>N{WBg}XOU&Sed0+453
zED}F@$3+YaYBKFaP2j>QW-;I+SV5nAZ*+&(qf-OD<Blb1Ic3$zZ=eP~-WM_x4VZ@X
z$*n#qqFGaLitm}85D0mQPBxr}*9mYP9zGTlZ)idqkRxuoE~gW3H0QQz22aA&fN^lv
zFq!uQvnILZ7r7WyZQxYEoijbaNAm35N_6N4X}lVX7Ec?ray#)n(yn--?OmfU4G1(6
z#%f@(+JR~s&qS*_3EWK$MVsLhIwX&jAOcA7i!|9)e_TLACkoHs)YxJPz4?+WiBh`x
z#`xL=EnJs)&yr_#)ioAQ2cx1cBkU?AAP#K`)iWN<r6}|aKjM`8OO98Xk)=8x@tS{C
zihctBOUM|$NXRE+)n<Ubx~;T<DYk(_cBSGo*p<W_;Rz7?_xky&`ils3q@wlbY@0hk
zg8g0A8<hZ%5SC?~xml-v@$0rv<*|OE)hueaE!kk5$86YsL39%BHuGUH;cGX@_mj>S
zbOE?t;3%4Ao13v3{O7{~5lDhG1o_axsKoe(%^cNL?~ULc#6_Sq#6Ma@m8pmuPLE|$
z%umNBm;uzUfKLqw8-uJPLjC0md`$p6p6T;E@uzDFkTggr5@v4(oJT+|t0rM5{sSMo
z<G{u&4(;VF+6l--o*$qSYJt?llH>6Obnu6evzbOId~x-jG=5|CV5s7zQJo^s$xUP(
zTj*vrX^B~p6;rM08$sxQyMwi0S&|fL-{$S9vD8}5MlCKA#F&=)BksOj?XI0+rX&}W
ztpN3_WLaE2BZh*3?aT+ZDE@dI<&&g@tTC0#BWn@HuOg|deDk%SwY9+f1}}^<stWoQ
zko;DV=Ohvxd~oBLNDeY>4La|o19U0k$6GKOoTLd=9ZdPV1h(jQXQ9{l7OZC7=Z<Sp
zXsIxZdYAPOTUe*E!63<>Ilx|DgKvq*sUIM@?rV|^zB4_{w4iStAsLl6Qo+2(<n(Gm
z0u(ok+H7PbX>CX*Oj;tC@m{L3)J1G2GV$kn3RuaU)JkgU>4?P@e><Q#n#JfhkaMI3
zJd<s|?#@ZWg<(UZ3ojP={qZSp1P52bjZ@H}^C{e~BicM5U%*wf2l3NY(2vH9{H$}F
zvc<Q?rKW2bzTf*H8i5_hWI5wkPoHP{2mZ+Xn1nauy)5PgC(^U-`e+QF?PrVi{_eX;
zV$dZ<Tv3$NmtzA?Xdi#$3dE_>ac?B#L`UQChFfPI`f`^5(VDMv=Nq|XW+Y(MNSke^
zK)hHx+}(0AQ^Ovx+#1kp|NB(*`9lm5QYB>9KY+~pl+k>hG`u{`?*h}l^sEb+kwXQp
zmRnU<{Hyq~{ty2Ab1o0Ht(pYgS9$du@zR^8M`j`8sG_J_C6plE@XL)h*Y{(>j;q(H
zO|N_A|2nSw`}@f$=Jm5-vf>T>ap?rfFsVQN9Vdoke`$$EF{O#dE6=P!9mQ0#4lCa<
zFTcDNKV}6Q)N#bQjz!tPYhAJD0H$t2u>bs`7ChMQtSp1J?RfXDU@(RXV62DgH2I>E
z+TA(sdcg3Hi3NV_--YB$T{&!43>RI3HeIXBSp-3=AxY<T2F@@Vdc3EO6}+#-@$*t0
z>v4u<{-F2CM}lo_Pr_E0=Yqb0RL%yPTPwye$<Om3&8jq0@&i+1NPEkA+rb);7Rv3g
zn@5}9C$8iVg&ues%6B$&;9~l#^sGjSd0X>HF}?*#cq8X#`yP!|fSqWo&H2PA6>@%I
zLTTLA+mx3{Vc;ep7dF11%EPiw;vPk)<tXDE;iHsQhcB>ZJg)M%)ci0u>gJ$N>lniH
zXdPLnYH-@)JGqZ{^pDI3UEt~k4qCjvL&r;nS~STvt+^qyl(>~Xw-H;ixHuIqT#-@O
zZS{tpbMFkT^ga^P(9-aNNk(s0rG-N*g%0R*+y-u0(!Q0L)4cV7DFu956Ga*Kq*w4A
z*6iEe68DC<px-5s7OlDqAQaFh3;W0+dFvFtz4i?7sS@s0`w0EZ<U<(g78D9B`Rsmo
zw@L)KF{$lzR-HOgU+G?5*rs58$Fg5YgDeyY*;K7r(`{r_Tkq##qif*6bpS|_rE8Z7
z2RGfSO&0=-GjlTOwBtCrsAO{z*$CBB!EllVT%vdw2;|0J+A$309NMhfHi9S=u~~W_
zT&8<=J^fDq<RAV*_hn=C{d*6A=t>j66Gh_n3L05Ial+B{-Snei_X4!7!fr-L(Vs8W
zvxqn~udvG@ELC6-Qr-mPx~+frRH59y<(A3Z6WNcPE@JMPG6k-*ODXkbbxY*p2!VD|
zv^dSE>aY_+#ELK^N&juNq?YdoWb^>g_6pxUVZQM>R|XcHRSSQ$cF#CFiEdES4r%@7
zc}F<qf7!uZV>q+UwV)8^Y1NVqC-*BWwPcv3%kublwxQX~wztJ`hHN}JviN!pPP~N#
z23%acJ05911S0jijwHTZp$ANglRk)SzmBZjw2ulfj3PNO6O1_pp|s)mI$4jewH4>I
z4bGyHsSV83DYx&Gp_LJ1I{%{?c2!2ov?<4opZTvowi@)2!RZ(LldH&qRgP;U@77Ae
zIdPZ#LdYL6@r7wrQ<h5%qa5qGtcSLWY3-}<H#*UE@4xcheg#%^SVMTJjU66e5UR7X
z4qqo&kA3q&xV603Ct=1ztE)frv||788R{66u0`=a7d+;;+&K%}1kk$9-+CTI4Sqf-
zh_}VN<|Ic(hJt~W6`POM{;9K{Uc=vUQ8}gOvi4QaYwoLFz@s80GjTD8SAS+}4*I-Q
zRLDY2zfN`JJf6FHgPZdE4FT`WM9$BJ+xwU;$|=?Lm`g2PShd^u;&zF)af%(SSF$ho
zMhase-=#Q~RI1HTR0xCkVd1L5dM2f}ulKnGwsw>gf-Cf;S>&!gFnmbO41%oZH8T$L
zlZ$2?g68wN7mnH})v4W-CK!L%WXB&4d0i(aK=+8?-yFRUvhx8M(?hB7k2&PO^9`xE
z=tsBTW%8a^BX6Ijh2zwfgwi!^S74yopw2`CG0(0Cn1Fq#B5HlpXOW_z8rX`Oxy`}Y
z%6vH|P6VhXt@c~}bu(RI904w$g@x{696HS-EUNwvd7)q$yZ8~M?z<X-zYBw3SYPgW
z0C_9jcMtDUuxlm0LwnGPyxoI&4g>k`&7*;Oc2)=j>)d{KYxX38ZRIjCnsl#*kR_wR
z%0wpdr0v8-*wm%<TwV~|4k1Y^(l0(ly?Eam3p4!oE1j!^K}d}Z0de;6mME#8#wp%G
z7{7t+?FWx(!4J<kWd*GG_|OIklKcBuIGy{b$nE@$-qYU#;5l@27az1FF#+lC0Q{86
zf=LQFpDRWwZ2lu<S4tz9oIOklF%@Drwvp1mpCEJ;?Va?DK-#6Q$8F8^N7hWhSy|58
zhOKprPF!LOoAvm=r3EGyckg%IkC6P2JG*Tl`t{+g_-C4gOP4g&WP-PV6*n=V+r!UV
zSO4y+2+{JrEJ8<jYW8UGE|X^EXt8S{6)2Tcv8q_)C4)eflFml6b#g@+<Y9!5xtL&u
zfkkioKD$GYe$$?&50!##>IYgdJe&dFIi7iRDJa!7cD)BV1d2F%|6U+@B-?(C(7Gv?
z7Qp*~vah`#PN?$N!R>o2x4e~XP&+R!;0y_#p+3cp&pk6JM)a60um1sivO4JV8l-L1
z0)T?MLEh+l6FaZO*KcDyFIz_t4v>HrgB+F9cBOW2W9N+=SI_NJ{>v(&_o_HayE3KG
zTp%8m80DhC5ed2042{6vDMIu)Y`OK&R!b#oKPeHY3#m_ix7t=o&(dKH|E)=&wq<!A
ze%v49B?GG&YelT;&LFhg`lor0*P!7#G5Z_;8i5P^rAJEJ$D^;;<N3D9;6?POwg#;R
zTZ{Bi?%IQt53s@X^9ZfiA|+|e*;MkRevEc^rjrx3X!qAN7T#uNxUFC(qL765jxW`8
zZ(RjwdztUG*-xJ19v|?*6e_Tj1Mx#V;20w?jKNLLAm91h^<huo3l>aGrv52bSQb@+
zc8^VrewW96^GSDRUEn#tgsRLwH^p@o0T~iHFYh5Atwj3o%=PmX%s$eP7x_I!j&X;Y
zg`%alA!Iw`K33cI+Xfo^y#{&VHxBTyVIx4p6<nCK^9H~SRZDkzNUQTl$p>HHYIk{{
zjZDEnD2aK{x4^rQvfFLX?&y|t9+OUAwp$CBrW7)L27&}P>>ojyLJyt;cQ|JCglE@M
zufD2hSaN*fUts0_h*?q%&|5i*v~Y{9BFK`RY3mk>i!mp8$U1Z+H7vsgg3}Ri7HNqF
zb-{NNpi|t8CYw(2WE!`1=47fp?=nCZggd@1tMfSnvqJ|*5|iA_4l?<BU%o&9BLAIl
zitE%{wi{F<scub#KHBlia}KQ`e%yTdCRXYn=)+d$gCCKWW@7?$o4dj<R6*zP)8A1H
z?ngcbEde(g%Qd>^+_3OWOde-$I)1M^+ka8=KE9kXW6$VG((xlHta$s_3ko2d*-IX?
zj85u@{d0g`2xSw4S4@o&i7Z#Zj3=|kJ-ZAqj+FCR_Tr`~bVZ6IjVBO>D{^N0q)i!!
z!NnE|KYt!La+|$;vo#}_4Gh@j={^Y+E?kR=5)1zfLqkjJHTdzu7>88n`#5o7!}(*|
zwtyk^uw{D%VVB$Y)h@h+_>x*Wug!kvZ|zpsDGRHqnm9(7UGJ^MfYf1-pzy-XE<Z<V
zNvyg_&DY>BQ~V_~q;(s0bhjE^m*Z&&-OZFL^^5XR>cbn`;0(W8MnluBb*>?21w0#z
z<72*KhsgUEWsqRm=9}668sXe6j@WNcf`b81wMo$MSYDIyo{hq~G#8BuHsYV6Pe_C;
zg6sy#ra7t#dU&ZirkJecJ>EatiPn7Cu@d?h8_HXNqVC*c>ybk>qOn=UuD+^1=z%ZG
z*nGEF=iV<Hy|Q)rvknn>!5USiUI!cCnCM$}gS&x~^jeo>s#?j8X%}Gj*z!g&iX;aO
zv-c}wU1vmo-i!RS;I&w7`yD~6-Ny9%JVhw)^dn20SP`9=F%N>WLY(W<%*^g?=w}l)
zyaLWNgU65(3!`0-easpOT&F@mwOZ){TiRz~jqn$gk<Xk1p#5)x6w{!6#Fr;raOjyv
zl}t(|8PaNxXZqXLn-};zmegpWpD_BwfkvS=((Mx!6mf7u((t*A=Q|z_i})FLr7In0
znW`vks;I1;xVNlJNt+`t^9PA@ipqLOC{0VrV7Pv<YZu0rl%v4cp4;B?a<ouMpq{9L
zT-HN01e|W(qs;_N1vdG5L^rfb-lr@&um^1ZA?@$EcE>^&dIWFY7h~fSo*$~}aS#85
z=zLH3|7>ei<r=y-4*-A<SRvqWo%0jl2?sw%C^Ae|Jk3<ZrQZEt=J-EQ6Pf{vN=kQC
z`MLd~+1%`S5BJpM0rIt&RtQep9_>#2&6F;wy_++vLf0P9WUoj;T9_E7vq&f?u}pF)
zv4OAd0e61^rgnat1Z^TszSm6Xfj2!bBe-A)&2LI|pZ#f`nXJK|c}r|xd$N_3g5#v9
z2*GDx#;RJ<8lJ}EG*I*EzFP=EVW(%Vk0hm;4MtpZh3uWg!hyB19+zO@RGcKtz?Z1F
zAs#6;h>Gf+W$sm$rK4ytMd?Gx7uTmbTXb5GR~Qf^tFBXnBTW)O_aAom0=t5vA_bm<
zxhZ7SAM|}J#qFWMftXz_JXEr3Lhl`{x4#lUXfq5v;J?qtxqlBcPU6^6p?FNf3MxxQ
z<EN#ed0tWm%=9A?O8|tOa)XbOwv4pxS+>vsy~7v?V1(RnQCc+c#!-K@yc1XCei~dg
zt;(<Z9~}9;2-bPX)gZN?y<NM{vxA;>KSmbKQp~PwV47;YU`0`WcO^d@*NFzQ`rIKs
zJk!h?4=<GAdukVM&bK)>c*pr~-kBfnDfg>u>IGlmeJ1@SO8R>%Tsu>`hA(1wOj@U&
z&0w4~f5^Y6<v`C%cId$H7278?RjQa>3aQ!Sa$KxVxM1UQ-l2{6@)!C+jUz~%Bnv-e
zV^&R%FeokLUsuC|>vT_0+xt=%@A-wRmFGHS=}~y|i>U<8Kf;q1JZ-e$*x1=eSOY<V
zpM{={vSE0Ipfr9XPb&;8am1|UNtXG$pld`UG$x3!C(m@mrdG72EY`o2+8bdBJzups
zEi7d$SS1!>bWR9<=J$dX2G^mxj)~gJSOh4O=?3?uJ#bo_uqM?AixLn&9L}AV!}1Pm
ziEZy5V1JEiz!Y5#9{hm*POBTf1$JJ271f1FO`R7DX41zn?FVp9QzB_!m{>d&WmU~d
z3u29|cuR@MAov$OVuN-kgDks`PnvZq`{ce6Nv_SAnTEY|co)&_!_WBBK;(-26EZ7%
zIL&(KvF`HaEOhW2?el~uh#110|NZ;d54EN8R9jGparTJ3OXe>WM2EbICH2pM=wIJa
z`>F)0zPX}{i0fXG6it#oHhEF@;XCYgUWAbC-c@lo)vq4K8iKL%KjyXY@^d8OILwfz
zLCbF)EAI)EYcKpKFD+b9I!U^{v1|S$HWwI+hrgcu6fUMI>BYQndwMUesPse55C?x<
zx4rayHuC1sb0cW}&W2UT_SAsm*HCAUHH&~i|E(#g7}>o|x}X$2!ix`4Cb>VzYJouL
zE?>U;Y71a-=_ZjAXH|sN#j7E)+T|JHOXSN*`f>B-bs9?glMtHLr-T8Z7PHcQYu~*$
z<wzSxK|@0$lU!T`Do7hfNaieAId53JoYyxf-MQw#d$4D`x$!^Y1;%AhHpKji`&p!n
zsYTF?+V;LWONi$KYs}|i2nKA;Y^~15qfImzd++wXMo4h3Y&VAz`yRLN|FeBwZ|fEJ
zwVOl(TOH$OyzF)v{O!5&B)UyN`80{c>X-N{8xVXUge&L{=kqEPdn$kNj3`*39G9_R
z3DW&k+?2$W>iXV{IKfYz=WH&NGpc+!W32{aB2h{j!6+{0BL0DNJf2VP>lj4mQs;>D
zC&=sVGx!1CJ`Y&@XI0RWkucz^B%f_|sfU91R%gp*vpJ)(-z(|;3#)%F8|qfMvp#~J
zvoYj#WB{I~{O;8AO)p<tie>+eOGy^gH4|rP{{zl_H}Y`_d9+=r_n5NLR90TFZp(zU
zP6M%lGuJE~shU-1Iu7x$rKzS{8k%dERQW*Q-^O<ul733WO4Kj(ZQf;l6cQIVv!Hz}
z-PVhOHM^T7N54>rQ2qQ9vE-|-1rG1~TG?&ULcUn{eOuTWGYbz-0hh}J(CFCY;bD%=
z!>RU}dr`UjE^kJt*nT>HTAU3&1sHiY+J!ON6MRg=3!0h*!1=878_|~2oTh8MGKGw(
z#cZ}Gl_A=61}nXdwOIa1@a2uG2^A$BDp1YrAnv}7ui^vl=i2RTl;N9i1XDW>;~*9d
z$trYhQ7Eb@1umWAqrP@O4A0OiVGVpG`czE^YZOP0DsJ#rDtwaiaf`ofucu5zOMRV-
zDd~}s{u?hJLXqV4eFE}Epq(!-*l^A1@I^Y{5uQ6;9%swM|Gf>)q1oVoDv1zGq*N(Z
zK)IrBO8e1Ic|%uo8X}>_z0)4AR5rMF0*bhw?h0yPpXgq=rX}jM=DL1A*D}K4{`0o7
zj+I}G!O6})9kvCKR3wErMdS+;cJ~H|zr^B<?!!={U?>iBYC)iUp?eq*j|UlFv40CZ
z0`3h&nFL{Y_z|Sn1{uvuK?~uKeZ6wcASkbZTFW)56+rX{iIe{mNiIrDdQe-gyS__w
z<c+iZSX*k|%<D6e8BeaapjXc-g$uTDF$vM?1=lD*>fvOWa5$ChM?u;JM8H5Pde48I
z#C;x<7Mjj_w8cl=cM<vmhx+P2z;;NE-Y$&ZKGUNuD5yv@$^?9yoSr`FficD_YN1eE
zz~aq>FDwn)#O)5Q9NLsuI$+*@cBHn$e`Wu(iVQn7o$LDW%C5uM``S`>lI_!?$;8BT
zn;7W+{T$ssdDAQXh=2_iDQj#}vi?9}amcv5A@t&!UGqgzkABO1ysl;?pBMh~i@X)d
zp0^#)vu?=p4F<-F1eMSb`8@9v4=9`qu0NFvX8YAC7CzH&NlVJEU_^X=OMj9J7lQ;S
zf+$5WAR_a`a{n+|b0jOw8+D!A5w4MfHb3-*S|{?+>~d`cFLl{%-QECP=D2_QC*jZl
zC@?oAak>sgRGue{1XJ5{<+BYsxi<3i89xe?<gIP7@b>-<NshbXQGu*MbiOb)WPDOm
z%cXzxBcmgkd08U#!!0ZJ$EDeASdy5=7&s~2G0AGWiL6JL{(N{2feFoobd@e@CmUkp
z04$9#a1S^rmmm0zi*ICR8bqz7?@oPia1e!r5<4Mq+B@p<8cQnQ`7Y2LQ=`Nf&*UiX
zzz19OY4N$R)`Jyi3K#J?nrEvl$5I)m`i}I`n4j9pq-vM1^LMH(ksR(Aptyi`?-V`w
ztjNO;`co-UE7_4Oz3@3(fmmpsUDDN-Z0C_pi1_vA&{cmw=m*P}><q_!OTgNhP8&0{
zOcN$KU3#ZHXSSlWHbOE1f$GpE2&T^GU6=Ph@<Z|q*WE)sHx!~thd4d>c<W>6;)2L_
zSs`Vp!gdB%+H~vaN}Bj@Q{Jmtg5a@L0`Hv@w}T$!kcd1xlZDilEZe#hT+7_SH9$uY
zV{LbgC}3uLjV~*HY|G2zMKY_DFFRq};&u3Z*K<&)0tv8@Rqwf0z?MKi7G6s-oVoMP
zx{Z9L-vzAqTxMf0e4a)RR5~5_Sz<4_KeKbAmo>+de5L8O=r&$zyrHaWO{$qMvfYvq
z4yNK;)#N1Kqlk3oy>QIEqiyxeJW*Qz{PDaR4u};AXQ5DWIuz~)X_tdNCNPaQ69&5b
zc57$`q+mL&lcca+7amV5TFM(f$=Kl<btbutvvUZXtE&4Q$Kfw4tUoX&U@Q4P54IoP
zO|1Fd<9xsL_<T1~QL~!kJN@GKfStb=U*~%iz=r^l5;D-<(Twq&roD0R;vEAMA$VUF
zD`jU@6r;YqeJpyEc*3yzG0=73cGP87G#ko_n?i*5J_E3~kpF=!EPStZk^5WHR*@sd
z?jSmr1jOIFqAa6+AmwRZE@vcRW%c}?5QfrL(mcrUyX^c<ojPET!d*p7KxVboHM(GJ
zZ^V|{^)fAE)~<z#dRZ;;ZR`9>0Njkt&L1F&fs|=Ji)Qxp&1{cg@u8udtx@n*+f)ew
zY~B$lG*C|dJG^BkWJFZyCA9Gl*hbmrhmC*H5@EDYwKzgc=2hjL);JTdNr_$7zYh?v
zAJKrNdxh~+8x;5owWV1+@##!)1&hQ}&RMoaY(H!TqK{PxH-(Yu*rs<1I;?lbX8@k5
zL2rQpF%ZAXpC!9v!t7+K5)SrhMDQhc_vy=w@ls{QS6q0aXUw2CCSh>J3_Bhw#D8^Y
zAYwc0;u$T@ZNF<u3bIt<1^*;OLN}qI8SS`f%eVn2`sI*<Pc0wPeIeZKPcANF!6vgj
zDrzO{jRu<`_O$^M&mdXs0Xnxyj)bXE-Vp+OzJEG}VvK)R9MWu~d$;JuGlJ)tSUhFt
zGc|dqk7ENQ1FeIPSK;JD0i^fyC;3u%_LNtb6mepacu&SN@a4x}nzeNQ1Zk~vfGNZd
zO32s2KKsF`%9HFQ%=)kZZ>&i})5{RXZ)0<H!Pr7-(L)q(lY(sp2*~Sdhg?$QrpXS%
zMS_yy$YfU1nSx#HzMh3zb>X6RCv-jo{z^7?Nh!LZhXEmV(^<RL_SepHHo03`)__kR
zpkVabbKs}JKCU01E<LiRcsBcR0k3EVZ<QIpiqB#yk%?x@Bcm`7p!q$n_D6-^;IR)(
zhu2wBDep0aZXK^r0)SmS&dEtMpB5HUKyS1{gDH7nf!@c<>$xZjh{0r5RKzAu_u1NU
z)dV-c&1`UM#@Xid5xaBZ)5LqK!GHR21^a`^-mEjPb&Z9obVH#yxTUw|=Sr|U^UodC
zYDZi{!tYsV_NSTVp9#=2H77RR*5K)Qh8EA!c<*N2L35^wk{<eU1#z&?K`&JW0F)7)
z!qk43SF{)!BIi?pY!8;cjqlxKCj9*kPN5n3d-{jO@JazU5wz{+&@*x4CDHnG#`=Se
zdN)`%$B=CgGd6Lb!4q~K5R@u53w*!$2gk4$3*#>}_-|G^>Nc%g7gAA|_iB{0vjV_5
zQ>y6rf)Fwz$bl};3J4iQ7tFB~dOyotOdYQu!6UfD$$y()u|vjy+iWGjgm|aqg93GI
z1750j>fJXyH0!b&9|JsHFSdHJ+j<_+1YUokTS9zWY^YXTy4^1`+kXK8&!!5>ij6il
z^H-go@+_$<3yfdUYw9Ps6j}_0n~=s0wHfhXrIiMLr7*M&?_<Uu)|E9b_DeBu8RReP
z$#ro}KW5ii0+*-4jKfCiS1<32Ec3?ywM<a)TvJ)KBV=)kTChmN+eeMq5gUS*4eA{B
zGLHJv&?t2WS*fY6-d48?&|<tL2=WX+?G@pY$--42P$Xe2Z9z{VFxZKFqk~OYD_Zz+
zN4)g{7K0Bi$R__giE3f|Sx^W;RxT*QVf^5_hR>_UA^;*zJaroQU$zJwE~<CT^eF8W
z#j@^sX6PxDEjY_7pyet>%Cq#u#j<v!zHOfvBwU!A7ega@!0q;a9CxGiY$_F|6|I~*
z52;Gu9IpT(0sx82S+}>JwjY7lC;r!O7`7|btt7(CDFIim_e!$tbm|{Sl=9wC(NS-W
z(=1<6K9?r*iIB4=3r{0WGC$x^ArNzQJSWTl{HaHV1QREM*Ox-#Pc+{(>;qino|XaP
zoL+@3GpJNNzV63gT6}O{#WEo~6&N)lor%4SSN4G~cX264{V=|JHjO5D_8Ubq<4a*y
z)~K2yEL|04xt4QbpK{s9@)c{JNrcWN(XDu2NWvD$E67w<{Gy`X>e#}UMky+N4?`o|
z6QvDfdSn6-a8a~wHim}}OQtRhoGv0_h8Y_hsltiM)OAhP%?Jv661gKgLCHuVI4>=&
zU`eX7!(za>;o^E9FXRn$y4#*T`ut~6o9@89=|vAnZ6RFdZ`}zw{3B4LoBF;Og$5Yc
z-7ia(Jc<qXPY(5yTZ<Q7%W$D0PiIyBlg0urO(nz&aS)b*C$GS)ZQpm{cVQYJQ(A2{
z&U(vhCuylCuG#der7C}!N-y}c=DfJoU<o%bb{o$KpVcgbhJkkxUUE*S{Aixe5*BI@
zxp{AQXdo<|@J8iwnm;hqbIFWz4ec{)wXqf?lM+f!#}=#sT9k($O9gb^suzldBXgZy
zZH*c2UYWG{2z(O&gP|ez;8GPth?B0-eS;f9?~?@ZMw0j;h4zz?E=j?Ch10uxn;2I$
zu!p)@e*r9K^&9oIUT#DW%udXp#cM(gM#riz2dQe^AL68cgz>z@Dc*EM$SH$I{F-Wo
zsZWuEONR5_+WQ-6L_d5*k!*0CMr6lbgvnzlaME!)&PE8C$fL2+ec4AzyQ1A~)#k5=
z#+UA?&nQsZL}pzSe&_AS3TN5I#01F-9PIi$dHN$t)qh<F4W+{`J%1`!WR)O(gKpnp
z{q^=iz;|qD1Tw?Bh;ZvDXF2TX-GQTm@1-k=J=Uiqw?Z6q$#63!Pn2lJ`C)k9hYeFY
zqHZFOEI~B7>2zR`s>Ye6n9#d1SDfHY$FX6I=RBy$vr{`<{2#y`Q){!8_Y9WOOOYX>
zt=4TzKe%#6wa%J9b89!gR|NgzIbmlPvgjHHed>vsu6+MNG|xHAdl&udMa(?3Z0AMC
z?nV_J<LUrSZjO{{NLCJyYqiIg#}|0f$|QxnFVPPCL@07SoCyu_E_Fk_dv8dcGkPL4
zyj`}B2p2LTDy!^KU4UpNb8I)Fn+{H{1)b91qz`}T#EHfehkn0P9P^)%NO(h^#rE(?
znk{@=3rf1(AOilHtRO;}RgC;SIdj}Jk4zTvhnthvt!6fHm;j}w!+T;1=L2)K**TPP
ztJA!eLc)0L>5?Ck(jM&R$l3&6yFej1ZwCW<#pKdz{hlm{$xoghk_GNlkCW3=9a0z_
zXsZJ^rp=8LENz#Ywu~5s+t<tZB?XuaZ(lpE3q6EwbyP(-P_3l0EXu8U#1w4oYDu})
zI&5(#wphL+*?Afj@E)}<v1Phr`&UT*&9F3L3#vb(@A_iv)}tNztp{(oy>>MZf$tig
z?VcYg%YkmpmS{Y6kqe&OL@=P+iqv&XKFK$blps>1(e7-t(G^1j8n?=Dt%1Y$&un~>
zTL8N<^_Lh<%&gp`Kim-yrlA8q4_m$-O^cT%amF?-F>G;czn3s<>E=0&OB6@z;)I||
z#-n-|(Gh~D2m7SHB>$3?u_o2Re8@l&z3cU-C+0yGf0_n%9FOQLB=Tft;ko{)44=2e
z5X(W%wlsZ>ruPXb&U~J@@~q)P&aRwf9(tfEkR6-u@x8DxEMcc9SyLhEt$+`;^ALiE
znVe^0XcfG9Q3(9|jb3h2P+SU1LTv*&(~kE2uj%aQ2mHTNTyfWy$ZhnPr~$*YJp9mY
zl1yGqR}k$iuFyhAYCtAyXOxcL_u_wul_J*hVdU?_=2;b@6$Nw?Qkc@!C~RkaB}&k-
zvGPnzED)?==T?T#Zb@Fv=@JLK1BDvC$xWsAQ>O^RsIapK;|<aS1)@WF?2UkVJrb(C
zL@?>EuM;Jmg|P%y>2K_=DDs>@CaiGLJT<G5JA}Pl!FF?PY_mDpX>1kLCNnp)wIpTD
zM%{uLMcuX&)PV}56jSnZE$C4AW;vohZV?|8GU#tVr6g+=%8H{thF~{`4k%qH$ILqE
z=xzLv-Eccj6`dZXcW*5FMH7QHfMLg3cTxv#9e9D7tIoS#tc_R3V}*6%hVMMHSqP?{
zIF;33VuGemr+-)zs<patT@j?GGnuNdUt)T!%Ve#~nx-^5YXsAl_nC;w$I4e5wgo%1
z$!D#<U^u%S_D)ry^+6*bXbyI=q5jU!H9eW$g7nby=RoZqpRcSw;HH;z&v(jf?rPfU
zEK3k7XZHI2?1%pr>)LAtZvy_1b8ii8b|yA^`44tkk;>E+8Zx@0CsZq!fR9Oh^!?OD
zsxX>TKzkCPmwnbIycxGvVxC3TB+(c~(s6~NvDg|>z9601G;vy>nZcCEgzgrzisEY$
zCx;xtPgvi!0uPYjcM$C<(PwOFaa-c~O_9bc@&_&9C{ZREf|Ce{Wqr>7$E%7CkJ9`V
zDw5bGGqt<^uTlYUPK)e@>26#Rwb-S@j*_WK9F;8oP)r5<sa2>;6Q&ORtM&NZ-M7Lg
zZ)AMc)*AI7SQaQcXwT1&*XRg2zTj{o{|8m?o)1W81HS{_Mt^=U(W>`ZYS!iMcOoDg
zR$d~cK}6?p%&mEF*%m%|)5@Y5;QSQbpbM|iOG)OMl}s4Ul=SI`TqP=T8ig!CMlFt-
zz@EmJ9EWNtYMzV$e<<^3Qajlz+smm*fXkO0|KBSt(n`q$3Y(N%t#+k@2%T$EGO820
z#?Bncc!>BQ#(zn)bArc$4+}W^%E%0%Cd~CDJ?+0O%F<F=qEHS{h#FPKO_n<KFMdlS
zTE}I6ng5c)FpoDvKtTNEIhZ{{RKRG=rV7(M6VmsK(3PoC58+a0{=hqTYrhHExeXf?
z%38A3#2#foFg@@)#wOi&R`%xZ@|>x+S>kjSpsTx5Qyc$nZiZZd#A#*E1I=hRU6IyG
zZ1LF~$G*x%>H;mRIAT>19$~!{ZC~tmQXEm|7gdZ*NpYw_UL8vMPtGW~ucF0i#L4{y
zROCpgqGl>mY2ySYcJ0J)njH!@lsO{W2Wg!VM9lQ_7Z{#OqVSkL-i(!P@HIq_9SK1+
zvL<XrDxxyHKw`5u=Zo)$?qO#kTSQc33?i|G9G@?LST)C*$5=D)MV3>Gwy4Hj2CKBn
zYp<OnBt4-S!-?{XSWD{Ca*oF3BDv8^M%<$!z_!u$r6whQt^QzyhWn9*zQiDj7eVDb
z(AN91(|vKo`qvjB0WjJC+64f{&+7bOarL|~tF)A{Be=yd5@Tq2plj_cq%SYACIX+|
zJh7xyw^d6wcYatv<tVd0A+K-2q$e%rxwZz12<RAna7m(ed0ZB+*=#`Lpmm*~mi72Y
zup!TG-_19-^-BpE_y4x+`C~@d5w(eD_YcQ9ELc!1OUIE23%hl>Z_#*}jEWec2?o`L
znxiNR+n2eBjVx)2sZ5y6+Cc0JZ%nP<@hApU@O-2w21a|Mbru0IPoo#5AAxRtKdyEa
zBh15(S5_?w#tn~53fpE_bRnWd$c@0kZT*%t%vk1+v2aFFZ2=vR^&-M9R5h$7Hq2XH
zbo3{do(tsOw=E8@yOew=k-C+Gu!Dpn%bkz!*Wfqc?VNHz!tXV{QkoHB>oEGuPk1_e
z^aJiI`q{qt`IugTXC-$GI5v0%BueH%Y%#N<nXuZ<6nbtNGr@5rQiX#9v#FKV2HMPJ
z^b2f1?xD!xI1;IZ+Ys2I$gGTu_vR|2EFJCn*o^S)Yw708?Xnxyq8unV$1{fO;8M36
zP(GSk<X*0c6NBX0CFtil$&kYuO1Zd^t3Z%>4EStrhi235N+^B}Yjj<EsLzXPeJa!i
zTaE6wq#vgzkguzr|6~SHn0mIqLB>V^fk4B1NHdg+?*EXIbNeU1-gJ~@fURK50aFrF
z2a#LAQ-R|*?S<QS%2ds*%23rd_>klQokOZJoufFtl-&9vvOiT{hX;~lH2(I~dOp3(
z&q3kMph;m4Bb8VqX-LSXb5h-Xc9g3Nm-oJNKJ(XuJ~AZJ5VB8{Y-q0Gn`-4Gj2eiN
zXL%RY(s$)TwBIz-9hBbVfy^B3x<JYGfUY7G7g8(EtUI?@rZiKo15OY({qC8&Z^CEH
zeU><_vu4kkUB`Qr_SH$>wQ9SJIfS1fruqKFz-ej#APzzt&7MCdane8ENO`=Q1!WPG
z3?G58(NhUkr&dqi)YYzj1G_tam_}XDXvOSp_#2-79Oiw-gZYz&^|W-$R5BVHH-9{L
zQpm6@Qb7?mlinev`X}=Qm;O@4iaQ$*lY7UFQgxATIyjAyF#$(FJ<d+@>F|(>-{Zo}
z&m<?7<yCM4GVk_D*^dbr*ynHEvR-U0SGRKzC62zQZ20oc;65g!@hH7U&;7AQ&v)w)
z;yp^S*KKQPZ$@&+q@C!I*MKfj`8r<hH&JI6D@6so;1jh%!0UW6t8wp@q0+UoiEHQc
z?8Ykbk{GPL7m3Two@t5?8QBmrMBeP@UtyXz3e(9#?eLsglG|uAi|}-*s_x6=*_5GI
zP^%?z9Qsm6|I&2vsJ?Ca8>rC-0>N|vFU&`41tD`tlqL{k8z%wUkfhaGrpKQ-x?5g|
zlL=P$Y&f$JWN6Kg%_b-~1p)~`2HqehvCM44T~`QUW%+(*NAg^N=rk`&Tkmm6FxtF8
ztBAc^r#sl6&F!@Qhom>3N#B9Cp2|BR#~yU+Yt_gy97o!xrIbRjzq-8MGD@0cS|Eox
z%HFfxN9-xV(WFk7vaTq$*1|zyfN_ADGpcQ*phMue{HF+a2TI0Rr7~^|to>58(g<W7
zzeb}Qk3b-o#p>KL_qf=c`l@9(*m0si_5$dMBJT27IE$OJlX&u{cTpM!8QioAL@)Y7
zAyUDx5%E^}omxVscOKqgA+u3o#v)%NA+uJ5hTuCM-h;S&r$yCB*GYEIgIRHO^UHOv
z=5<9GtRFT+`P~fN-qErdh0dB9N>%io2|d|5cC|T=P-%Ay<4MWvPscM+N(#NuZBTaz
z&I)xagwZ~4oMy?$(XnuHa#{IRTAHq#5j1s68$k1N5sb8>(jy?f<lE)gwERcR_zhJf
za7{{e=;6murA8GmxZTwIUkb@gI<xM}o^n9HR`27^#b!%(#b0MNEvcmBy{5Ay%v-!a
z5V~=<080GD(;2s<qHxV>_RQ_4j!x@dv+SpkBsR!I6U+U^j=|*1iGj>&6hsL!v9U@1
zTOkW!vaPrYsbpQUEytSJG&`<@3G;9WgF#6fJ703Vjrnnn22D(<4E;5#(KA3h+K!@G
zLk2!YcWlCnXwJQ#74ObfVHUcT`u7DZiDu>1y0Y0eN>e52mzYPwBOh0jCH3?TVopb5
zxvA<1WR$uYgg)<~8nrUD%vnL;0|U36-b`mp6`$3Dl)?R7#(zmN0th%f06pMZvU72r
z1&MNep^x}puw_?MPDdtilNQK}tflrDXch)kRF?;ow3Key7!%OTW_{z}7_8Orl2tz#
zFw~M#t4!UAJ*kz;4&&%nLU#N)O;mjPt=uHMmxpVOpz&Y4-DXfO2CWC@@1ngGh7MU-
zHPb<VAc@><tco?FW{Lf9Z^(1m=|*4U=V%@)x;HrZ*wdjvL3J3;l7YrULcxivKh~Ut
z5TNDS_9tPt7bq0&yL}HQ^sIcnX9}4``*`|0Gi%)@FEt)jxMo-XGD7$=jW4{PnD=DX
zCP`Ng0hTausL&_c2WTeUYUyauWo09C3`PzC<U4q#o8uL1NEe`<A2>jUzl8cj(oOQ%
z7SmPo&=F}ap`eJ=7@rpu*pgN5)L?VUR0RncMdRWddHXBJ@Nc-rUYMnCd0o}x`<P!*
zgT47$I<%Z`rtRAiC<gli|3)Ry{d?9;)>r>!U*vK<f%kOv+xUFhKF4($e)IiG`Zg0{
zzUAq;`dV$!6XOZq0<iIMspfh8i21Qw2Y$Nt0$C>(A1qf9pI(SCRwApkeBukD4!2C<
zELpQ@a=6qfEzQWx&bEZCA%B;H!aN+~paU@3gKMys$}E<U8G83H(q3jes?C~4)MFLU
zK;A$vP*gS~3C!^iC=fX-fKgl@mGq9TSMa4#J4T>OfAS(TuW%ko{7JRbn}Ul^eAK~}
zT=|2CsVZG`_R8mXvO5<YjFjo85l0pm>nSo4GMEEX)2Lv^y6y<Z+V+^HX)v0j-(}Tm
zlV=1vgyH-NLG0EMxp;$zLvUJp9`J^5$AS0BxbN(;$s{+iVw!#5I5kqc7;;&u(K8(%
z-FY%FA%!uU+kU@Z9K8f{%>t(e_Ila9d2!n)Ud@BmaM`VD>%#j=)+K4$r&jOfc3eMC
ztkO?DNwAJcc+AyR)Ea+IhSK25fJM-vra}Bn8iAXEYf&MU9?w9b=ttq$+I{M%apuBr
zZIdBCItEz!;oAUuW;*>ig}2dh1{9BoovB;??V&hnc3-;!t|_U|+XnXa8jH{WT67e3
zYPe5wKllwk(uGe%(fy#xwm-m3EG%hH&;+JYS<FHoM|Gxg)luPvjD1j>+{uyEfNkI@
z{=oKG^IEgDX>iE-fIQ<h*6TRK5(18@K}%n2*Ri>m^4hJ<$8ul0Y4r8SkH4f0b0uF*
zUVPP(Js-3iRgbpCr7BfP>@}}$g??4ck27=Me&z739{<bL2(Yc$(o(IRWQ`#hF}pZB
z&3RbdXQ}k^2l_U<WT;@8jV^_YGS+s%OJq;cK%B=RY-G+4J1N-MlT(xTd+332zC^B^
z@lu0QM3rn%xecFB^t~`46Xq@Q?+OsY=#EQ--dB^zq$cf2#T5cT{R-shb1+XKb`ImU
z5RSS~kDl{dLS^%o+iHjO@b?!H)>N0kHgu73E{?!B5ec-0n;0$9FLMUizi_v_`tm)H
zOH&j7S)#Rz8fX4+)}_0p_)0(WTO(YS4h09<v99M^@yw`N+(S&{1Am4AUeso4IwS8s
z7byKEvMA#(VM}YDK>_Rtzo~?%)!JVLxvC`-XXjrNEH8pprKLF`RRYzY27|)Gy#pW?
z;X4M1Gv{jm6_9^X5T|z#f2$S50PnWB*{ShbRGftE6(x4(tSh~5{6m|M+Bcz1X*GNx
z#ABTGs{pxU6Fo(!-fvI|$@iH=4e+fE(8pnr)gV)FQSsUtrko;6l`o}%Wt^@ORmtMG
zxIor*(Wdvi{0O?4bVgb$!jCi+gk0fLt0iVeK-8fij9koop>omxbaz%?ZT#WZ$K9>C
zTY^)hxLbgt!HT;>fl^$G6fcF~6c6rFT#6QVcL}t`L$P8fzxVpRI+y1km^CwNX07Mh
z-@QLO`wI?W$f)d;D0uyWI5Hi(oEXjjV=4SaFMHc8XjR*;SOn?gs9*scE;)43NWjNC
zDSGu!teW=%6}C(~`q>_o6O^W>T8sm`#ZLrMJI7g3g5nI%D44gYxvk?khZjk%lBIIu
z#?M0#!gk)azcVECImD9Ld@3JG1q%uDnw?k2FUh>AvPKsHj&Af~5U!ERn2h5m0r9;k
zh8OF~$;@S5Qe}3_8Szkt*J}0}I|xR6o2>97%3#BZ_!gl9_`DzH{>z>3Ap_*S!1lOf
zkj-1Qb_XJG>F=ollhY^|eGYzl+Q;$<HgdF0sort|zhT)&&O&~QPt$|PlD&eE4XaZ5
zqK%ovBe0!Cgp4k-YWKdx%xfDZUGpqK7C{~#{YTlJM_}As-~<a_9AMB@RrTIg_RPB}
zLjfk4*bdJa?n(O`i={)h1}!i@SD}m^+DUdm^C>VkGBP5z>mv_C{@HWX1(obEX+BTM
z$OKJ_`%}I3>eEOttQ^m;@`{v*pSk+;iE`sBkBz1~orVrInam>($kjjUZNiZ-c=V2p
zQtqoVB$VEL81M=e$kXS)W}W+aIVoG67OO0-^3(P$qmnff7!jK7B~ZX6^1>UGv9NQR
z0<#6^nFm-35}NO@XT=Ji(K{*@I-v51kf3Fw1YV~w8_wyIEB{8-G*D#-qpo;Vu0)kk
zV(5-p5i$?7G<beF8OEbkD<Ab(@EVC9Urjq`CLKabkg3b3=m90rWRJRfFIDR=oI)e9
z$@0WdS0E0n34Y-|NgP0B;rkUp5Als4*K6?!xv&14eRQKnHk?E8WMdY=$S^3I?hn<z
zHybQ8w1P!(<pq7xX2cCE%=*q3yuvD3k6nUcf;pxW5c42iB13XO3l8CIIl|Iei-xdd
zJ;puL=;1ZQwB;xq-Mbym`W(th@zrsrFO#u!>i>?2_Y@AL+V{Vf&l*?tzjsjb_ZyOl
z9xJ98P1LG=Z2xhg5WrAE3N)ox8Yw6eV%0~RH=t6&rapx%Q!(uO2e3soaN^TDy_5ei
zTp1G-r^+PpB8h&nLn3g1F+!O8cv#@|q|kV}o9;VEBS!Cpq^>hNmWgLdH6Nx+r*@T$
z1nBD*<cRV!`#>#oEGo9^@h3s;D@M$6rAh574akN&DMUg~BY$HasPIR!2Ch?|f=sNt
zjG7G4f_lit-b$yvq9UuSN+!<ii`h{dqm-p6RVTPe1W6=h7;y%6>z~<6c}Q13!gR|r
z<N<&fUAmk`bO3a4p}Omqv*!m54vt;^&Lzl*B%qH5$tJ<<(u@rg93|T9Uv%kMk%&nK
z^bnlhy4%Zh@I0;=&2~@VLZ>LMwlf>EN7s-hWQ6vFej#FACO8+%5=deGEvyXs`9_TK
zcX|S6THw5HlDj^#Hgzw_Zf|;}BFWHkJaEH9Bm+qV+yMQc<qz<>OQ;Zir)HoiadTNw
z7$l{UPNAy9ONMZ6bpK-KLifX%I`I1ppd?AlfkMXS3<xF32EVpdGKC>50w0ymd%s8#
zLEU{ClnWFcnM9BbbxSK{?S`4hotiYIVWo5xz?*V@)_4Ne@!wJxRUM7$m8!uFYARyx
z-Cn>#xRA=drrLc$H`TEE6Fr)WgucdaairwtgWpZfgR00W6sTGUIGK|uoUP&$2PZ0L
z_lv5fIF=pGveD?&Ff6PD$S<ka3TN6xG%e6%_UHY`1=-w^v!}Fs3<Dg|9b^xrPqM`*
z+wmFPvU#KwHqc7PxrVz}&&{S(PJ9rH2~N5+rV=T>aDa?qaw9yjPRAC>oZEd?t&w1`
zt6O>O0S8AYc!hE8aii__PliBzcZkwkp0p8F<RTMXHIr<{zgI3av6OX<zikMV{CJ`1
z4iaZ4X(-=nSt`k}wRh<_Jxq9)s<K>T#;7Rh9DS$GtcVD)nn$Rz(q0D(=@Xd7*E6fi
zEvoixg7gAfHbpuMH>66vFVui>Km{=uWJjICrZn0_<;M>BWJBCWY2ymrtc<sdRozuM
zNy${GuU$1R`cI1l>$u`_qMk}6CoQ|2BW$Jt7!@U^?rBA<>@GDT5W{Bj<DNm9Q}QoF
zQM+B;K2rKl)(!tCw|5>^^9^vwIejNj?0iF}yl~Q!O~APdY{LIds@6nt<{`jqcbH>s
zf=bnIjIfQj;x>bb<xTYH-;PQ94<+#N4!PYpkN}+?dD!+Y@-oM=n}~&z>7H%+eEB{N
zGVGzwDP=d!$Fib=(1U~0f3&&iLvPvZpzB#d0NHLlZPNGa!Etis+>@7Ujgnr;y6@e|
z0y0qZ#PEyAGC#@qX9h0~Q+7N_2Ob?788xPc>8eF&KX=J}L!qU76LzkoQn0D(HlJF=
zXBKNg%&2mKJAHnA{9qPX6bHA=A{iV&Ys~gJY-n~!)>ySXa8jH4X%RUIZ8V={Hti|}
z?q2${{dg@Y{n6^}DtIj-(+bB9c3YQgN4pdm-XBxAeLj0k_-jNUqU{`1R+-D?Z<e-a
z!y}k&+X7JoqoP!#pEo)Vk$k)P7aZ^ul5}lrncoZGl*o)hFbXi!ml?pT@XwaO)+Vxd
zj&OHDnG;dztj}bRH_wULM;GYRNMpF1Q0-^tW=yCCTS?gpVL6VEB%c<LkVRW}kM!aX
zp*x^#+ZF=&&b#vd!}mB-@&VP5Y^G8q+F)V5IDV|(HvuQ#a%`q2xDhOp_bGmpZ&>t=
zPIGd5O`>V6vEWWC?n=h5iC)jd^-X?stT8e%EtqvR*@JWu%8QAx=^-|GHjIn2tglX?
zOLn#J#vF(obfVMp;|{s2crj%AJd^8TGvO8E`JdDxr_xLuS{&85-;z3M?$Q7gG>9k$
z2h6hvjm(}+hz(ZC8p>2}@p(FeF+ygAJ1JT+f%))NdYk{ci0|~&90Q&<6;&Jx^pg&|
zZ;X^tG>`16PduKK1*F4`t6LIIgpBbd9q;{G@(eI-JJ0m_GD_=-hBTFw%iXYVYz3DQ
z#zw9X)PnA6%A6%+%+IZKz~|5H=Jlnd3%quJ)l|KvA7LmnS^wpA$_M&V`o1ID;Joh4
zqKWba{=TxYU{obrZ2>=pMeOB(95a-tX_IV^Uz3u(qar+1ojPxX`wwY6?8k3T2j3?w
zA?sLra6#i2H+<VGtsGnOb<y>A0sgV7wk7wRY$yqFd?2DIEGH5Ke+J>&`MopX_sq53
zr*3g2-gCi_&#JliiBq5ZD%GF^;gEWZqHW$`ys#c0Bz~O3x8_Z5oM=Air}`mV1r<bA
zq>Fh7#)x<{4~kMj1JeJ>)QKpA@*9JG`HDqd82>!M)z68cq!V{=?e*6R8$PGvEWp&$
zQ0%z6I!3X^lOvijJA1#{vMeYeqeZ4H7GG=DK{EgD#Ci^5U!~M36-^Lf_3u1aXEmNj
zlJPaoJKmzmPlNNV>`T0rK?0!I1tpjM^3je&%=Zfdw>yJ+XVciXVrh#mOJTYbyu3$2
z$XQm?#<2(i;g#XD>rJq}F2BB2Dvo}%p64Y^csOIe<|{Yaehq-bG?GwgSIdU_j;vy9
zT~ERd4Iv?C_NQphsi-)(gG=8d!L!Ew2XkbilDpNf?@^%DTQP)7YUUh7HdqnKP?#NW
z&mOR2d|c7WktLFmk!q0pLxxeeFY0aZ%)lEMGU4IbNdCm1563Y@%01$)lt*0A-akRn
z%=fe^xp%ge1VtaFkB8-58E2?Z{T?;4#S@goP-iTyty6p@>P4Rz?cLq;_{;>RKGqRZ
zx;VzU*;^Y!Zo-)sF?M(<QOb8WEIF5NOh!*9S%zyHcq5klQNOj#tj2U2>xZ{waJY5R
zT0lhkEJ4?Y{jy{SG=7S-14bDtzuiEro3?#nJ76HKtYa=bgH!xbEV5c>+Xih)w*rCu
z=`iE%fdes~LZof#TI{Xtqro%;d+l{Wq+deD=HL9PkHA)-986|UhZ-3&-#U96NTdEX
zyAq1h?+WM%3~?^V2opi)vpj50T)`;m$}vRa5m0NL-l8|H-@KSqx2ZMek5ub}z}s^d
zLvF|rBNOjuWc{^^IL3F6yh5Q6ML0Umfq#fVmHWJpUIEP9O{$Dc4{V(XPa(1yD;|PT
zSizLq(EnNdUG<YXVaZO8+Xspw|GFgYkd6|R`SLzfW!5f3Nnmw}k$46)&oKD-Tv_$|
zIvx9irTQo4iRr1!dJf6N`RzwTTHjWM-+Tinrk@PtS(?|{Gi7C3#xkKcrOje9Ba)uD
zZzau<Jw6E#8zn^z7XKZetF{i9H&4?is|fFYO2!qrZ3|NAzwysF*5YJ#gWrGQ{t434
z%bG8z2|w!>4ud<o(0hUmrm9u~5hATRb~xELALH|$;N+a6kBYC9zFA~A^(y*D(z8s}
zl@q2f+Z)~x{A(?$NC`a1dzY3F4j)yPgiUkKD*2eho1y)E^y41vx^Y$RZC|1889xy(
z2Vp^(9^by<&AWyh&K>_a+YF|*l6|e~qc_>oRPRsk>sy$!hoxeMbFiDuyfpvne2Mq?
zLhpGYn98P?qcn4h?Bx7$5d$zJ@akWGqA2AIk@EK+01<Hp4Pd_#Y*+CEn&&bf@)(xt
z3@lxF0xQhezoSf&5Q1zg&Ve|BD!v5jxP$-PDZ^u!bEvtC*MUdBP<wMG&xy5_rubO0
z6X5Ty%*vB*vit#MSYkT{c$-{l#NGjy;VWG)ho=%N?GA(pY)DFhE@I7xXMgO<cX%GX
zT5Vz(E<hLstyxSvNNaP$yMt+JF`;zmwMy?Y-m<j{XB~;6AE`+1I?x^p#+|4+Bsibh
z;BTCh@l(hyXj7)vnBK}P3o@1*zu!S+L$}Ot+58kgbzn>BZxO2I(wHosgU-1U;L28j
zv~rSIeZ`*7UG_asoQKPMYpAs1pC4>K6`#CE86X3-q0s1~AF*r+I($u9ksw+8>+OVJ
zYYV|I!hain;|B6>>z_Xm3HE*@oc0@f=lAFLw8L@|rH}0EuuZewYM%b@cAAv3<xKif
z@buEgC><qTK6bsWH9>H{i^lKQw3i;!o}7%6->F`atFB*XoPsECkP*9Jy)F{ySL%CQ
zmS~PK9O*E;4Z^|ob-lgPF|uI@3-XsZP;_<jXPTI)*=Na`3+FpQebieFZ$XcI(O<Sa
zy><l8#1Bf}YTzqEO8mb-36|@&1F}uQ%jW5U!A05;a|oNxoBIWo%P!HbwC+F>Mf7Hr
zp>(AIEfEF2#pZrj^c;pG&PM~((eNiYJu(0}Iq&FIH2ZVoa8<S3xF}i=@`VJ8I(8wo
z`HNkv;v%3gTpNj!8gLoQ5KniV_Ra4M10aI^(4oVbuQ{#f*#zGs4eE%d`oWMpYtCa1
zhHP^QgV>}ly7S>4j(la)KS2BD4vJ2Ks7xy66?34ZAXR{xp6|)3W<is57=+Ooz9ITZ
z&Z#LQAVd>KH{SonLw^t@u^wx?>57i>7nGt6SEw1q5uKvoihP;yC4Rd?mwJb^*-o)w
zubXdQiNe@_I^jgbR%mww$C$Y1(;MVq?dlDIL%!cc;EMJ%k$KeydB%KFUaZ&ZR?u><
zuAJq)&*bJMU1wFzUY&6Ym^ZA6vte>9lwghPRhz(SS>UlqbKSSH4c-Go^M5<3vG&u1
z5n<il-iTan4f0I(*@ij&U7Lf~f|Qo6yR_VA<ZiU7Efmyn)mLMsn@gKflm;!4`^$Zm
z(fsqIBGX*<m~jn1&9y8Vn%JtBu3jyY>j~gh<l|^dMuUJz5ZyRuQEOq*W|swLyq!K2
zRF!*4@Zr9m|7Kp}OSS9o$(*2)7&M%|slpd3tzN)S>BnnR`80vvpPk+ZokGulu1F0o
zqDe;DwaE53TQ+PGfW9{{r!W%blnl#{*OOCx$<zu&Mi+bu)RK3h-C^dg-2pUh0d@6(
zRM~}NT%;hmZCMr~^AKjq8~&j+-^-9&UR;?r>>fX;R9%;#tUXa&{gxjF<Aazw?jxiR
zazPhpS~uU>xD=!xmr3>33^8@FB2k*Wfa3@_MLWszdL4<UqTL#?+jH?nkIVJ!rhiYP
ztQ_5soy++{4Q{LjryUk_wx&Kw{z?9%H*=8tQFrZiK~PV3wa;&5%ZBiHy%3o{JbZNM
zOv2IaLqi*$_yJ}F(r|j(_j^x9rp<AULPR2boc#qCQy@84vP9Xtb-mpZ;Z;-F%iBe_
zp{t}Q1@ZnsK30dr(W8G<1|j>WIOTij{xKfWmywe1t4=&QGa=nzhe~QP+P3JOzHR(B
z`as}2RI9emDZeJ<Hj`Gn=ECN16<QX)XJAz!8||W3;Z1aE<-_$~ER4cWUK1fytvA%V
zHeT*1EG&0OYzi_O^ac*+>-w2|@S}g+GP1NB+<dq2yr;J9qZu15cIx<FBiPLK#kf}u
zJXbKI2wfl2T`-3UjG=`0)pW=8MqrGd-%4S&!=|QD!s&KmPTPc(<X(7aWh5pR%*#qy
z-dV5*J-=G@hL|XOm#G+7CyS8b=9CLMbR`}(Hr>NWEDF571uU7_dB2EtR>Ls@wS8N=
z;RxX|Z3c%vI8>mFb012ab|w=S^=+s~vv+pr?E;leB1y_8N{7ri-k#j=8#e6|g^B=-
z_>%rm*{D+WLe&(=8#TBYGJ9;+njcm$dW8Nj1mrBM%Zj5|;somXS4i?7f7Q=InRz|r
zeO(>NLv6>ef}ZEhLv>G8xivE?H&=PcW6>MsaM0q{)dCmt@7wc*3)%))SZ(sYsAIpj
z?_GXy(SEd^%bn)6U^-i~^Ok>WxIFz+95QBN`hlRbf=Mf%I8L>~WoEfQC>%Y>di`pO
zecRF2Yg$!$C{xFgi!U1>OqostDH-c>0TNY+V(wV9GZy8qJ%)<4Amwj&;C@$mfqXEy
zj6YTM{mDTN_;AUCAL&~jLy?hb@%E~=mmB40LU@HfQo_OGpn05j)_OAhV{e0erG^$)
zBA(??SePK*-}0d5mK7(%61-BR+(AEBKvc=9Ikn!zRMn^55%)Ts7!lqNx9Jw@KhpAR
z+Nts^Zq<}3o3QPuPnpMlN_O11Tkk`Lo~xtAk`V5?K^6+GhR+7yf7zzQ6unZAX>d{4
z*H1$d|Ka<bs06#ED2p5HojPl48Ykkg{3qo*iLOB>?OugMR@2Q46Ew$0s^*l0AS(#y
zCNR=4087Y%V-4AKxk^YK(NjL9>!GsP9Wp=;G#QPZCOss0+V;qZ#I@Wc`JK^>RgmRi
zO_=S(z-vq}{4)0yBkq+Zaf@v;LeMHY5bLebhNwf&wB5iIq1dV|fiYg-0){dl%$dZR
zaP<w_yeWB)hA>#VQoQD0y+Hd00GFe)YbAe^Z49ZE6{F9qz>-lvz_oyGh<SxdSm9=o
zk}%^-1W-#y6`i#*yN#R-t9s?VCGozjP^kFKK}*1U9@n90W19@WI2dYq5zJqq&<3{%
zO**|?Lgkye6VvC40)t^AgKwYo_y-=rvGMwWRm~t9)O+^)M&gSbCp~5iuyKct!wD)~
zatYu~b{%XhYzVC*cFd_o&&Fb)Kvf5gns<xI)k5e-lFLuo*;Qd?PS%K?@`jhDHb)J6
zV1{bPil|kbK^7fLpKYbNdRn}f5W;Yd=Mr>AG!dtb-;LrEs`$q640@X;$e>5Q57|PA
z8nzv)>k`Nkn&;&U^0`78wpjq%AMC`%y!=b@mE^G}XbiG|x9kZH#^wC3o^qgucHO$`
zqqCmt^u=QhD&Tp--i{}bD(Tc(iDPB1HYCCZOHtGg@0&_#GuBm1+UzlULej3!*6sD|
zJENm|>Q`PJ21c9V0wnD9Ov3kaGCr)fvkK9yfsy0F^DE)wF^}|ws26VD?f6Dsyowg9
zPb51tl&W;d8;d+)a4$E2@DRn!swZA1PZOuAsPHiC7HEN4I>yvFwe|;f`sv@eLVUxL
zRY8qu92d_x|AB2fjC=8z{%>{woSlK;Y1|T1Sc8l+jlxmmYcZzDysIKN_bMt{B70zM
zXXci?24!>!K<E=5n*NqiZPEP9;}su;_EXGfhFRNN`7uTw<}g`o8+?Q@-RxjIgL~ec
z)5J!z>~To4NIyGF8SqlB-v=oUYHg}#RB9Qb5%$qM2{fi^LgFgINe=E?WG}Fyzh_1x
z;#-|?{1KmpEV`I+K6ZsI=Ofmd4redi1xN$jdMB5R$a@XjiLX>r(=0|Z;3OWG8EFTE
zTy+?Hn%D-}HYIbo{9C^dMv}7W(!ZOHpSkeKi!urW3P1T8ao><Nblznb3hQ`0oY68o
zU!$xa>X8_t%SP7V0$#k9xEbCA5+e_<X|l6R48}s3;}*t$+YM%1%F2~&yjWNp+?sY)
z>PLWP>MK8@(kI9E5n(wdyefTnCJSR4xj&@N*rr(6lxz3NsF|2r`3Q$H^<UI>Ia6!<
z1*~Tzx1Y-gg0W8x%<E=iB$pC6!*@RNkE;eLMiX6g^9X1pej&yPKTgK&8#H|x_h{TT
zzxCE3)=;dce7J8<W{n#Vc{_8CfA{6;@P3LM`ExD8{TMbBZgp%r7PLJ>fZES*J5UOM
z==$a}I8**wpT?@M8z<jrDK}^R9$VRb&%xmcppm1iPB7R>o5dRJA=gr-#JRk37f9mk
zv-zjvKKE8b;EIoB=7l7g!|p6}`j}<!>)c&le%ED;>y~9CJf1rICPU=;&MZ{gCK~XO
zb&TII)HyP?L10+?ThO-UO4d&Lc2G`ET}NIyskN?zsw5p4^qxTB&E5={w$VP}UfQ&o
zXSXW{)3o7rVFnhd=H#7Gd<3DHW-+k|uvXVYSqEG7G5}c-sFz*aT9mSON4(|5H_D)w
zea?xFJoKkc9OaEHC|J;WAinaT&-~T5Q3?}#P3AlY9Z(>dv7e?~N}&7x;dN8uo8c-c
z^{DJBTB>r>;-=D~E+J8`^6fwg1=g~Ml^PE6=uVRT42a+-ypJ*c$-?vV6Fj_gGwFn~
z9Zion-skN8^JQ;Xo9i~0`fZV#-s@~>=rLglVKQ`Nj}A%4Z)Prl$%<6x&x9OXSv>Q4
z1G<~I96(nuFqBe=XZPOGr!}(}n}NB#KJ#S|wSoIjd)VMhHKlwqv5fvwl)6)FDVY=s
z{ToBq4W2us1ck}wV~WOaezn$&&*@u|7<_>|3`stTN}xchZvC+j4_FSs<f7J3lCPB^
z6dC`H_Um4y&Mg!_IUvl&7EN(Aoxa2)sOl}7dA1i1=U3|<K`CZh{!||c|0M`Bvoi-`
zc%#C_UKVBx6B9+9zKE*R){I^KdR~*w$C<b*VSuQ~KTUApCV&8mSU~NG>A$LbWHq1b
z3KLX`p@*n%>WRVxvBQ9d*pgaBAC^A7o4~fE`v5b0Z;UT}Epn&YbJ#hEQ9U*;dWA2v
z^{2|!E@MgegzTq~Vj7o$SXmujL>QYW``(`y*buW=T|LVqrzQb#JCLF<sA|@7eoc6z
z9!8;#<*cjkLVLd(*yet{dm;@JB6ypzDnu->G=oNc81UVgli{~!<ew02s6KZ5gl@jq
zz!&&ZOrTyuQBdI7Z1yXh>K5w|tG>NGBs$0upT0Tt{qS<moGBndmaB-cKto=|4z0Cq
zG@k97FWyo~#S<^UdhU~~P`=>!v7IkyGP5h%pi)A@!;~BF^(!M3$aY_OkcArrB4_Hg
zy}F8n3w3F!ACisS-PZ#XxgFU0XTzYugzr=8L$00K#cfK4-|UlxQBYe1<8NN|jDVeT
zynQ)&SBaZiU1A_aPU{@W!4*gljME;tM16l)N-<z@`Yri!->Ge(1wl)q+S*rtJQAy0
zjr{J{!MA&3um9ER7ouS0(38%MWn&p32O~Y`hHR6^w&E=$zSzTn)ii<~f<`GGH{iUZ
zI=nkI9fu`ju7KKN_M_8Ve5LR29fcn1fUkPI`!xs){)%CH<H>PeOWR(-c^Rf!k=io=
zZTD<44xNt*?`JwbY}8*<=%#kK_2Ul?UMwybw0391K6fYOP}{g}ew%}2`eIGaxWm9}
z65r=lSkT2l0=E{FO#857<v7Rwb0@*6K09vtituMf=(3hTMcZGEF;g6%{95X-E$+n4
zjIbomE3^dw!s~%zFiQuBdX@&|KJ_ji&;Cvj1A2%qL=2ZG@r8UhHhiSX*6G9qa1Kh|
zf!YNPm(n=)1m*+ORlEw+E9Mdbch%X_R53p+=$IEnLiH?hjGt>3_&o~XkSUk+(nZ&L
zr&E*fXKPUczE+&#&8%S#J^4Fh45U(j$xA+lN?z3fd})&Df1Naxx*`SDac$*c^j2qN
z7^@f5EJq4U!W|Ui8D-H!ic@WnL<%x|XS@F82=U$12Haq<Qjd#64akVvnDN52Ftz1-
zt0I28XKZ-Yjr8}UAn?=o%u{dZ>zkWx_m}7Xy0`n5a<V+GLJ9!HVFBww5XcP@@YL-9
z3i|y{=ee+`_kc1St}3M-mJdY1-glE6OMrNFqBRadjrW`0Ck!E^O{W$y$5U~{gT#Jy
z#n35eqP{VWzaM^4u6x2tWTB5-^U<0Ef0lC~2Yuf1Ymxex8g&7^4;sD4W8I$3fC>S(
zr|rvl-L#^;zP`(AJr-PSmDlb@|J(2T$*q@V?NPmd^_XZ=wqHc-QlaNnK`EL<m@`tE
zbLe4k(BG~`IoA-YJXpvVWy-JA173A5$D1Zc(2h?Jy?yAM!Y_A$=!q_<OKJIFWQ_Es
z=YO|#z*$pcEijUKyTFAQ+R#2Tk=b7Xvg%TQ`fnaQ@DLGm*5rBbSRy5+?vQ-ns!=8y
zk^10i`hbXVHauZ~qMLp(YLh5w-is3o)HR8&MebPe)Wo0?0eVQMK?1K$>38*VLuQmh
zTl~D!p-P|50!o5at<_6NL<DBh#J1nTis~TB1?0j6rb91dOm=C-gdOVY+?2<=K06&~
zLj^Ni&%M?YZZXjk3}nFmpr~FO)mKWKY+KCJ@V+=dq=Mdox1a&3w86H62W4)|i%R6I
zR`8Yq3v3dDvTlGF5%5Q3QWaU^-uOL<-%L#jv^G1Eem$|WB8@d^Zv<r@JOZMaQfCWt
z;KVUw`TBOx%*AM<G-Z#%N92YDD2_t8KRgpa53)}vHSzbjU=K`bPkiK%Q8l=i1!Z)#
zSrav}RY*v9NT@7jw9+5#ipg<lUBb}quxZ-d!^Z(>Wm&4M+fhCN-ji#P6;wLp3r?4h
zc?jA;YILRG68MLZ;Qmh2y)AyE4&|Jq;@^L$C^g2d0mA#=2wum>bKeGjr!LxXK9giy
z?m5ix%nZhG2jQRVQL%&grX>#qf<F8ji>IZvEU*8&J-~NT6hn>r1_@$T5xn6D6ZfF#
zDRTmmMQxmxvmkIYjLfWR{rEW^*7o-4oH*XvR%F`M`t5R2W2daOf=Ikalj>e}P5L{e
z<{>BBr~X(chL}K?!6!CmX^iCUBlIr?gr9B6_NmwzK_JUYl(iamwUm_7?{poDu8j?|
zwnQV`*MWck1@Ey=bpo5*H7a(fq6jijpDMS2=eg=%u1>L)#O;F8wPB$+h-!xBV)k#o
zIZ;sFr#1_NTUXwJT^i*Zk1B*l-v_~E)YKDk+vqbYo3ym-+-fFx1CJT_ef#kDLCU89
z_ld^(^1~U278j0<mHNLlxr5w;V(lAvri+-&<YffP&A3!I{D<^qzMisdRhsrC0w~5S
z-YaSBPAL?&gp4rjP^5RDhkwRO<SbfsWF}q8WM^;LPA%zzD?TO-#o57s^+ykQfa6#d
z(-NzFzuac!HFB)bhbQx6VMicAEgL!|y&hVr_He3~Bes>UO~#O@VbOg+?9ywZbYzZB
z|CBfESPDxuX5*To9`83l<ymuiJY~Flf@!U$b^Pm6zHJn(*2lbX*;#Gg^(=pv4dBev
zSH#R(=60jveJsDMCsIQH+;?y~v%3D8f*F$qO|I|YjuKaWyhJTdHz|E^rAty9LGaem
z(dTVBBuyUJ23G`$<#v%1PhlmENRm@ZD=($E(X!jHwsa9ZsFFap@cqKro><(uz{Yq*
z`r-8PhU{bwU*#5J;P1g;*uuxJVWX{o{f>vbv|F;5(jooZ%G~CDXObzEU4?(<bckgl
zZ_CH3Hj$u1#YzD>)>BHr2=#RL^=Wa$QS)not-^IPdm;|DWH!A&)fw_Z)0%858E_7L
zVI(p1IQ~WltwcNzU=rg)ZDrN!6RDA0sw~$JB*z-J-?eZt2dj!XYM9BpQ*q7=DjM~P
zT~3)(kaWg05R5UdKZU8yyBOP>zRvLofxoFd=tS?1l>_&Pg30?Jz#Kjn^;kPWvM2+=
z=GT1cs0jlUtnauETNrb4oqp13k#EGB{6OFh>qQHe&tFYQ_^ZlvrCP<f8G*yc$Bur6
zTt67F_|)jfO7M@kl*n`b!RuTSX6Oq~MbW2?Udn!Ew6}WyRTeYtTfl0iQ-naYzHWlr
zCh$E&;m5(R#z`JPtd1X5>gri`<#BWO$HQD4T=Y5|Ao5=?jyu`bO8x@#?jUJF+{<{N
zVr-HIxsU`i`g8#h5c^8hA7{Z;go@#K##IC!UIyGx(MRrjs`?<ty*;w;5uZIKZJ{uh
zz|1xUTff3-LB3-E$Q8u)*ZYtH8P!O9PxF|te0ridj@RCuT~`zH1K2-U3@5WzjOg%?
zf6wy@vFN$RA?t3A>(aliLn{%Spff_bedHNLcQMjA)U#v0sOFopO%AK;6C-jc=fxWh
zWTj2F3@X`RU>u`Jchsy}wC$QNoJW}9@li0_?lpB6^I}0s{H|EHmk+wn`(N8^Lzl;_
z#cS;24XVJpzQhXI*@gRRz-9y;*~L^m88sYL1pQ~%_Tb$c7X!@(yJLgw%CB4ny4f`D
zJy{QVUV?IzB#}&?m}Zc@y}c3f(0S(;wN%z#%~!87x=NYAoQx~a!CxZfgS={Vhqzv2
z3~luU5ygz{eVKcz0ZGq{ka<<kfc%4F<l0C$la+YJs)Q(MtSH$A@RX3mUprPtzK&}=
zZ7a9-EH9){ESw6YOnB#B^l1LFflA}iID70j_|BqsY)nS+<d0I&lC*QqUb|KGv!!-F
zo~{i)JCAS}fJ`mB(f8B@qFdr*;uDGhO4qVEWs{&GW70Lp;`03qCfJCTC5v+1{GQky
z=&;iEzSs@^W9m!UaQ%m45raB&%@Jbjsfj58Q5h8?$GZLMW`{sdPwt~$|Lt#`tIaUP
zJx4O7GxnYjo#PlRf|S$97I5!h*X8qIO#Zv^wwvEtA{{Yz)qh{>{3{qt>Gx<jIpPBj
zk%9}B8$?QH6kR$kyq*~3QT-5C&AR@^Rx{d{6tcy;WKBJ<BF7btBtYpYLGXc|XGqOj
zB}Xcvf-F;Lx15Ebsmv)7)#!!rgp85p;?3@zjoRkt{4xxarsl2*@Ul6stV4CgoYJvF
zHv7p+Lj=#e@19rb?^e14wanS-M=E%iImt_OSP*jWW>Ck^`|d=A`|?VDGQ@8z!SM*T
zgH2#!P^AgC3FiAjWmMipAI&Cmft?N4McI}Z_faU)NE1Lwf<J$5q3Y~uitfF?wWA^9
z{w&|K`Nm~7ZQ+z?g5tYhC-tUx;@2R()ZP)DuA#DfD(e00^f;^r(O+M<uL00Emv{RH
zisU<CB1p#6h$@<`97ddR|C0Fvt~$i@>d_vBDAvfHOh0DS6En(W6>uVv*oz(O3Zpi!
z2S5Q*W@|LRDy-<~RG0d>(5dXB8ke|OKttpHbYbS27O{0F!yiZv&Fb@<Je|~sSN5*~
zWO^UXCuM;bnLx(jxwh`nf&puHIV#vCgRO?jP>0ZqpD&^HDCCu6G~ADdbv?^yjWW!G
zqA3a(A*YMtlqyuXeoQWb`VCog4iY<xedc{0ct~u8P-iPWriR@A<Gj&&UC8}4bFiRb
zj+X1I?S5_QI|TOW9H;fUU{4VO6i5`}EfkKG2l*--Ir<~ptHrLBPKYME?M_xydBJCQ
zsh&5A)4!X?wBG4~-hFCX9#fUPz|(8L{CVIq6HgU%>95*VUh3$js}O}LJowfeMZ9T<
zlWp9!yJu{>i5i2=+uJFcnfub8=&|t+=Ya)h&6`%b@ND;9t&~!>FfFc0xYw8c^Y?fo
z^xn+_f<B1b9wSE76d~BU*&|YiU%7dFvAYO`Q2pK8{Bf7f1Eq$szP-h?(OsTZiF%_C
z%IlTg8<RvOm+aL?*M{2V4w0F+r%tM~EnN6{ewep($|~>2t$EVf0-+`<TwbMF@=9{v
zU}fjxTE@5(V--ry%nn?G?aaQ&C?;Q%+PW;Iu}_zGEgn`{BdMgpl$X)R6#10#p5#ok
z`!zJj_TXOVBMlL9PcXZ@ySDk5e*TXbh!nDV{L_rZ<Kq!xXeueiBa5>7Iknl@wp*IB
z(rCvOU)ySC_ba>8>8V2Oac*0+Kk39FRfRZ9)SJqetr@C|qeuTPOGYnwaT7npLvEBS
z@WU-P=;zY6bs?4yY;O(Arf+Dnz0OWJgrxO!E}!w}{SCh&oT@3DWw=o~qea*mGza8i
zk1Np4U@(%;-;|6(=Ze7Xr*Ilo=A1132|gZTj!W%gtrS)bO|45r_(<vt)_?Yc3`Q*e
zVb4EL=L0MZ|11xWUSWMIuth^)WX4?Ttd7nQnnV3ZL|u;BNgr127gPV5fyKqOB49k*
z*syFaN(NH<+%|bJyJ0Y_;Q?L0fsg;Ffk>l=z|@NX<#;o3U$hyFwEvXL6^c#iQxUG?
zzv9k$b)GZkCEeMv0lQ_RS4d=-<E+an=S-y@c`lZ^5xNZ17G6O33cpuZ?*3(w=zV6q
z(GHQoTR6SVI``E{`#t_&IyC2~LdzdzWaG&lGw8nV=Wv494hQ|*LhZL_*y@qzTIzGm
zC4y{TuUmpLT%u?-*qtOnUn3m9$;Ljy;n->tX=V4ta%wUE!(kREaf%EohADq<_2Q|)
z_fTzTXo+Tcle$}L68&(WrgGt=ri!}{Hb>FDI7y=>d(yEP8MVm1oW7wn*z{b&$t`=$
zE@2stU*32*@s9yCF=XEVTL0y**Q4{6M}id*hd<Xxk)v6L!ISJ99_7?-VrLsX5MWB|
z>NBnPZ886FH5O_;vq6O2d@y0)1*+In)U=KLxrX`ebTJYg2?utD=?C&n^DhQXqy2Nt
zf%Zp6MklMhvb6XuDgxh*F31hE(`F61U_dPDM6bUqI5k2hoxOH{m*_7Y8pi8>hJ$AZ
z&!(yUl|*5)&*Ty~jmA;cS?sTwLmuk3NldF3n6(Hs=-V@MJEtkZRFJf>!@O$CG7wss
z^cy2jx)?)d?xd=;?Zcll*(xxol``J@ltTrz)oUEn<J+@#F^^V-@YzVKzKscPkB|Wu
zv75}a{U<{WG)tZLRpp(x6Bl8hWx~I8`p&rvySin5dOIc(;z+PnAKo%Q@4FrB45%OA
zXN+U+=dT~j!B0?4`za5K7e6py#JS`g^rEnCk+FA%0g?A6FSuU7S6vnW<p8yWgJKnQ
zuiiRrDT`H{ew_+_0yVqwT3c2qOLTanKHC>G4V^|V<j{vd1J_I0Wy5W?(y6!a4}wXo
z9iDG_Co(QlxS<Hocze75Szx~2-96PdE8c)Luo>YWG6GuSSrJ_f<Ui(?NnW8Rd`ZOL
z%v{||TA(Z)<}m8D$ERCX$ZN|A%e}G5cU2%8q+iYLY=t0L7tCN^npG9G_&Ls+$`V{b
z>s2-M9PXnDun6l|ybhT&Lux~1WNSv-6DTz(Bt4j`YBE|m)Nat|OqvQM?rQWS|H`x-
z(Fno`G<(WJNG1Os*2kLUB$V^`i1{)Ui(o7ib-l#BMzZYoCyNgHo0<<>tP8}gTCN5%
z9feH$|AF_9HV7DKYRox*_hQeA!#No!eh_V|T)_eB{;GsK#4A_o8%s-T7d#Kdm6lH}
z=@SK)=r%w|Z0b%}&Z7l4c4_!4dKmaf+OETUt?+CeEiA6z0Bw+gTU9^Y1xye?@AYG2
z`Y7UE$kO+t-tFV7n!2EL1U}*`0)B}SgTUT~MSOZe@H8$RLZ93XG&Kv;;0B@Ot#z9T
zHlYkkOq1nmRjVbdF){r!#n>5zY$e8k$}V@4MBk_ojzS9@MSs1|1Kh%kbNN7F5<jM=
z9w6ScfHFE(9FqdH(x5<|^^e<MP7kZ}V9Kw-N?Zw+qP4jWB0b+qzOR-sj0~!!5VGQ9
zGJgM)Iw&ySE&cykg_l?P-wcBdva3~5cWA=Dg#Nkedgk%qz(ZX-rEp3)Vfh8FJ#E$&
zg5FNkzC(ZX;Hjb|uLx`(O@75yt_WRl@m4uByiI!;bHvaOir)R|v1MZhbaM<RX_@i-
zyj$*AAZT2%@XJNC(qt!(JPH{>$8MHzlYWRLyn-MK?1q3ZaUw`P#COkxA^lwDxAx!N
zwtxKn3!x#`RI%+IB6?fs-I|!R_dOM~kv=lk6MBvLJH)@hF~1JT@;5Y8`AZ?AWix&|
z4~CD0zv{KrxZ?(bx-y8>)Z|V3@r%v<%ID`S%=~~}@|s7kEu@|P2S%*6zwoO2_1kAs
zL?)anhLU}l!xh}OSgHc;f0=&2_w~{5kH~Rn2f2;sF^1|Ba>ImMcbr#Mv}(od^le~c
zb7Kkp6)vu#&R~50%g7^w%R9(~S!3~4EYuB2Ss5kTJT#2>ZZ*r{@<-?cr^CxXQxY3W
z2AX1GCI2_sq^5BvqSYC}zv4Uaom;e8+M8r5f~ir47~V$lv?{bOy6Fb3PUkm;#9Q;q
z!8)n_1$Rz25GzTZ6cX;?*9DU!CXaB($c6^rw@l^;oM;F!qzD1Zcd$=F5a0LS>^jK2
zuvt8>iQZrPA2lJuun7&n<;kMc_dr#GQnzjd%ZoKzH_rJ$UANBm4<5#5pAF1Y-oHzX
z>{wi0E%VNJiu!fZIp)cQow5$hl-ZtoC>ta|!|P9u5Ov>SA`D=h_FsDK_cMYXt8Z?O
zgl4&p4KIRR?g3#CShqq;?--w$;z8h>_DT1{Jogjdy*cmShUa)s9mQ4ES|5L>Lr@y#
z&ac&dmO=QRVQd8;cQ?AF9^~5GD2JcS<xlLtl=PAlmeiGIR}_|{e$nxH!~jymlHdpC
zKdd8vT)xXwSxK+9wpO11o<X0<qcs|bmvmLPiU<Sd9waLe97gV+{dhX_#<}f02OtKs
zA0<xx{rx1vl!$#@sdKS9tycu8II(Zzk$HT)o3_OrQ3|*2rXA=0F{}L^{qXR}*wnPY
zq~hb3Djd0Tl`m1#9aWNPU#$>xX<kL)zX0E)Jt{QlhgEic?x+e4yrh6>{dc}4zux`i
zY#tN7E4r0UlfNul{^56p1G8h)71UlO9n4XlsMBWq_fxWmO-JO0(u5QP8If21{TonP
z%I?%^QlbX>*sk6y^Anddm2_X@ZNlOhf<FH=ezJk`B$u$1#4>%2%n8Mo*Cawi6Q`_f
zH>CB9Wi=9TCOs=h$)4V~sQvhmXRaLicP&u0;?$wH22&7@=QRKp@La4ni<U0{T5>2{
z#wGk~T~lH5wEbP+dM*g6XVp|o5qjxrq{p{$osy9fGv`8lt?uvg+Ux5T>$ds+?CJhp
zc_sRNO-o2_^=g~q@t9!OwX*2Q>mezkY$mN%sU_bl2Qr+dO!u4w;l4Et1X#?Uc#jzb
zyc+(&FTGSD_21PHC&H&UMkl;1*1+|!o6ye6^&+&7vX^#|g{x&=kH{l*QNkyf?VR1;
zJLr&L&!C5oKN&md(B+8u1-2@@pVyEcca<5{bSXN=5uw)Bd@X#XPG=dYd;4pM#m)ZX
zxgsh*PHU$y>4nS?(w$}5QZ_=Tyfc!pIMYF3mY*$IkoY~j_ao%w5o_#hcJStWCCcAX
zRd6?5i#HWC_akc=QM7}{P0iUuQn35L5M>m;eqUHHxf;wMsS3i3hnk&;aq8>sNTZMF
zV{OyJll#uhjhY*`sN?J?HuS9TxKQtswqRocEKsIcIuAo`OXGhr*gusZYpq%jNoV1$
zS)za>7KQzsglFJsAg*xtGETVwmr-|y_CAp;Wfb(xIvcka9jpJ>@%n$I?)Cpu^!mSR
uuWgTyul%p^wpt%%_yG;^in!iA%fMD!;20-JZiq5pBsHbCina2VpZ*6JAP2|*

literal 0
HcmV?d00001

diff --git a/apps/web/scripts/check-no-group-id-routes.cjs b/apps/web/scripts/check-no-group-id-routes.cjs
new file mode 100644
index 0000000..9cd8534
--- /dev/null
+++ b/apps/web/scripts/check-no-group-id-routes.cjs
@@ -0,0 +1,22 @@
+const fs = require("node:fs");
+const path = require("node:path");
+
+const appDir = path.join(__dirname, "..", "app");
+const groupsDir = path.join(appDir, "groups");
+
+function hasDynamicRoute(dir) {
+    if (!fs.existsSync(dir)) return false;
+    const entries = fs.readdirSync(dir, { withFileTypes: true });
+    for (const entry of entries) {
+        if (!entry.isDirectory()) continue;
+        if (entry.name.startsWith("[") && entry.name.endsWith("]")) return true;
+        const nested = path.join(dir, entry.name);
+        if (hasDynamicRoute(nested)) return true;
+    }
+    return false;
+}
+
+if (hasDynamicRoute(groupsDir)) {
+    console.error("Forbidden dynamic group route detected under app/groups. Remove any [id] routes.");
+    process.exit(1);
+}
diff --git a/apps/web/tailwind.config.ts b/apps/web/tailwind.config.ts
new file mode 100644
index 0000000..de6410b
--- /dev/null
+++ b/apps/web/tailwind.config.ts
@@ -0,0 +1,7 @@
+import type { Config } from "tailwindcss";
+
+export default {
+  content: ["./app/**/*.{ts,tsx}", "./components/**/*.{ts,tsx}"],
+  theme: { extend: {} },
+  plugins: []
+} satisfies Config;
diff --git a/apps/web/tsconfig.json b/apps/web/tsconfig.json
new file mode 100644
index 0000000..1a0ca4a
--- /dev/null
+++ b/apps/web/tsconfig.json
@@ -0,0 +1,41 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "lib": [
+      "dom",
+      "dom.iterable",
+      "esnext"
+    ],
+    "allowJs": false,
+    "skipLibCheck": true,
+    "strict": true,
+    "noEmit": true,
+    "esModuleInterop": true,
+    "module": "esnext",
+    "moduleResolution": "bundler",
+    "resolveJsonModule": true,
+    "isolatedModules": true,
+    "jsx": "react-jsx",
+    "incremental": true,
+    "plugins": [
+      {
+        "name": "next"
+      }
+    ],
+    "paths": {
+      "@/*": [
+        "./*"
+      ]
+    }
+  },
+  "include": [
+    "next-env.d.ts",
+    "**/*.ts",
+    "**/*.tsx",
+    ".next/types/**/*.ts",
+    ".next/dev/types/**/*.ts"
+  ],
+  "exclude": [
+    "node_modules"
+  ]
+}
diff --git a/apps/web/types/pg.d.ts b/apps/web/types/pg.d.ts
new file mode 100644
index 0000000..01d2166
--- /dev/null
+++ b/apps/web/types/pg.d.ts
@@ -0,0 +1,17 @@
+declare module "pg" {
+    export type QueryResult<T> = { rows: T[] };
+    export interface PoolClient {
+        query<T = any>(queryText: string, values?: unknown[]): Promise<QueryResult<T>>;
+        release(): void;
+    }
+
+    export interface Pool {
+        connect(): Promise<PoolClient>;
+        query<T = any>(queryText: string, values?: unknown[]): Promise<QueryResult<T>>;
+        end(): Promise<void>;
+    }
+
+    export default class Pg {
+        static Pool: new (config?: unknown) => Pool;
+    }
+}
diff --git a/docker-compose.dev.yml b/docker-compose.dev.yml
new file mode 100644
index 0000000..0d4c5da
--- /dev/null
+++ b/docker-compose.dev.yml
@@ -0,0 +1,20 @@
+services:
+  web:
+    build:
+      context: .
+      dockerfile: docker/Dockerfile.dev
+    env_file:
+      - ./.env
+    environment:
+      - NODE_ENV=development
+    volumes:
+      - ./:/app
+      - web_node_modules:/app/node_modules
+      - web_next_cache:/app/apps/web/.next
+    ports:
+      - "3000:3000"
+    restart: always
+
+volumes:
+  web_node_modules:
+  web_next_cache:
diff --git a/docker-compose.yml b/docker-compose.yml
new file mode 100644
index 0000000..ec3dd8a
--- /dev/null
+++ b/docker-compose.yml
@@ -0,0 +1,10 @@
+services:
+  web:
+    image: git.nicosaya.com/nalalangan/fiddy/web:${IMAGE_TAG}
+    env_file:
+      - ./.env
+    environment:
+      - NODE_ENV=production
+    ports:
+      - "3000:3000"
+    restart: always
diff --git a/docker/Dockerfile b/docker/Dockerfile
new file mode 100644
index 0000000..152160a
--- /dev/null
+++ b/docker/Dockerfile
@@ -0,0 +1,28 @@
+FROM node:20-slim AS deps
+WORKDIR /app
+
+COPY package*.json ./
+COPY apps/web/package*.json apps/web/
+COPY packages/db/package*.json packages/db/
+COPY packages/shared/package*.json packages/shared/
+RUN npm ci
+
+FROM node:20-slim AS builder
+WORKDIR /app
+COPY --from=deps /app/node_modules ./node_modules
+COPY . .
+RUN npm run build --workspace apps/web
+
+FROM node:20-slim AS runner
+WORKDIR /app
+ENV NODE_ENV=production
+
+COPY --from=builder /app/package*.json ./
+COPY --from=builder /app/node_modules ./node_modules
+COPY --from=builder /app/apps/web/.next ./apps/web/.next
+COPY --from=builder /app/apps/web/public ./apps/web/public
+COPY --from=builder /app/apps/web/package*.json ./apps/web/
+COPY --from=builder /app/packages ./packages
+
+EXPOSE 3000
+CMD ["npm", "run", "start", "--workspace", "apps/web", "--", "-p", "3000"]
diff --git a/docker/Dockerfile.dev b/docker/Dockerfile.dev
new file mode 100644
index 0000000..02934e1
--- /dev/null
+++ b/docker/Dockerfile.dev
@@ -0,0 +1,12 @@
+FROM node:20-slim
+WORKDIR /app
+
+COPY package*.json ./
+COPY apps/web/package*.json apps/web/
+COPY packages/db/package*.json packages/db/
+COPY packages/shared/package*.json packages/shared/
+RUN npm ci
+
+COPY . .
+EXPOSE 3000
+CMD ["npm", "run", "dev", "--workspace", "apps/web", "--", "-H", "0.0.0.0", "-p", "3000"]
diff --git a/docs/01_inspect_then_lifecycle_restructure.md b/docs/01_inspect_then_lifecycle_restructure.md
new file mode 100644
index 0000000..3ade762
--- /dev/null
+++ b/docs/01_inspect_then_lifecycle_restructure.md
@@ -0,0 +1,80 @@
+You are working in the existing “Fiddy” project (Next.js App Router + TS + Tailwind, external Postgres via pg, no ORM). This project already has implemented auth (DB sessions + HttpOnly cookies), groups (create/join/list/active), and entries CRUD scoped to active group, plus hooks for API calls.
+
+IMPORTANT: Do NOT assume file locations. First, inspect the repo and identify the web app root folder (the one that contains `app/`, `components/`, `hooks/`, `lib/`). Apply changes only inside that web app root.
+
+Goal: enforce long-term structure across backend, frontend, and the hooks layer (API ↔ services ↔ client wrappers ↔ hooks ↔ components). Preserve all existing behavior.
+
+STEP 0 — Inventory (no code changes yet)
+1) Print a short “Current Structure Summary”:
+   - where the web app root is
+   - existing API route folders under `app/api`
+   - existing modules in `lib/` and what they do (auth/session/groups/entries/etc.)
+   - existing hooks and which endpoints they call
+2) List any mismatches with the target layering below.
+
+Target layering:
+A) app/api/* route handlers = thin (validation + call server service)
+B) lib/server/* = DB + authorization + business logic (“server-only”)
+C) lib/client/* = typed fetch helpers (no React)
+D) hooks/* = React state + calls lib/client
+E) components/* = UI only (call hooks)
+
+STEP 1 — Add structure without breaking anything
+1) Create folders if missing:
+   - lib/server
+   - lib/client
+   - lib/shared
+2) Add `lib/client/fetch-json.ts` (or equivalent) if missing:
+   - wrapper around fetch that:
+     - always includes credentials
+     - returns typed JSON
+     - normalizes errors into `{ error: { code, message } }`
+3) Add `lib/shared/types.ts` (or equivalent) containing shared types used by hooks/components (User, Group, Entry, etc.), based on existing API responses.
+4) Move server-only code into `lib/server/*` where appropriate:
+   - session helpers (get current user, require session)
+   - DB access helpers
+   - groups/entries/auth services
+   Add `import "server-only";` at top of every `lib/server/*` module.
+   Update imports so client components/hooks NEVER import from lib/server.
+
+STEP 2 — Route handlers become thin
+For each existing API route, refactor so route files:
+- validate request payload shape
+- call the corresponding lib/server service
+- return JSON
+- handle auth/membership via server service
+Preserve existing endpoints (do not rename routes):
+- Auth routes: register/login/logout + /api/auth/me (remember-me TTL behavior must remain)
+- Groups routes: create/join/list/active group
+- Entries routes: list/create/update/delete and group scoping must remain
+
+STEP 3 — Hooks remain the single UI API surface
+Ensure hooks own API calling for UI:
+- use-auth.ts handles login/register/logout/me/session checks
+- use-groups.ts handles group list/create/join/active group
+- use-entries.ts handles list/create/update/delete
+Components/pages should not call fetch directly unless there is no hook for it.
+
+STEP 4 — Preserve existing non-regression behavior
+Do not break these already-implemented behaviors:
+- Entries list endpoints never return receipt image bytes; bytes only come from a dedicated endpoint.
+- Dashboard is protected via server-side session check + redirect to /login.
+- Group invite code modal is shown immediately after group creation, then cleared, and the modal renders outside navbar/header so it overlays the viewport properly.
+
+STEP 5 — Optional folder organization (only if safe)
+If the project already has or needs layout separation, introduce route groups:
+- app/(auth)/login and app/(auth)/register with auth-only layout (no navbar)
+- app/(app)/... with navbar layout
+BUT only do this if it does not conflict with existing routing and tests. Keep URLs unchanged.
+
+STEP 6 — Tests + validation
+1) Update/add tests for any touched behavior:
+   - auth tests (including /me and remember-me TTL behavior)
+   - groups tests (create/join/list/active)
+   - entries tests (CRUD + group scoping)
+2) Run TypeScript checks and fix imports.
+3) Provide a final “Changed Files” list and confirm URLs still work:
+   - /login
+   - /register
+   - /
+Deliver all changes as a coherent refactor with minimal code churn.
diff --git a/docs/02_PLAN.md b/docs/02_PLAN.md
new file mode 100644
index 0000000..d7739ae
--- /dev/null
+++ b/docs/02_PLAN.md
@@ -0,0 +1,122 @@
+# 02_PLAN — Group Settings + Invite/Join System
+
+This plan is the source of truth for the Group Settings system and related join/invite flows. Keep the full backlog intact; only add sub-tasks under existing items.
+
+## (A) Backlog snapshot (all epics/tasks)
+
+### Epic 1 — Roles, permissions, and invariants
+1.1 Define `GROUP_OWNER` role and permission matrix (owner/admin/member).
+- Status: completed
+
+1.2 Define server-enforced invariants:
+- Exactly 1 owner per group.
+- Owner cannot be removed or leave without transfer.
+- Admins optional; no lockout/privilege escalation.
+- Status: completed
+
+1.3 Decide admin abilities:
+- Admins can approve join requests and create/revive invite links.
+- Admins cannot change owner.
+- Status: completed
+
+### Epic 2 — DB schema + migrations
+2.1 Add `GROUP_OWNER` role to `group_members` and migrate existing groups (first admin becomes owner).
+- Status: completed
+
+2.2 Add join settings to group settings:
+- join policy: `NOT_ACCEPTING` (default) | `AUTO_ACCEPT` | `APPROVAL_REQUIRED`.
+- Status: completed
+
+2.3 Add invite link table and fields:
+- Immutable settings: `single_use`, `policy`, `expires_at`.
+- Mutable on revive: `used_at`, `revoked_at`, `expires_at`.
+- Retain expired links; delete single-use links after use.
+- Status: completed
+
+2.4 Add audit log table for membership + invite actions.
+- Include request_id, actor, group, event type, ip, user-agent.
+- Store invite code last4 only.
+- Status: completed
+
+### Epic 3 — Server services (lib/server)
+3.1 Ownership transfer rules (manual only; auto-transfer paused until cron).
+- Status: completed
+
+3.2 Membership management services:
+- list members, approve/deny join, kick, leave, promote/demote.
+- Status: completed
+
+3.3 Invite link services:
+- create/revoke/revive/list, enforce immutability and TTL (1–7 days).
+- Status: completed
+
+3.4 Audit logging helpers:
+- API-generated request_id stored with events.
+- Status: completed
+
+### Epic 4 — API routes (app/api)
+4.1 Group settings endpoints:
+- rename group, update join policy.
+- Status: completed
+
+4.2 Membership endpoints:
+- list members, approve/deny join, kick, leave, transfer ownership.
+- Status: completed
+
+4.3 Invite endpoints:
+- create invite link, revoke, revive, list links.
+- Status: completed
+
+4.4 Audit endpoints (optional for UI):
+- list recent audit events per group.
+- Status: completed
+
+### Epic 5 — Client wrappers + hooks
+5.1 Client APIs for settings, members, invites, audit.
+- Status: completed
+
+5.2 Hooks for UI consumption:
+- `use-group-members`, `use-group-settings`, `use-invites`, `use-audit`.
+- Status: completed
+
+### Epic 6 — UI: Group Settings page
+6.1 Profile section: rename group (confirm modal).
+- Status: completed
+
+6.2 Members section:
+- list members, approve/deny join requests.
+- promote/demote, kick (confirm modal).
+- Status: completed
+
+6.3 Ownership section:
+- transfer ownership (owner-only, confirm).
+- Status: completed
+
+6.4 Invite section:
+- show invite code, generate link with 1–7 day TTL, policy, single-use.
+- revoke/revive link, show status.
+- Status: completed
+
+6.5 Danger zone:
+- delete group (typed confirm).
+- Status: completed
+
+### Epic 7 — Testing
+7.1 Unit tests for permissions/invariants.
+ Status: completed
+
+ Status: completed
+- Status: in-progress
+ Status: not-started (requires UI test framework)
+7.3 UI behavior tests for disabled actions + confirmations.
+- Status: not-started
+
+### Epic 8 — Documentation updates
+8.1 Update project instructions with owner role, join policies, invite links, audit rules, paused cron.
+- Status: completed
+
+## (B) Current focus (detailed)
+
+### Focus: Epic 7 — Testing
+-- UI behavior tests pending framework selection.
+-- Updated existing tests for owner role and cleanup of new tables.
diff --git a/docs/ENTRIES_PIVOT_CHANGELOG_AND_IMPLEMENTATION_NOTES.md b/docs/ENTRIES_PIVOT_CHANGELOG_AND_IMPLEMENTATION_NOTES.md
new file mode 100644
index 0000000..45ad845
--- /dev/null
+++ b/docs/ENTRIES_PIVOT_CHANGELOG_AND_IMPLEMENTATION_NOTES.md
@@ -0,0 +1,170 @@
+# Entries Pivot — Changelog & Implementation Notes
+
+## Purpose
+This document lists the required codebase changes to pivot from **spendings** to **entries** (including income), plus new features (buckets, recurring entries) and UI adjustments. It is the primary reference for implementation and debugging during the transition.
+
+---
+
+## Global Rename (Spendings → Entries)
+### Terminology
+- `spending` → `entry`
+- `spendings` → `entries`
+- UI labels should use “Entry” and “Entries” (or “Transaction(s)” if explicitly needed in copy).
+- New entry type: **Spending** or **Income**.
+
+### Codebase Areas to Rename
+- **DB tables/columns**: `spendings`, `spending_tags` → `entries`, `entry_tags`
+- **API routes**: `/api/spendings` → `/api/entries`
+- **Server services**: `lib/server/spendings.ts` → `entries.ts`
+- **Client wrappers**: `lib/client/spendings.ts` → `entries.ts`
+- **Hooks**: `hooks/use-spendings.ts` → `use-entries.ts`
+- **Components**: `spendings-panel`, `new-spending-modal`, `spending-details-modal`
+- **Legacy shims**: remove spendings re-export stubs (components/hooks/lib and /api/spendings proxies)
+- **Types**: `Spending` → `Entry`
+- **Tests**: all spendings tests → entries tests
+
+### Migration Record
+- See [docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md](docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md).
+
+---
+
+## Entries Schema (Planned)
+### New Fields
+- `entry_type` enum (`SPENDING`, `INCOME`) or equivalent flag
+- Recurring fields (see below)
+
+### Existing Fields Kept
+- `amount_dollars`, `occurred_at`, `notes`, `receipt_id`, `created_by`, `group_id`, etc.
+
+---
+
+## Recurring Entries (New Domain)
+### Requirements
+- Toggle recurring on entry creation
+- Frequency: daily, weekly, biweekly, monthly, quarterly, yearly
+- End conditions: never, after X occurrences, by date
+- `next_run_at` set on creation (if start date is today, set to today)
+- `last_executed_at` default `NULL`
+- **Reminder:** execution will require cron/scheduler later (not implemented now)
+
+### Data Model (Suggested)
+- `is_recurring` boolean
+- `frequency` enum
+- `interval_count` integer
+- `end_condition` enum
+- `end_count` integer nullable
+- `end_date` date nullable
+- `next_run_at` date nullable
+- `last_executed_at` date nullable
+
+---
+
+## Buckets (New Domain)
+### Requirements
+- Buckets are like tags with a **budget limit**
+- Each bucket:
+  - name, description, icon (from predefined set)
+  - editable and deletable via modal
+  - has a budget limit
+  - shows total spending based on associated tags
+- **Totals logic:**
+  - For each tag in the bucket, collect all entries with that tag
+  - Remove duplicates (unique entry IDs), then sum amounts
+  - Overlapping tags between buckets are allowed
+
+### UI Requirements
+- New dashboard view for buckets
+- Visual indicators near/over budget
+- Hamburger menu: edit, delete, view details, auto‑fill spendings search
+- Drag handle icon for reordering
+
+---
+
+## Modal Close Buttons
+- Replace all modal close buttons with **“x”** in top‑right corner
+- Use **New Spending Modal** (soon **New Entry Modal**) as the reference
+
+---
+
+## Spendings Dashboard → Entries Dashboard
+### Filtering
+Add filtering modal with:
+- Amount range
+- Date range
+- Necessity
+- Tags
+- Text in notes
+- Tags filter mode: **match all** vs **match any**
+
+### Naming Pivot
+- Rename dashboard, labels, filters, and API payloads to “entries”
+
+---
+
+## New Entry Modal (formerly New Spending Modal)
+### Tagging & Navigation
+- Fix tags not being added
+- Allow dropdown navigation via typing
+- Maintain highlighted index across list shrink/grow
+
+### Validation UX
+- Keep amount or tags borders red until filled
+- If submit with missing fields:
+  - Show “Please fill out this field” on both
+  - Focus amount first, tags second
+
+### Date Navigation
+- Add 4 buttons around date input:
+  - `<<` (back 1 week), `<` (back 1 day), `>` (forward 1 day), `>>` (forward 1 week)
+- Format: `[ << ][ < ][ today’s date ][ > ][ >> ]`
+
+### Recurring Toggle
+- Toggle button near header: refresh icon tooltip “Toggle Recurring Entry”
+- Header changes: “New One‑Time Expense” → “New Recurring Expense”
+- Show/hide frequency and end condition inputs
+
+### Income vs Spending Toggle
+- Toggle under header to switch entry type
+- Default to spending
+- Update header: “New [One‑Time/Recurring] Income entry”
+- Add icon left of amount input:
+  - Income: stocks going up
+  - Spending: money going down
+
+---
+
+## API / Server / Client / Hooks
+### API
+- New `/api/entries` endpoints (CRUD)
+- New `/api/buckets` endpoints (CRUD)
+- New `/api/recurring-entries` endpoints (CRUD)
+
+### Server
+- `lib/server/entries.ts`, `buckets.ts`, `recurring-entries.ts`
+- Enforce auth + group membership
+
+### Client / Hooks
+- `lib/client/entries.ts`, `use-entries.ts`
+- `lib/client/buckets.ts`, `use-buckets.ts`
+- `lib/client/recurring-entries.ts`, `use-recurring-entries.ts`
+
+---
+
+## Tests
+- Rename spendings tests to entries
+- Add tests for:
+  - income entries
+  - recurring entries (validation only; no cron execution)
+  - buckets CRUD
+  - buckets totals with overlapping tags
+  - filtering modal behavior
+
+---
+
+## Non‑Regression Rules
+- Entries list endpoints must **never** return receipt image bytes
+- Auth checks remain server‑side only
+
+---
+
+_Last updated: 2026-02-09_
diff --git a/docs/POSTGRES_RATELIMITTING_REFERENCE.md b/docs/POSTGRES_RATELIMITTING_REFERENCE.md
new file mode 100644
index 0000000..0a3eaca
--- /dev/null
+++ b/docs/POSTGRES_RATELIMITTING_REFERENCE.md
@@ -0,0 +1,65 @@
+# Postgres Rate Limiting Reference
+
+## Overview
+This document describes how to implement API rate limiting using Postgres in the Fiddy Finance Buddy App. It covers:
+- Rate limiting tiers and keying strategies
+- Data model and query patterns
+- Cleanup/retention strategy
+- Operational considerations
+
+---
+
+## Rate Limiting Tiers & Keying
+- **Auth endpoints (login/register):** Strict limits per IP and identifier (email)
+- **Write endpoints (POST/PUT/DELETE):** Moderate limits per user and IP
+- **Read endpoints (GET):** Higher limits per user and IP
+- **Keying:**
+  - Unauthenticated: IP only
+  - Auth endpoints: IP + email
+  - Authenticated: user ID + IP
+
+---
+
+## Data Model (Suggested)
+**Table: `rate_limits`**
+- `key` (text, primary key) — composed from route + identifier
+- `window_start` (timestamp) — start of the time window
+- `count` (integer) — request count within the window
+- `updated_at` (timestamp)
+
+**Key format examples:**
+- `auth:login:ip:1.2.3.4`
+- `auth:login:email:user@example.com`
+- `entries:write:user:123`
+
+---
+
+## Query Pattern (High-Level)
+- On each request:
+  1. Compute key and current window
+  2. Attempt upsert: increment `count` if within window
+  3. If `count` exceeds limit, respond 429
+
+---
+
+## Cleanup / Retention
+- Expired rows can accumulate; set a retention window (e.g., 24–72 hours)
+- Plan a periodic cleanup task or opportunistic cleanup in code paths
+- Avoid large table growth by deleting rows older than retention
+
+---
+
+## Operational Considerations
+- Postgres rate limiting adds read/write load to the primary DB
+- Use indexes on `key` and `window_start` for fast lookups
+- Monitor query latency and lock contention under burst traffic
+- Consider Redis migration when DB contention or volume increases
+
+---
+
+## Migration Path
+- See [docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md](docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md) for triggers and Redis ops guidance.
+
+---
+
+_Last updated: 2026-02-09_
diff --git a/docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md b/docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md
new file mode 100644
index 0000000..3e2d20f
--- /dev/null
+++ b/docs/POSTGRES_TO_REDIS_RATELIMITTING_MIGRATION_REFERENCE.md
@@ -0,0 +1,95 @@
+# Postgres to Redis Rate Limiting Migration Reference
+
+## Overview
+This document provides guidance for migrating API rate limiting from Postgres to Redis in the Fiddy Finance Buddy App. It covers:
+- Rate limiting tiers and keying strategies
+- Migration triggers and operational considerations
+- Redis setup, scaling, monitoring, and best practices
+- Example config (not enabled by default)
+
+---
+
+## Rate Limiting Tiers & Keying
+- **Auth endpoints (login/register):** Strict limits per IP and identifier (email)
+- **Write endpoints (POST/PUT/DELETE):** Moderate limits per user and IP
+- **Read endpoints (GET):** Higher limits per user and IP
+- **Keying:**
+  - Unauthenticated: IP only
+  - Auth endpoints: IP + email
+  - Authenticated: user ID + IP
+
+---
+
+## Migration Triggers
+Switch to Redis if:
+- API request volume or burst traffic causes DB contention or latency
+- Postgres rate limit table grows rapidly or cleanup becomes burdensome
+- You need native TTL, atomic counters, or horizontal scaling
+
+---
+
+## Redis Management & Planning
+### Setup
+- Provision Redis (self-hosted or managed)
+- Secure networking, secrets, and access control
+- Integrate Redis client in backend (e.g., `ioredis` or `redis` npm package)
+
+### Scaling
+- Monitor memory usage, eviction policy, and connection pools
+- Use Redis clustering/replication for high availability
+
+### Monitoring
+- Set up alerting for latency, memory, and connection errors
+- Track rate limit key usage and eviction
+
+### TTL & Data Retention
+- Use Redis native TTL for expiring rate limit keys
+- No manual cleanup required
+
+### Backup
+- Backups are optional for rate limit counters
+- Focus on monitoring and HA
+
+---
+
+## Example Redis Config (Not Enabled by Default)
+
+### docker-compose.yml (add, but comment out)
+```
+# redis:
+#   image: redis:7
+#   ports:
+#     - "6379:6379"
+#   restart: unless-stopped
+```
+
+### .env.example
+```
+# REDIS_URL=redis://localhost:6379
+```
+
+### Node.js Integration Example
+```
+// ...existing code...
+// import Redis from 'ioredis';
+// const redis = new Redis(process.env.REDIS_URL);
+// ...existing code...
+```
+
+---
+
+## Best Practices
+- Document migration triggers in backend guidance
+- Keep Redis config ready but disabled until needed
+- Reference this doc in PROJECT_INSTRUCTIONS.md for future backend work
+
+---
+
+## References
+- [Redis Official Docs](https://redis.io/docs/)
+- [ioredis npm package](https://www.npmjs.com/package/ioredis)
+- [Rate limiting patterns](https://redis.io/docs/management/rate-limiting/)
+
+---
+
+_Last updated: 2026-02-09_
diff --git a/docs/SEED_DATA.md b/docs/SEED_DATA.md
new file mode 100644
index 0000000..2d5b195
--- /dev/null
+++ b/docs/SEED_DATA.md
@@ -0,0 +1,53 @@
+# UI Seed Data (Playwright)
+
+This repo uses a deterministic UI seed dataset for Playwright. The seed targets the external **dev** database only and is guarded by `ALLOWED_DB_NAMES`.
+
+## Requirements
+
+- `DATABASE_URL` must point at the dev clone database.
+- `ALLOWED_DB_NAMES` is **required** and must include the dev database name (case-insensitive, comma-separated list).
+- Seed runs automatically before Playwright only.
+
+## Seed Script
+
+- Script location: packages/db/test-ui-seed
+- SQL file: docs/seed-ui.sql
+- Playwright auto-seed: pretest hook runs the script before `npm run test:ui`.
+
+## Seed Credentials
+
+All seeded users share the same password:
+
+- Password: `FiddyDev123!`
+
+Seeded users:
+
+- owner1@fiddy.dev
+- admin1@fiddy.dev
+- member1@fiddy.dev
+- requester1@fiddy.dev
+- nogroup@fiddy.dev
+- member2@fiddy.dev
+
+Seeded groups:
+
+- Alpha Household
+- Beta Office
+- Gamma Club
+
+## Coverage Notes
+
+- Join policies: NOT_ACCEPTING, AUTO_ACCEPT, APPROVAL_REQUIRED.
+- Join requests: one pending request on Beta Office.
+- Invite links: active, expired, revoked, and single-use examples.
+- Spendings: tagged, untagged, and no-receipt examples.
+- Receipts: ASCII text payloads stored as `bytea`.
+
+## Audit Summary Output
+
+The seed runner prints:
+
+- Counts per seeded table.
+- User emails and group names.
+
+Use the output for manual audit verification.
diff --git a/docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md b/docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md
new file mode 100644
index 0000000..e2b97d5
--- /dev/null
+++ b/docs/SPENDINGS_TO_ENTRIES_SCHEMA_MIGRATION_RECORD.md
@@ -0,0 +1,138 @@
+# Spendings → Entries Schema Migration Record
+
+## Purpose
+This document preserves the original spendings schema and maps it to the new entries schema for future debugging and data migration. It is a historical reference and should be kept alongside the migration that introduces `entries`.
+
+---
+
+## Source Migrations Reviewed
+- [packages/db/migrations/001_init.sql](packages/db/migrations/001_init.sql)
+- [packages/db/migrations/002_amount_dollars.sql](packages/db/migrations/002_amount_dollars.sql)
+- [packages/db/migrations/002_tags.sql](packages/db/migrations/002_tags.sql)
+
+---
+
+## Baseline Spendings Schema (Pre‑Migration)
+From [packages/db/migrations/001_init.sql](packages/db/migrations/001_init.sql):
+
+### Table: `spendings`
+- `id` bigserial PK
+- `group_id` bigint FK → `groups(id)` ON DELETE CASCADE
+- `created_by` bigint FK → `users(id)`
+- `amount_dollars` numeric(12,2) NOT NULL CHECK (`amount_dollars >= 0`)
+- `occurred_at` date NOT NULL
+- `necessity` enum `spending_necessity` NOT NULL
+- `purchase_type` text NOT NULL
+- `notes` text NULL
+- `receipt_id` bigint FK → `receipts(id)` ON DELETE SET NULL
+- `created_at` timestamptz NOT NULL DEFAULT now()
+
+### Indexes
+- `idx_spendings_group_occurred` on (`group_id`, `occurred_at` DESC)
+- `idx_spendings_receipt` on (`receipt_id`)
+
+### Related Tables
+- `receipts` stores image bytes: `bytes` bytea NOT NULL and `content_type`.
+- `tags` and `spending_tags` define many‑to‑many tagging.
+
+---
+
+## Amount Conversion (Historical)
+From [packages/db/migrations/002_amount_dollars.sql](packages/db/migrations/002_amount_dollars.sql):
+- `spendings.amount_cents` renamed to `amount_dollars`
+- Type changed to `numeric(12,2)` using `amount_dollars / 100.0`
+
+**Note:** This implies older environments may have `amount_cents`. Fresh installs already use `amount_dollars` from `001_init.sql`.
+
+---
+
+## Tags & Group Settings (Baseline)
+From [packages/db/migrations/002_tags.sql](packages/db/migrations/002_tags.sql):
+
+### Table: `group_settings`
+- `group_id` PK FK → `groups(id)`
+- `allow_member_tag_manage` boolean NOT NULL DEFAULT false
+- `updated_at` timestamptz NOT NULL DEFAULT now()
+
+### Table: `tags`
+- `id` bigserial PK
+- `group_id` bigint FK → `groups(id)` ON DELETE CASCADE
+- `name` text NOT NULL
+- `created_by` bigint FK → `users(id)`
+- `created_at` timestamptz NOT NULL DEFAULT now()
+
+### Constraints & Indexes
+- Unique: `tags_group_name_unique` on (`group_id`, lower(`name`))
+- Index: `tags_group_id_idx` on (`group_id`)
+
+### Join Table: `spending_tags`
+- `spending_id` bigint FK → `spendings(id)` ON DELETE CASCADE
+- `tag_id` bigint FK → `tags(id)` ON DELETE CASCADE
+- `created_at` timestamptz NOT NULL DEFAULT now()
+- PK (`spending_id`, `tag_id`)
+- Indexes: `spending_tags_spending_idx`, `spending_tags_tag_idx`
+
+---
+
+## Spendings → Entries Mapping (Planned)
+
+### Rename Summary
+- `spending` → `entry`
+- `spendings` → `entries`
+- “spending” labels → “entry” (or “transaction”) in UI and API
+
+### Column Mapping
+| Spendings Column | Entries Column | Notes |
+| --- | --- | --- |
+| `id` | `id` | same PK strategy |
+| `group_id` | `group_id` | same FK |
+| `created_by` | `created_by` | same FK |
+| `amount_dollars` | `amount_dollars` | same type/check |
+| `occurred_at` | `occurred_at` | same type |
+| `necessity` | `necessity` | still applicable for spending entries |
+| `purchase_type` | `purchase_type` | same |
+| `notes` | `notes` | same |
+| `receipt_id` | `receipt_id` | same FK |
+| `created_at` | `created_at` | same |
+
+### New Entries Fields
+- `entry_type` enum (`SPENDING`, `INCOME`) or equivalent flag
+- Recurring schedule fields (see below)
+
+---
+
+## Recurring Entries (Planned Fields)
+Add to `entries` (or a dedicated `recurring_entries`) table:
+- `is_recurring` boolean NOT NULL DEFAULT false
+- `frequency` enum (daily, weekly, biweekly, monthly, quarterly, yearly)
+- `interval_count` integer NOT NULL DEFAULT 1
+- `end_condition` enum (never, after_count, by_date)
+- `end_count` integer NULL
+- `end_date` date NULL
+- `next_run_at` date NULL (set on creation; if start date is today, set to today)
+- `last_executed_at` date NULL DEFAULT NULL
+
+**Reminder:** Recurrence execution must be implemented via cron/scheduler later.
+
+---
+
+## Non‑Regression Notes
+- Spendings list endpoints must not return receipt image bytes (`receipts.bytes`).
+- Tag uniqueness is case‑insensitive per group.
+
+---
+
+## Known Caveats
+- Two migrations share the `002_` prefix; migration ordering must be deterministic.
+- `002_amount_dollars.sql` assumes legacy `amount_cents` exists; skip/guard on fresh installs.
+
+---
+
+## Verification Checklist
+- Entries schema mirrors spendings constraints and indexes.
+- Data migration preserves values and tag associations.
+- Tests updated for new names and income/spending support.
+
+---
+
+_Last updated: 2026-02-09_
diff --git a/docs/app_dev_plan/01_auth.md b/docs/app_dev_plan/01_auth.md
new file mode 100644
index 0000000..b0e17bb
--- /dev/null
+++ b/docs/app_dev_plan/01_auth.md
@@ -0,0 +1,83 @@
+# App Dev Plan
+
+## Current focus
+Auth (register/login/logout) with DB-backed sessions and HttpOnly cookies.
+
+## Goals
+- Custom email/password auth using the existing `users` + `sessions` tables.
+- Server-side session validation only (no client-side RBAC trust).
+- Minimal, secure cookies with expiration based on `SESSION_TTL_DAYS`.
+- Keep UI simple and mobile-first.
+- Add/adjust unit tests for auth flows.
+
+## Proposed implementation
+### Server routes (Next.js App Router)
+Create API routes:
+- `POST /api/auth/register`
+  - Body: `{ email, password, displayName? }`
+  - Validations: email format, password length >= 8
+  - Hash password, create user, create session, set HttpOnly cookie
+- `POST /api/auth/login`
+  - Body: `{ email, password }`
+  - Verify password, create session, set HttpOnly cookie
+- `POST /api/auth/logout`
+  - Clears cookie and deletes session from DB
+
+### Server helpers
+Add helpers for:
+- Password hashing/verification (bcrypt)
+- Session token generation and SHA-256 hashing for storage
+- Session cookie settings (name + ttl from env)
+- Shared DB pool (pg)
+
+### UI pages
+Update:
+- `app/login/page.tsx`: basic form, error handling, POST to `/api/auth/login`
+- `app/register/page.tsx`: basic form, error handling, POST to `/api/auth/register`
+
+### Tests
+Add unit tests covering:
+- Registration creates user + session
+- Login rejects invalid credentials
+- Logout removes session
+
+## Files to be created/modified
+- `apps/web/app/api/auth/register/route.ts`
+- `apps/web/app/api/auth/login/route.ts`
+- `apps/web/app/api/auth/logout/route.ts`
+- `apps/web/lib/auth.ts`
+- `apps/web/lib/db.ts`
+- `apps/web/app/login/page.tsx`
+- `apps/web/app/register/page.tsx`
+- `apps/web/package.json` (deps + test runner)
+
+## Env usage
+Required:
+- `DATABASE_URL`
+- `DATABASE_SSL` (true/false)
+- `SESSION_COOKIE_NAME`
+- `SESSION_TTL_DAYS`
+
+## Notes
+- All session checks will be server-side only.
+- No receipt bytes will ever be returned in list endpoints (future scope).
+
+## Status
+### Implemented
+- API routes:
+  - `POST /api/auth/register`
+  - `POST /api/auth/login`
+  - `POST /api/auth/logout`
+- Helpers:
+  - `apps/web/lib/auth.ts`
+  - `apps/web/lib/db.ts`
+- UI:
+  - `apps/web/app/login/page.tsx`
+  - `apps/web/app/register/page.tsx`
+- Tests:
+  - `apps/web/__tests__/auth.test.ts`
+- Dependencies added in `apps/web/package.json`.
+
+### Test output
+Initial run: 0 tests discovered. Updated test script to `node --test --import tsx/register __tests__/auth.test.ts`.
+This failed due to `ERR_PACKAGE_PATH_NOT_EXPORTED` from `tsx/register`. Switched to `tsx __tests__/auth.test.ts`.
diff --git a/docs/app_dev_plan/02_login_ux_enhancements.md b/docs/app_dev_plan/02_login_ux_enhancements.md
new file mode 100644
index 0000000..6cb1808
--- /dev/null
+++ b/docs/app_dev_plan/02_login_ux_enhancements.md
@@ -0,0 +1,53 @@
+# Login UX Enhancements Plan
+
+## Focus
+Improve the login experience with remember-me, validation, reset placeholder, clearer errors, and auto-redirect when already logged in.
+
+## Goals
+- Improve login UX while keeping security server-side.
+- Support a shorter session when remember-me is unchecked.
+- Avoid client-side RBAC or auth trust beyond UX.
+
+## Proposed changes
+### Backend
+- Add `GET /api/auth/me`
+  - Returns `{ user: { id, email, displayName } }` when session valid; else 401.
+- Extend `createSession(userId, options?)` in `apps/web/lib/auth.ts`
+  - Optional `ttlMs` override for shorter sessions.
+- Update `POST /api/auth/login` to accept `remember` boolean
+  - When false, use a shorter TTL (e.g., 1 day).
+
+### Frontend
+- Update `apps/web/app/login/page.tsx`
+  - Remember-me checkbox (controls `remember` boolean)
+  - Client-side validation for empty fields + email format
+  - Clear error presentation
+  - “Forgot password?” placeholder link
+  - Auto-redirect to `/` when already logged in (call `/api/auth/me` on mount)
+
+### Tests
+- Extend `apps/web/__tests__/auth.test.ts`
+  - Validate `createSession()` TTL override behavior.
+
+## Files impacted
+- `apps/web/app/api/auth/me/route.ts` (new)
+- `apps/web/lib/auth.ts`
+- `apps/web/app/api/auth/login/route.ts`
+- `apps/web/app/login/page.tsx`
+- `apps/web/__tests__/auth.test.ts`
+
+## Env
+- Uses existing `SESSION_TTL_DAYS` for default TTL.
+- Remember-me off uses a short TTL (configurable in code initially).
+
+## Status
+### Implemented
+- Added `GET /api/auth/me` for session checks.
+- Added TTL override support in `createSession()` and wired remember-me in login.
+- Enhanced login UI with remember me, validation, forgot link placeholder, and auto-redirect.
+- Added TTL override test case.
+
+### Test output
+- `password hashing works`
+- `createSession inserts row`
+- `createSession supports ttl override`
diff --git a/docs/app_dev_plan/03_dashboard_dev_server.md b/docs/app_dev_plan/03_dashboard_dev_server.md
new file mode 100644
index 0000000..1410663
--- /dev/null
+++ b/docs/app_dev_plan/03_dashboard_dev_server.md
@@ -0,0 +1,35 @@
+# Dashboard + Dev Server Plan
+
+## Focus
+- Protected dashboard (server-side session check + redirect)
+- Confirm dev server setup for live reload of UI + API routes
+
+## Goals
+- Prevent unauthenticated access to the dashboard.
+- Keep auth validation server-side.
+- Ensure local dev server supports hot reload for frontend and backend (API routes).
+
+## Proposed changes
+### Backend/session
+- Add a server helper to fetch the current user from the session cookie.
+
+### Dashboard
+- Update `apps/web/app/page.tsx` to:
+  - Load current user on the server.
+  - Redirect to `/login` if no valid session.
+  - Show a minimal dashboard once authenticated.
+
+### Dev server
+- Use `npm run dev` at repo root (already mapped to `apps/web` dev).
+- Next.js dev server hot reloads both UI and API routes automatically.
+
+## Files impacted
+- `apps/web/lib/session.ts` (new)
+- `apps/web/app/page.tsx`
+- `package.json` (optional script alias)
+
+## Status
+- Implemented
+
+## Notes
+- Run `npm run dev` or `npm run dev:web` for hot reload of UI + API routes.
diff --git a/docs/app_dev_plan/04_groups_switcher.md b/docs/app_dev_plan/04_groups_switcher.md
new file mode 100644
index 0000000..b2fd7d1
--- /dev/null
+++ b/docs/app_dev_plan/04_groups_switcher.md
@@ -0,0 +1,53 @@
+# Groups + Switcher Plan
+
+## Focus
+Group create/join + group switcher in navbar.
+
+## Goals
+- Create groups and invite codes.
+- Join groups via invite code.
+- Persist active group selection per user.
+- Enforce server-side group membership checks.
+
+## Proposed changes
+### Database (existing schema)
+Use existing tables:
+- `groups`, `group_members`.
+
+### Backend
+Add routes:
+- `POST /api/groups` to create a group
+  - Body: `{ name }`
+  - Creates group, generates invite code, adds creator as GROUP_ADMIN.
+- `POST /api/groups/join` to join by invite code
+  - Body: `{ inviteCode }`
+  - Adds user as MEMBER if not already in group.
+- `GET /api/groups` to list groups for current user
+  - Returns list of groups and roles.
+- `POST /api/groups/active` to set active group
+  - Persists in `user_settings` JSON.
+
+Add server helpers:
+- `getSessionUser()` already exists
+- Add `requireSessionUser()` and `getUserGroups(userId)` helpers
+- Add `getActiveGroup(userId)` helper
+
+### Frontend
+- Update navbar to show current group and dropdown of groups.
+- Add minimal create/join UI (modal or simple dropdown actions).
+
+### Tests
+- Add API tests for create/join/list/active group.
+
+## Files impacted (expected)
+- `apps/web/app/api/groups/*`
+- `apps/web/lib/groups.ts`
+- `apps/web/components/navbar.tsx`
+- `apps/web/app/page.tsx` (use active group)
+- `apps/web/__tests__/groups.test.ts`
+
+## Status
+- Implemented
+
+## Test output
+- `create group inserts membership`
diff --git a/docs/app_dev_plan/05_invite_code_modal.md b/docs/app_dev_plan/05_invite_code_modal.md
new file mode 100644
index 0000000..3b4fa10
--- /dev/null
+++ b/docs/app_dev_plan/05_invite_code_modal.md
@@ -0,0 +1,27 @@
+# Group Invite Code Modal
+
+## Focus
+Show invite code in a modal immediately after group creation. After closing, invite code is only accessible via future group settings.
+
+## Goals
+- Display invite code once on group creation.
+- Avoid re-exposing invite code elsewhere in UI.
+- Keep UX minimal and consistent with existing navbar dropdown.
+
+## Planned changes
+### Frontend
+- Update `apps/web/components/navbar.tsx`:
+  - Track `inviteCode` and `showInviteModal` state.
+  - On successful create-group response, open modal and display invite code.
+  - Closing modal clears invite code state.
+  - Add copy-to-clipboard button (optional).
+  - Add note: “You can view this later in group settings.”
+
+### Backend
+- No API changes needed (create group already returns `inviteCode`).
+
+## Files impacted
+- `apps/web/components/navbar.tsx`
+
+## Status
+- Implemented
diff --git a/docs/app_dev_plan/06_groups_ui_alignment.md b/docs/app_dev_plan/06_groups_ui_alignment.md
new file mode 100644
index 0000000..46e982c
--- /dev/null
+++ b/docs/app_dev_plan/06_groups_ui_alignment.md
@@ -0,0 +1,14 @@
+# Groups UI Alignment Fixes
+
+## Focus
+Fix dropdown alignment and center the invite code modal without clipping.
+
+## Changes
+- Center dropdown relative to its trigger button.
+- Center invite code modal within viewport with safe padding and scroll handling.
+
+## Files
+- `apps/web/components/navbar.tsx`
+
+## Status
+- Implemented
diff --git a/docs/app_dev_plan/07_invite_modal_root.md b/docs/app_dev_plan/07_invite_modal_root.md
new file mode 100644
index 0000000..e65d1ed
--- /dev/null
+++ b/docs/app_dev_plan/07_invite_modal_root.md
@@ -0,0 +1,13 @@
+# Invite Modal Placement Fix
+
+## Focus
+Ensure invite code modal is rendered outside the navbar so it overlays the full viewport.
+
+## Changes
+- Move modal markup out of the header element into a sibling container.
+
+## Files
+- `apps/web/components/navbar.tsx`
+
+## Status
+- Implemented
diff --git a/docs/app_dev_plan/08_spendings_crud.md b/docs/app_dev_plan/08_spendings_crud.md
new file mode 100644
index 0000000..8f12d6e
--- /dev/null
+++ b/docs/app_dev_plan/08_spendings_crud.md
@@ -0,0 +1,42 @@
+# Entries CRUD Plan
+
+## Focus
+Implement entry CRUD (list/create/update/delete) scoped to active group. Ensure list endpoints never return receipt bytes.
+
+## Goals
+- Create, read, update, delete entries for active group only.
+- Enforce server-side membership/authorization.
+- Keep receipt bytes out of list responses.
+
+## Planned changes
+### Backend
+Routes:
+- `GET /api/entries` (list for active group)
+- `POST /api/entries` (create)
+- `PATCH /api/entries/:id` (update)
+- `DELETE /api/entries/:id` (delete)
+
+Helpers:
+- `requireActiveGroup(userId)`
+- `requireGroupMember(userId, groupId)`
+
+### Frontend
+- Basic entries list + create form on dashboard.
+
+### Tests
+- API tests for create/list/update/delete with group scoping.
+
+## Files impacted
+- `apps/web/app/api/entries/*`
+- `apps/web/lib/server/entries.ts`
+- `apps/web/lib/client/entries.ts`
+- `apps/web/hooks/use-entries.ts`
+- `apps/web/components/entries-panel.tsx`
+- `apps/web/app/page.tsx`
+- `apps/web/__tests__/entries.test.ts`
+
+## Status
+- Implemented
+
+## Test output
+- `entries CRUD`
diff --git a/docs/app_dev_plan/09_hooks_api_calls.md b/docs/app_dev_plan/09_hooks_api_calls.md
new file mode 100644
index 0000000..87699d9
--- /dev/null
+++ b/docs/app_dev_plan/09_hooks_api_calls.md
@@ -0,0 +1,24 @@
+# Hooks for API Calls
+
+## Focus
+Move API calls into exported hooks/services for reuse and cleanliness.
+
+## Changes
+- Entries hook for list/create (and now update/delete).
+- Auth hook for login/register/session checks.
+- Groups hook for list/create/join/active group operations.
+- Refactor components/pages to use hooks.
+- Update copilot instructions to prefer hooks/services for API calls.
+
+## Files
+- `apps/web/hooks/use-entries.ts`
+- `apps/web/hooks/use-auth.ts`
+- `apps/web/hooks/use-groups.ts`
+- `apps/web/components/entries-panel.tsx`
+- `apps/web/components/navbar.tsx`
+- `apps/web/app/login/page.tsx`
+- `apps/web/app/register/page.tsx`
+- `.github/copilot-instructions.md`
+
+## Status
+- Implemented
diff --git a/docs/bucket-usage-audit.md b/docs/bucket-usage-audit.md
new file mode 100644
index 0000000..4e154cf
--- /dev/null
+++ b/docs/bucket-usage-audit.md
@@ -0,0 +1,28 @@
+# Bucket Usage Audit (2026-02-11)
+
+## What exists
+- Buckets table: `buckets` in [packages/db/migrations/005_buckets.sql](packages/db/migrations/005_buckets.sql)
+- Entries table: `entries` (pivoted from spendings) in [packages/db/migrations/004_entries_pivot.sql](packages/db/migrations/004_entries_pivot.sql) and base definition in [packages/db/migrations/001_init.sql](packages/db/migrations/001_init.sql)
+- Tags storage: `tags`, `entry_tags`, `bucket_tags` in [packages/db/migrations/002_tags.sql](packages/db/migrations/002_tags.sql) and [packages/db/migrations/005_buckets.sql](packages/db/migrations/005_buckets.sql)
+- Recurrence fields: `entries.is_recurring` plus recurrence columns in [packages/db/migrations/004_entries_pivot.sql](packages/db/migrations/004_entries_pivot.sql)
+- Necessity enum (entries): `spending_necessity` in [packages/db/migrations/001_init.sql](packages/db/migrations/001_init.sql)
+- Existing usage calc: `totalSpent` based on tag overlap in [apps/web/lib/server/buckets.ts](apps/web/lib/server/buckets.ts)
+- Bucket API routes: [apps/web/app/api/buckets/route.ts](apps/web/app/api/buckets/route.ts) and [apps/web/app/api/buckets/[id]/route.ts](apps/web/app/api/buckets/[id]/route.ts)
+
+## Missing before this change
+- Bucket `necessity` (no column or API fields)
+- Bucket `windowDays` (no column or API fields)
+- Bucket usage rules for recurrence/necessity/date window
+- Entry necessity value `BOTH` (enum was aligned to `BOTH`)
+
+## Endpoints impacted
+- Buckets list/create/update in [apps/web/app/api/buckets/route.ts](apps/web/app/api/buckets/route.ts)
+- Buckets update/delete in [apps/web/app/api/buckets/[id]/route.ts](apps/web/app/api/buckets/[id]/route.ts)
+- Entries and recurring entries endpoints for necessity validation
+
+## Notes
+- Tag matching uses `bucket_tags` and `entry_tags` join tables.
+- Recurrence flag is `entries.is_recurring`.
+- `occurred_at` is `date` in the DB (not timestamp).
+- `windowDays` default set to 30 (min 1, max 365).
+- Necessity uses `spending_necessity` enum with `BOTH`.
diff --git a/docs/seed-ui.sql b/docs/seed-ui.sql
new file mode 100644
index 0000000..a48a375
--- /dev/null
+++ b/docs/seed-ui.sql
@@ -0,0 +1,298 @@
+-- UI seed data for Playwright (dev database only)
+-- Non-destructive: insert/update required rows without truncating tables.
+
+insert into users(email, display_name, password_hash, system_role, created_at, last_login_at)
+values
+  ('owner1@fiddy.dev', 'Owner One', '__PASSWORD_HASH__', 'USER', now() - interval '10 days', now() - interval '1 day'),
+  ('admin1@fiddy.dev', 'Admin One', '__PASSWORD_HASH__', 'USER', now() - interval '9 days', now() - interval '2 days'),
+  ('member1@fiddy.dev', 'Member One', '__PASSWORD_HASH__', 'USER', now() - interval '8 days', now() - interval '3 days'),
+  ('requester1@fiddy.dev', 'Requester One', '__PASSWORD_HASH__', 'USER', now() - interval '7 days', null),
+  ('nogroup@fiddy.dev', 'No Group', '__PASSWORD_HASH__', 'USER', now() - interval '6 days', null),
+  ('member2@fiddy.dev', 'Member Two', '__PASSWORD_HASH__', 'USER', now() - interval '5 days', null)
+on conflict (email) do update
+set display_name = excluded.display_name,
+    password_hash = excluded.password_hash,
+    system_role = excluded.system_role,
+    last_login_at = excluded.last_login_at;
+
+insert into groups(name, invite_code, created_by, created_at)
+values
+  ('Alpha Household', 'ALPHADEV', (select id from users where email='owner1@fiddy.dev'), now() - interval '9 days'),
+  ('Beta Office', 'BETADEV', (select id from users where email='admin1@fiddy.dev'), now() - interval '8 days'),
+  ('Gamma Club', 'GAMMADEV', (select id from users where email='member1@fiddy.dev'), now() - interval '7 days')
+on conflict (invite_code) do update
+set name = excluded.name,
+    created_by = excluded.created_by;
+
+insert into group_settings(group_id, allow_member_tag_manage, join_policy, updated_at)
+values
+  ((select id from groups where invite_code='ALPHADEV'), true, 'AUTO_ACCEPT', now() - interval '2 days'),
+  ((select id from groups where invite_code='BETADEV'), false, 'APPROVAL_REQUIRED', now() - interval '2 days'),
+  ((select id from groups where invite_code='GAMMADEV'), false, 'NOT_ACCEPTING', now() - interval '2 days')
+on conflict (group_id) do update
+set allow_member_tag_manage = excluded.allow_member_tag_manage,
+    join_policy = excluded.join_policy,
+    updated_at = excluded.updated_at;
+
+insert into group_members(group_id, user_id, role, created_at, last_active_at)
+values
+  ((select id from groups where invite_code='ALPHADEV'), (select id from users where email='owner1@fiddy.dev'), 'GROUP_OWNER', now() - interval '9 days', now() - interval '1 day'),
+  ((select id from groups where invite_code='ALPHADEV'), (select id from users where email='admin1@fiddy.dev'), 'GROUP_ADMIN', now() - interval '9 days', now() - interval '1 day'),
+  ((select id from groups where invite_code='ALPHADEV'), (select id from users where email='member1@fiddy.dev'), 'MEMBER', now() - interval '9 days', now() - interval '2 days'),
+  ((select id from groups where invite_code='BETADEV'), (select id from users where email='admin1@fiddy.dev'), 'GROUP_OWNER', now() - interval '8 days', now() - interval '2 days'),
+  ((select id from groups where invite_code='BETADEV'), (select id from users where email='member2@fiddy.dev'), 'MEMBER', now() - interval '8 days', now() - interval '2 days'),
+  ((select id from groups where invite_code='GAMMADEV'), (select id from users where email='member1@fiddy.dev'), 'GROUP_OWNER', now() - interval '7 days', now() - interval '3 days'),
+  ((select id from groups where invite_code='GAMMADEV'), (select id from users where email='admin1@fiddy.dev'), 'MEMBER', now() - interval '7 days', now() - interval '3 days')
+on conflict (group_id, user_id) do update
+set role = excluded.role,
+    last_active_at = excluded.last_active_at;
+
+insert into user_settings(user_id, data, updated_at)
+values
+  ((select id from users where email='owner1@fiddy.dev'), jsonb_build_object('activeGroupId', (select id from groups where invite_code='ALPHADEV')), now() - interval '1 day'),
+  ((select id from users where email='admin1@fiddy.dev'), jsonb_build_object('activeGroupId', (select id from groups where invite_code='BETADEV')), now() - interval '1 day'),
+  ((select id from users where email='member1@fiddy.dev'), jsonb_build_object('activeGroupId', (select id from groups where invite_code='ALPHADEV')), now() - interval '1 day')
+on conflict (user_id) do update
+set data = user_settings.data || excluded.data,
+    updated_at = excluded.updated_at;
+
+insert into group_join_requests(group_id, user_id, status, created_at, updated_at)
+select
+  (select id from groups where invite_code='BETADEV'),
+  (select id from users where email='requester1@fiddy.dev'),
+  'PENDING',
+  now() - interval '1 day',
+  now() - interval '1 day'
+where not exists (
+  select 1 from group_join_requests
+  where group_id=(select id from groups where invite_code='BETADEV')
+    and user_id=(select id from users where email='requester1@fiddy.dev')
+    and status='PENDING'
+);
+
+insert into group_invite_links(group_id, created_by, token, policy, single_use, expires_at, used_at, revoked_at, created_at)
+values
+  ((select id from groups where invite_code='ALPHADEV'), (select id from users where email='owner1@fiddy.dev'), 'INVITE-ALPHA-1', 'AUTO_ACCEPT', false, now() + interval '3 days', null, null, now() - interval '1 day'),
+  ((select id from groups where invite_code='BETADEV'), (select id from users where email='admin1@fiddy.dev'), 'INVITE-BETA-EXPIRED', 'APPROVAL_REQUIRED', false, now() - interval '1 day', null, null, now() - interval '4 days'),
+  ((select id from groups where invite_code='GAMMADEV'), (select id from users where email='member1@fiddy.dev'), 'INVITE-GAMMA-REVOKED', 'NOT_ACCEPTING', false, now() + interval '5 days', null, now() - interval '2 hours', now() - interval '2 days'),
+  ((select id from groups where invite_code='ALPHADEV'), (select id from users where email='owner1@fiddy.dev'), 'INVITE-ALPHA-SINGLE', 'AUTO_ACCEPT', true, now() + interval '2 days', now() - interval '1 hour', null, now() - interval '2 days')
+on conflict (token) do update
+set group_id = excluded.group_id,
+    created_by = excluded.created_by,
+    policy = excluded.policy,
+    single_use = excluded.single_use,
+    expires_at = excluded.expires_at,
+    used_at = excluded.used_at,
+    revoked_at = excluded.revoked_at,
+    created_at = excluded.created_at;
+
+insert into group_audit_log(group_id, actor_user_id, actor_role, event_type, request_id, ip, user_agent, success, error_code, metadata, created_at)
+select
+  (select id from groups where invite_code='BETADEV'),
+  (select id from users where email='admin1@fiddy.dev'),
+  'GROUP_OWNER',
+  'INVITE_CREATED',
+  'seed-req-1',
+  null,
+  null,
+  true,
+  null,
+  jsonb_build_object('inviteLast4', 'XPIR'),
+  now() - interval '1 day'
+where not exists (
+  select 1 from group_audit_log where request_id='seed-req-1' and event_type='INVITE_CREATED'
+);
+
+insert into group_audit_log(group_id, actor_user_id, actor_role, event_type, request_id, ip, user_agent, success, error_code, metadata, created_at)
+select
+  (select id from groups where invite_code='ALPHADEV'),
+  (select id from users where email='owner1@fiddy.dev'),
+  'GROUP_OWNER',
+  'GROUP_RENAMED',
+  'seed-req-2',
+  null,
+  null,
+  true,
+  null,
+  jsonb_build_object('name', 'Alpha Household'),
+  now() - interval '2 days'
+where not exists (
+  select 1 from group_audit_log where request_id='seed-req-2' and event_type='GROUP_RENAMED'
+);
+
+insert into tags(group_id, name, created_by, created_at)
+select g.id, 'Food', u.id, now() - interval '7 days'
+from groups g, users u
+where g.invite_code='ALPHADEV' and u.email='owner1@fiddy.dev'
+  and not exists (select 1 from tags t where t.group_id=g.id and lower(t.name)=lower('Food'));
+
+insert into tags(group_id, name, created_by, created_at)
+select g.id, 'Travel', u.id, now() - interval '7 days'
+from groups g, users u
+where g.invite_code='ALPHADEV' and u.email='owner1@fiddy.dev'
+  and not exists (select 1 from tags t where t.group_id=g.id and lower(t.name)=lower('Travel'));
+
+insert into tags(group_id, name, created_by, created_at)
+select g.id, 'Utilities', u.id, now() - interval '6 days'
+from groups g, users u
+where g.invite_code='ALPHADEV' and u.email='admin1@fiddy.dev'
+  and not exists (select 1 from tags t where t.group_id=g.id and lower(t.name)=lower('Utilities'));
+
+insert into tags(group_id, name, created_by, created_at)
+select g.id, 'Office', u.id, now() - interval '6 days'
+from groups g, users u
+where g.invite_code='BETADEV' and u.email='admin1@fiddy.dev'
+  and not exists (select 1 from tags t where t.group_id=g.id and lower(t.name)=lower('Office'));
+
+insert into receipts(content_type, bytes, created_by, created_at)
+select 'text/plain', convert_to('RECEIPT: ALPHA-ONE', 'UTF8'), u.id, now() - interval '3 days'
+from users u
+where u.email='owner1@fiddy.dev'
+  and not exists (select 1 from receipts r where r.created_by=u.id and r.bytes=convert_to('RECEIPT: ALPHA-ONE', 'UTF8'));
+
+insert into receipts(content_type, bytes, created_by, created_at)
+select 'text/plain', convert_to('RECEIPT: ALPHA-TWO', 'UTF8'), u.id, now() - interval '2 days'
+from users u
+where u.email='owner1@fiddy.dev'
+  and not exists (select 1 from receipts r where r.created_by=u.id and r.bytes=convert_to('RECEIPT: ALPHA-TWO', 'UTF8'));
+
+insert into receipts(content_type, bytes, created_by, created_at)
+select 'text/plain', convert_to('RECEIPT: BETA-ONE', 'UTF8'), u.id, now() - interval '4 days'
+from users u
+where u.email='admin1@fiddy.dev'
+  and not exists (select 1 from receipts r where r.created_by=u.id and r.bytes=convert_to('RECEIPT: BETA-ONE', 'UTF8'));
+
+insert into entries(group_id, created_by, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id, created_at)
+select
+  (select id from groups where invite_code='ALPHADEV'),
+  (select id from users where email='owner1@fiddy.dev'),
+  12.50,
+  current_date - 2,
+  'NECESSARY',
+  'Food',
+  'Groceries',
+  (select id from receipts where bytes=convert_to('RECEIPT: ALPHA-ONE', 'UTF8') limit 1),
+  now() - interval '2 days'
+where not exists (
+  select 1 from entries
+  where group_id=(select id from groups where invite_code='ALPHADEV')
+    and created_by=(select id from users where email='owner1@fiddy.dev')
+    and amount_dollars=12.50
+    and occurred_at=current_date - 2
+    and purchase_type='Food'
+    and notes='Groceries'
+);
+
+insert into entries(group_id, created_by, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id, created_at)
+select
+  (select id from groups where invite_code='ALPHADEV'),
+  (select id from users where email='owner1@fiddy.dev'),
+  44.10,
+  current_date - 1,
+  'BOTH',
+  'Travel',
+  'Train ticket',
+  (select id from receipts where bytes=convert_to('RECEIPT: ALPHA-TWO', 'UTF8') limit 1),
+  now() - interval '1 day'
+where not exists (
+  select 1 from entries
+  where group_id=(select id from groups where invite_code='ALPHADEV')
+    and created_by=(select id from users where email='owner1@fiddy.dev')
+    and amount_dollars=44.10
+    and occurred_at=current_date - 1
+    and purchase_type='Travel'
+    and notes='Train ticket'
+);
+
+insert into entries(group_id, created_by, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id, created_at)
+select
+  (select id from groups where invite_code='ALPHADEV'),
+  (select id from users where email='admin1@fiddy.dev'),
+  9.99,
+  current_date,
+  'UNNECESSARY',
+  'Snacks',
+  'No receipt',
+  null,
+  now()
+where not exists (
+  select 1 from entries
+  where group_id=(select id from groups where invite_code='ALPHADEV')
+    and created_by=(select id from users where email='admin1@fiddy.dev')
+    and amount_dollars=9.99
+    and occurred_at=current_date
+    and purchase_type='Snacks'
+    and notes='No receipt'
+);
+
+insert into entries(group_id, created_by, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id, created_at)
+select
+  (select id from groups where invite_code='BETADEV'),
+  (select id from users where email='admin1@fiddy.dev'),
+  120.00,
+  current_date - 3,
+  'NECESSARY',
+  'Office',
+  'Printer supplies',
+  (select id from receipts where bytes=convert_to('RECEIPT: BETA-ONE', 'UTF8') limit 1),
+  now() - interval '3 days'
+where not exists (
+  select 1 from entries
+  where group_id=(select id from groups where invite_code='BETADEV')
+    and created_by=(select id from users where email='admin1@fiddy.dev')
+    and amount_dollars=120.00
+    and occurred_at=current_date - 3
+    and purchase_type='Office'
+    and notes='Printer supplies'
+);
+
+insert into entries(group_id, created_by, amount_dollars, occurred_at, necessity, purchase_type, notes, receipt_id, created_at)
+select
+  (select id from groups where invite_code='BETADEV'),
+  (select id from users where email='member2@fiddy.dev'),
+  15.00,
+  current_date - 5,
+  'NECESSARY',
+  'Office',
+  null,
+  null,
+  now() - interval '5 days'
+where not exists (
+  select 1 from entries
+  where group_id=(select id from groups where invite_code='BETADEV')
+    and created_by=(select id from users where email='member2@fiddy.dev')
+    and amount_dollars=15.00
+    and occurred_at=current_date - 5
+    and purchase_type='Office'
+    and notes is null
+);
+
+insert into entry_tags(entry_id, tag_id, created_at)
+select s.id, t.id, now() - interval '2 days'
+from entries s
+join tags t on t.group_id = s.group_id and lower(t.name)=lower('Food')
+where s.amount_dollars=12.50 and s.purchase_type='Food'
+  and not exists (select 1 from entry_tags st where st.entry_id=s.id and st.tag_id=t.id);
+
+insert into entry_tags(entry_id, tag_id, created_at)
+select s.id, t.id, now() - interval '1 day'
+from entries s
+join tags t on t.group_id = s.group_id and lower(t.name)=lower('Travel')
+where s.amount_dollars=44.10 and s.purchase_type='Travel'
+  and not exists (select 1 from entry_tags st where st.entry_id=s.id and st.tag_id=t.id);
+
+insert into entry_tags(entry_id, tag_id, created_at)
+select s.id, t.id, now() - interval '3 days'
+from entries s
+join tags t on t.group_id = s.group_id and lower(t.name)=lower('Office')
+where s.amount_dollars=120.00 and s.purchase_type='Office'
+  and not exists (select 1 from entry_tags st where st.entry_id=s.id and st.tag_id=t.id);
+
+select setval(pg_get_serial_sequence('users', 'id'), (select coalesce(max(id), 0) from users));
+select setval(pg_get_serial_sequence('groups', 'id'), (select coalesce(max(id), 0) from groups));
+select setval(pg_get_serial_sequence('group_join_requests', 'id'), (select coalesce(max(id), 0) from group_join_requests));
+select setval(pg_get_serial_sequence('group_invite_links', 'id'), (select coalesce(max(id), 0) from group_invite_links));
+select setval(pg_get_serial_sequence('group_audit_log', 'id'), (select coalesce(max(id), 0) from group_audit_log));
+select setval(pg_get_serial_sequence('tags', 'id'), (select coalesce(max(id), 0) from tags));
+select setval(pg_get_serial_sequence('receipts', 'id'), (select coalesce(max(id), 0) from receipts));
+select setval(pg_get_serial_sequence('entries', 'id'), (select coalesce(max(id), 0) from entries));
diff --git a/package-lock.json b/package-lock.json
new file mode 100644
index 0000000..df66cca
--- /dev/null
+++ b/package-lock.json
@@ -0,0 +1,7122 @@
+{
+  "name": "fiddy",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "": {
+      "name": "fiddy",
+      "workspaces": [
+        "apps/*",
+        "packages/*"
+      ]
+    },
+    "apps/web": {
+      "name": "@fiddy/web",
+      "version": "0.0.0",
+      "dependencies": {
+        "bcryptjs": "^2.4.3",
+        "next": "^16.1.6",
+        "pg": "^8.13.0",
+        "react": "18.3.1",
+        "react-dom": "18.3.1"
+      },
+      "devDependencies": {
+        "@playwright/test": "^1.58.2",
+        "@types/bcryptjs": "^2.4.6",
+        "@types/node": "^20.14.12",
+        "@types/pg": "^8.11.10",
+        "@types/react": "^18.3.3",
+        "@types/react-dom": "^18.3.0",
+        "autoprefixer": "^10.4.19",
+        "dotenv": "^16.4.5",
+        "eslint": "^9.39.2",
+        "eslint-config-next": "^16.1.6",
+        "playwright": "^1.49.1",
+        "postcss": "^8.4.39",
+        "server-only": "^0.0.1",
+        "tailwindcss": "^3.4.7",
+        "tsx": "^4.19.2",
+        "typescript": "^5.5.4"
+      }
+    },
+    "apps/web/node_modules/@next/eslint-plugin-next": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/eslint-plugin-next/-/eslint-plugin-next-16.1.6.tgz",
+      "integrity": "sha512-/Qq3PTagA6+nYVfryAtQ7/9FEr/6YVyvOtl6rZnGsbReGLf0jZU6gkpr1FuChAQpvV46a78p4cmHOVP8mbfSMQ==",
+      "dev": true,
+      "dependencies": {
+        "fast-glob": "3.3.1"
+      }
+    },
+    "apps/web/node_modules/eslint-config-next": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/eslint-config-next/-/eslint-config-next-16.1.6.tgz",
+      "integrity": "sha512-vKq40io2B0XtkkNDYyleATwblNt8xuh3FWp8SpSz3pt7P01OkBFlKsJZ2mWt5WsCySlDQLckb1zMY9yE9Qy0LA==",
+      "dev": true,
+      "dependencies": {
+        "@next/eslint-plugin-next": "16.1.6",
+        "eslint-import-resolver-node": "^0.3.6",
+        "eslint-import-resolver-typescript": "^3.5.2",
+        "eslint-plugin-import": "^2.32.0",
+        "eslint-plugin-jsx-a11y": "^6.10.0",
+        "eslint-plugin-react": "^7.37.0",
+        "eslint-plugin-react-hooks": "^7.0.0",
+        "globals": "16.4.0",
+        "typescript-eslint": "^8.46.0"
+      },
+      "peerDependencies": {
+        "eslint": ">=9.0.0",
+        "typescript": ">=3.3.1"
+      },
+      "peerDependenciesMeta": {
+        "typescript": {
+          "optional": true
+        }
+      }
+    },
+    "apps/web/node_modules/eslint-config-next/node_modules/globals": {
+      "version": "16.4.0",
+      "resolved": "https://registry.npmjs.org/globals/-/globals-16.4.0.tgz",
+      "integrity": "sha512-ob/2LcVVaVGCYN+r14cnwnoDPUufjiYgSqRhiFD0Q1iI4Odora5RE8Iv1D24hAz5oMophRGkGz+yuvQmmUMnMw==",
+      "dev": true,
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "apps/web/node_modules/eslint-plugin-react-hooks": {
+      "version": "7.0.1",
+      "resolved": "https://registry.npmjs.org/eslint-plugin-react-hooks/-/eslint-plugin-react-hooks-7.0.1.tgz",
+      "integrity": "sha512-O0d0m04evaNzEPoSW+59Mezf8Qt0InfgGIBJnpC0h3NH/WjUAR7BIKUfysC6todmtiZ/A0oUVS8Gce0WhBrHsA==",
+      "dev": true,
+      "dependencies": {
+        "@babel/core": "^7.24.4",
+        "@babel/parser": "^7.24.4",
+        "hermes-parser": "^0.25.1",
+        "zod": "^3.25.0 || ^4.0.0",
+        "zod-validation-error": "^3.5.0 || ^4.0.0"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "peerDependencies": {
+        "eslint": "^3.0.0 || ^4.0.0 || ^5.0.0 || ^6.0.0 || ^7.0.0 || ^8.0.0-0 || ^9.0.0"
+      }
+    },
+    "apps/web/node_modules/fast-glob": {
+      "version": "3.3.1",
+      "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.1.tgz",
+      "integrity": "sha512-kNFPyjhh5cKjrUltxs+wFx+ZkbRaxxmZ+X0ZU31SOsxCEtP9VPgtq2teZw1DebupL5GmDaNQ6yKMMVcM41iqDg==",
+      "dev": true,
+      "dependencies": {
+        "@nodelib/fs.stat": "^2.0.2",
+        "@nodelib/fs.walk": "^1.2.3",
+        "glob-parent": "^5.1.2",
+        "merge2": "^1.3.0",
+        "micromatch": "^4.0.4"
+      },
+      "engines": {
+        "node": ">=8.6.0"
+      }
+    },
+    "apps/web/node_modules/fast-glob/node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "dev": true,
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/@alloc/quick-lru": {
+      "version": "5.2.0",
+      "resolved": "https://registry.npmjs.org/@alloc/quick-lru/-/quick-lru-5.2.0.tgz",
+      "integrity": "sha512-UrcABB+4bUrFABwbluTIBErXwvbsU/V7TZWfmbgJfbkwiBuziS9gxdODUyuiecfdGQ85jglMW6juS3+z5TsKLw==",
+      "dev": true,
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@babel/code-frame": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.28.6.tgz",
+      "integrity": "sha512-JYgintcMjRiCvS8mMECzaEn+m3PfoQiyqukOMCCVQtoJGYJw8j/8LBJEiqkHLkfwCcs74E3pbAUFNg7d9VNJ+Q==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "js-tokens": "^4.0.0",
+        "picocolors": "^1.1.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/compat-data": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/compat-data/-/compat-data-7.28.6.tgz",
+      "integrity": "sha512-2lfu57JtzctfIrcGMz992hyLlByuzgIk58+hhGCxjKZ3rWI82NnVLjXcaTqkI2NvlcvOskZaiZ5kjUALo3Lpxg==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/core": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/core/-/core-7.28.6.tgz",
+      "integrity": "sha512-H3mcG6ZDLTlYfaSNi0iOKkigqMFvkTKlGUYlD8GW7nNOYRrevuA46iTypPyv+06V3fEmvvazfntkBU34L0azAw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/code-frame": "^7.28.6",
+        "@babel/generator": "^7.28.6",
+        "@babel/helper-compilation-targets": "^7.28.6",
+        "@babel/helper-module-transforms": "^7.28.6",
+        "@babel/helpers": "^7.28.6",
+        "@babel/parser": "^7.28.6",
+        "@babel/template": "^7.28.6",
+        "@babel/traverse": "^7.28.6",
+        "@babel/types": "^7.28.6",
+        "@jridgewell/remapping": "^2.3.5",
+        "convert-source-map": "^2.0.0",
+        "debug": "^4.1.0",
+        "gensync": "^1.0.0-beta.2",
+        "json5": "^2.2.3",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/babel"
+      }
+    },
+    "node_modules/@babel/core/node_modules/json5": {
+      "version": "2.2.3",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-2.2.3.tgz",
+      "integrity": "sha512-XmOWe7eyHYH14cLdVPoyg+GOH3rYX++KpzrylJwSW98t3Nk+U8XOl8FWKOgwtzdb8lXGf6zYwDUzeHMWfxasyg==",
+      "dev": true,
+      "bin": {
+        "json5": "lib/cli.js"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/@babel/core/node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/@babel/generator": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.28.6.tgz",
+      "integrity": "sha512-lOoVRwADj8hjf7al89tvQ2a1lf53Z+7tiXMgpZJL3maQPDxh0DgLMN62B2MKUOFcoodBHLMbDM6WAbKgNy5Suw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/parser": "^7.28.6",
+        "@babel/types": "^7.28.6",
+        "@jridgewell/gen-mapping": "^0.3.12",
+        "@jridgewell/trace-mapping": "^0.3.28",
+        "jsesc": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-compilation-targets": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-compilation-targets/-/helper-compilation-targets-7.28.6.tgz",
+      "integrity": "sha512-JYtls3hqi15fcx5GaSNL7SCTJ2MNmjrkHXg4FSpOA/grxK8KwyZ5bubHsCq8FXCkua6xhuaaBit+3b7+VZRfcA==",
+      "dev": true,
+      "dependencies": {
+        "@babel/compat-data": "^7.28.6",
+        "@babel/helper-validator-option": "^7.27.1",
+        "browserslist": "^4.24.0",
+        "lru-cache": "^5.1.1",
+        "semver": "^6.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-compilation-targets/node_modules/lru-cache": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/lru-cache/-/lru-cache-5.1.1.tgz",
+      "integrity": "sha512-KpNARQA3Iwv+jTA0utUVVbrh+Jlrr1Fv0e56GGzAFOXN7dk/FviaDW8LHmK52DlcH4WP2n6gI8vN1aesBFgo9w==",
+      "dev": true,
+      "dependencies": {
+        "yallist": "^3.0.2"
+      }
+    },
+    "node_modules/@babel/helper-compilation-targets/node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/@babel/helper-globals": {
+      "version": "7.28.0",
+      "resolved": "https://registry.npmjs.org/@babel/helper-globals/-/helper-globals-7.28.0.tgz",
+      "integrity": "sha512-+W6cISkXFa1jXsDEdYA8HeevQT/FULhxzR99pxphltZcVaugps53THCeiWA8SguxxpSp3gKPiuYfSWopkLQ4hw==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-imports": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-imports/-/helper-module-imports-7.28.6.tgz",
+      "integrity": "sha512-l5XkZK7r7wa9LucGw9LwZyyCUscb4x37JWTPz7swwFE/0FMQAGpiWUZn8u9DzkSBWEcK25jmvubfpw2dnAMdbw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/traverse": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-module-transforms": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helper-module-transforms/-/helper-module-transforms-7.28.6.tgz",
+      "integrity": "sha512-67oXFAYr2cDLDVGLXTEABjdBJZ6drElUSI7WKp70NrpyISso3plG9SAGEF6y7zbha/wOzUByWWTJvEDVNIUGcA==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-module-imports": "^7.28.6",
+        "@babel/helper-validator-identifier": "^7.28.5",
+        "@babel/traverse": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      },
+      "peerDependencies": {
+        "@babel/core": "^7.0.0"
+      }
+    },
+    "node_modules/@babel/helper-string-parser": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.27.1.tgz",
+      "integrity": "sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-identifier": {
+      "version": "7.28.5",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.28.5.tgz",
+      "integrity": "sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-option": {
+      "version": "7.27.1",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-option/-/helper-validator-option-7.27.1.tgz",
+      "integrity": "sha512-YvjJow9FxbhFFKDSuFnVCe2WxXk1zWc22fFePVNEaWJEu8IrZVlda6N0uHwzZrUM1il7NC9Mlp4MaJYbYd9JSg==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helpers": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.28.6.tgz",
+      "integrity": "sha512-xOBvwq86HHdB7WUDTfKfT/Vuxh7gElQ+Sfti2Cy6yIWNW05P8iUslOVcZ4/sKbE+/jQaukQAdz/gf3724kYdqw==",
+      "dev": true,
+      "dependencies": {
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/parser": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.28.6.tgz",
+      "integrity": "sha512-TeR9zWR18BvbfPmGbLampPMW+uW1NZnJlRuuHso8i87QZNq2JRF9i6RgxRqtEq+wQGsS19NNTWr2duhnE49mfQ==",
+      "dev": true,
+      "dependencies": {
+        "@babel/types": "^7.28.6"
+      },
+      "bin": {
+        "parser": "bin/babel-parser.js"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@babel/template": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.28.6.tgz",
+      "integrity": "sha512-YA6Ma2KsCdGb+WC6UpBVFJGXL58MDA6oyONbjyF/+5sBgxY/dwkhLogbMT2GXXyU84/IhRw/2D1Os1B/giz+BQ==",
+      "dev": true,
+      "dependencies": {
+        "@babel/code-frame": "^7.28.6",
+        "@babel/parser": "^7.28.6",
+        "@babel/types": "^7.28.6"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/traverse": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.28.6.tgz",
+      "integrity": "sha512-fgWX62k02qtjqdSNTAGxmKYY/7FSL9WAS1o2Hu5+I5m9T0yxZzr4cnrfXQ/MX0rIifthCSs6FKTlzYbJcPtMNg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/code-frame": "^7.28.6",
+        "@babel/generator": "^7.28.6",
+        "@babel/helper-globals": "^7.28.0",
+        "@babel/parser": "^7.28.6",
+        "@babel/template": "^7.28.6",
+        "@babel/types": "^7.28.6",
+        "debug": "^4.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/types": {
+      "version": "7.28.6",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.28.6.tgz",
+      "integrity": "sha512-0ZrskXVEHSWIqZM/sQZ4EV3jZJXRkio/WCxaqKZP1g//CEWEPSfeZFcms4XeKBCHU0ZKnIkdJeU/kF+eRp5lBg==",
+      "dev": true,
+      "dependencies": {
+        "@babel/helper-string-parser": "^7.27.1",
+        "@babel/helper-validator-identifier": "^7.28.5"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@emnapi/core": {
+      "version": "1.8.1",
+      "resolved": "https://registry.npmjs.org/@emnapi/core/-/core-1.8.1.tgz",
+      "integrity": "sha512-AvT9QFpxK0Zd8J0jopedNm+w/2fIzvtPKPjqyw9jwvBaReTTqPBk9Hixaz7KbjimP+QNz605/XnjFcDAL2pqBg==",
+      "dev": true,
+      "optional": true,
+      "dependencies": {
+        "@emnapi/wasi-threads": "1.1.0",
+        "tslib": "^2.4.0"
+      }
+    },
+    "node_modules/@emnapi/runtime": {
+      "version": "1.8.1",
+      "resolved": "https://registry.npmjs.org/@emnapi/runtime/-/runtime-1.8.1.tgz",
+      "integrity": "sha512-mehfKSMWjjNol8659Z8KxEMrdSJDDot5SXMq00dM8BN4o+CLNXQ0xH2V7EchNHV4RmbZLmmPdEaXZc5H2FXmDg==",
+      "optional": true,
+      "dependencies": {
+        "tslib": "^2.4.0"
+      }
+    },
+    "node_modules/@emnapi/wasi-threads": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@emnapi/wasi-threads/-/wasi-threads-1.1.0.tgz",
+      "integrity": "sha512-WI0DdZ8xFSbgMjR1sFsKABJ/C5OnRrjT06JXbZKexJGrDuPTzZdDYfFlsgcCXCyf+suG5QU2e/y1Wo2V/OapLQ==",
+      "dev": true,
+      "optional": true,
+      "dependencies": {
+        "tslib": "^2.4.0"
+      }
+    },
+    "node_modules/@esbuild/aix-ppc64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/aix-ppc64/-/aix-ppc64-0.27.2.tgz",
+      "integrity": "sha512-GZMB+a0mOMZs4MpDbj8RJp4cw+w1WV5NYD6xzgvzUJ5Ek2jerwfO2eADyI6ExDSUED+1X8aMbegahsJi+8mgpw==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "aix"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-arm": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.27.2.tgz",
+      "integrity": "sha512-DVNI8jlPa7Ujbr1yjU2PfUSRtAUZPG9I1RwW4F4xFB1Imiu2on0ADiI/c3td+KmDtVKNbi+nffGDQMfcIMkwIA==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.27.2.tgz",
+      "integrity": "sha512-pvz8ZZ7ot/RBphf8fv60ljmaoydPU12VuXHImtAs0XhLLw+EXBi2BLe3OYSBslR4rryHvweW5gmkKFwTiFy6KA==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/android-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.27.2.tgz",
+      "integrity": "sha512-z8Ank4Byh4TJJOh4wpz8g2vDy75zFL0TlZlkUkEwYXuPSgX8yzep596n6mT7905kA9uHZsf/o2OJZubl2l3M7A==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/darwin-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.27.2.tgz",
+      "integrity": "sha512-davCD2Zc80nzDVRwXTcQP/28fiJbcOwvdolL0sOiOsbwBa72kegmVU0Wrh1MYrbuCL98Omp5dVhQFWRKR2ZAlg==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/darwin-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.27.2.tgz",
+      "integrity": "sha512-ZxtijOmlQCBWGwbVmwOF/UCzuGIbUkqB1faQRf5akQmxRJ1ujusWsb3CVfk/9iZKr2L5SMU5wPBi1UWbvL+VQA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/freebsd-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.27.2.tgz",
+      "integrity": "sha512-lS/9CN+rgqQ9czogxlMcBMGd+l8Q3Nj1MFQwBZJyoEKI50XGxwuzznYdwcav6lpOGv5BqaZXqvBSiB/kJ5op+g==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/freebsd-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.27.2.tgz",
+      "integrity": "sha512-tAfqtNYb4YgPnJlEFu4c212HYjQWSO/w/h/lQaBK7RbwGIkBOuNKQI9tqWzx7Wtp7bTPaGC6MJvWI608P3wXYA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-arm": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.27.2.tgz",
+      "integrity": "sha512-vWfq4GaIMP9AIe4yj1ZUW18RDhx6EPQKjwe7n8BbIecFtCQG4CfHGaHuh7fdfq+y3LIA2vGS/o9ZBGVxIDi9hw==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.27.2.tgz",
+      "integrity": "sha512-hYxN8pr66NsCCiRFkHUAsxylNOcAQaxSSkHMMjcpx0si13t1LHFphxJZUiGwojB1a/Hd5OiPIqDdXONia6bhTw==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-ia32": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.27.2.tgz",
+      "integrity": "sha512-MJt5BRRSScPDwG2hLelYhAAKh9imjHK5+NE/tvnRLbIqUWa+0E9N4WNMjmp/kXXPHZGqPLxggwVhz7QP8CTR8w==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-loong64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.27.2.tgz",
+      "integrity": "sha512-lugyF1atnAT463aO6KPshVCJK5NgRnU4yb3FUumyVz+cGvZbontBgzeGFO1nF+dPueHD367a2ZXe1NtUkAjOtg==",
+      "cpu": [
+        "loong64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-mips64el": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.27.2.tgz",
+      "integrity": "sha512-nlP2I6ArEBewvJ2gjrrkESEZkB5mIoaTswuqNFRv/WYd+ATtUpe9Y09RnJvgvdag7he0OWgEZWhviS1OTOKixw==",
+      "cpu": [
+        "mips64el"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-ppc64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.27.2.tgz",
+      "integrity": "sha512-C92gnpey7tUQONqg1n6dKVbx3vphKtTHJaNG2Ok9lGwbZil6DrfyecMsp9CrmXGQJmZ7iiVXvvZH6Ml5hL6XdQ==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-riscv64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.27.2.tgz",
+      "integrity": "sha512-B5BOmojNtUyN8AXlK0QJyvjEZkWwy/FKvakkTDCziX95AowLZKR6aCDhG7LeF7uMCXEJqwa8Bejz5LTPYm8AvA==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-s390x": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.27.2.tgz",
+      "integrity": "sha512-p4bm9+wsPwup5Z8f4EpfN63qNagQ47Ua2znaqGH6bqLlmJ4bx97Y9JdqxgGZ6Y8xVTixUnEkoKSHcpRlDnNr5w==",
+      "cpu": [
+        "s390x"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/linux-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.27.2.tgz",
+      "integrity": "sha512-uwp2Tip5aPmH+NRUwTcfLb+W32WXjpFejTIOWZFw/v7/KnpCDKG66u4DLcurQpiYTiYwQ9B7KOeMJvLCu/OvbA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/netbsd-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-arm64/-/netbsd-arm64-0.27.2.tgz",
+      "integrity": "sha512-Kj6DiBlwXrPsCRDeRvGAUb/LNrBASrfqAIok+xB0LxK8CHqxZ037viF13ugfsIpePH93mX7xfJp97cyDuTZ3cw==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/netbsd-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.27.2.tgz",
+      "integrity": "sha512-HwGDZ0VLVBY3Y+Nw0JexZy9o/nUAWq9MlV7cahpaXKW6TOzfVno3y3/M8Ga8u8Yr7GldLOov27xiCnqRZf0tCA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openbsd-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-arm64/-/openbsd-arm64-0.27.2.tgz",
+      "integrity": "sha512-DNIHH2BPQ5551A7oSHD0CKbwIA/Ox7+78/AWkbS5QoRzaqlev2uFayfSxq68EkonB+IKjiuxBFoV8ESJy8bOHA==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openbsd-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.27.2.tgz",
+      "integrity": "sha512-/it7w9Nb7+0KFIzjalNJVR5bOzA9Vay+yIPLVHfIQYG/j+j9VTH84aNB8ExGKPU4AzfaEvN9/V4HV+F+vo8OEg==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/openharmony-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/openharmony-arm64/-/openharmony-arm64-0.27.2.tgz",
+      "integrity": "sha512-LRBbCmiU51IXfeXk59csuX/aSaToeG7w48nMwA6049Y4J4+VbWALAuXcs+qcD04rHDuSCSRKdmY63sruDS5qag==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "openharmony"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/sunos-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.27.2.tgz",
+      "integrity": "sha512-kMtx1yqJHTmqaqHPAzKCAkDaKsffmXkPHThSfRwZGyuqyIeBvf08KSsYXl+abf5HDAPMJIPnbBfXvP2ZC2TfHg==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "sunos"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-arm64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.27.2.tgz",
+      "integrity": "sha512-Yaf78O/B3Kkh+nKABUF++bvJv5Ijoy9AN1ww904rOXZFLWVc5OLOfL56W+C8F9xn5JQZa3UX6m+IktJnIb1Jjg==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-ia32": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.27.2.tgz",
+      "integrity": "sha512-Iuws0kxo4yusk7sw70Xa2E2imZU5HoixzxfGCdxwBdhiDgt9vX9VUCBhqcwY7/uh//78A1hMkkROMJq9l27oLQ==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@esbuild/win32-x64": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.27.2.tgz",
+      "integrity": "sha512-sRdU18mcKf7F+YgheI/zGf5alZatMUTKj/jNS6l744f9u3WFu4v7twcUI9vu4mknF4Y9aDlblIie0IM+5xxaqQ==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@eslint-community/eslint-utils": {
+      "version": "4.9.1",
+      "resolved": "https://registry.npmjs.org/@eslint-community/eslint-utils/-/eslint-utils-4.9.1.tgz",
+      "integrity": "sha512-phrYmNiYppR7znFEdqgfWHXR6NCkZEK7hwWDHZUjit/2/U0r6XvkDl0SYnoM51Hq7FhCGdLDT6zxCCOY1hexsQ==",
+      "dev": true,
+      "dependencies": {
+        "eslint-visitor-keys": "^3.4.3"
+      },
+      "engines": {
+        "node": "^12.22.0 || ^14.17.0 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      },
+      "peerDependencies": {
+        "eslint": "^6.0.0 || ^7.0.0 || >=8.0.0"
+      }
+    },
+    "node_modules/@eslint-community/regexpp": {
+      "version": "4.12.2",
+      "resolved": "https://registry.npmjs.org/@eslint-community/regexpp/-/regexpp-4.12.2.tgz",
+      "integrity": "sha512-EriSTlt5OC9/7SXkRSCAhfSxxoSUgBm33OH+IkwbdpgoqsSsUg7y3uh+IICI/Qg4BBWr3U2i39RpmycbxMq4ew==",
+      "dev": true,
+      "engines": {
+        "node": "^12.0.0 || ^14.0.0 || >=16.0.0"
+      }
+    },
+    "node_modules/@eslint/config-array": {
+      "version": "0.21.1",
+      "resolved": "https://registry.npmjs.org/@eslint/config-array/-/config-array-0.21.1.tgz",
+      "integrity": "sha512-aw1gNayWpdI/jSYVgzN5pL0cfzU02GT3NBpeT/DXbx1/1x7ZKxFPd9bwrzygx/qiwIQiJ1sw/zD8qY/kRvlGHA==",
+      "dev": true,
+      "dependencies": {
+        "@eslint/object-schema": "^2.1.7",
+        "debug": "^4.3.1",
+        "minimatch": "^3.1.2"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      }
+    },
+    "node_modules/@eslint/config-helpers": {
+      "version": "0.4.2",
+      "resolved": "https://registry.npmjs.org/@eslint/config-helpers/-/config-helpers-0.4.2.tgz",
+      "integrity": "sha512-gBrxN88gOIf3R7ja5K9slwNayVcZgK6SOUORm2uBzTeIEfeVaIhOpCtTox3P6R7o2jLFwLFTLnC7kU/RGcYEgw==",
+      "dev": true,
+      "dependencies": {
+        "@eslint/core": "^0.17.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      }
+    },
+    "node_modules/@eslint/core": {
+      "version": "0.17.0",
+      "resolved": "https://registry.npmjs.org/@eslint/core/-/core-0.17.0.tgz",
+      "integrity": "sha512-yL/sLrpmtDaFEiUj1osRP4TI2MDz1AddJL+jZ7KSqvBuliN4xqYY54IfdN8qD8Toa6g1iloph1fxQNkjOxrrpQ==",
+      "dev": true,
+      "dependencies": {
+        "@types/json-schema": "^7.0.15"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      }
+    },
+    "node_modules/@eslint/eslintrc": {
+      "version": "3.3.3",
+      "resolved": "https://registry.npmjs.org/@eslint/eslintrc/-/eslintrc-3.3.3.tgz",
+      "integrity": "sha512-Kr+LPIUVKz2qkx1HAMH8q1q6azbqBAsXJUxBl/ODDuVPX45Z9DfwB8tPjTi6nNZ8BuM3nbJxC5zCAg5elnBUTQ==",
+      "dev": true,
+      "dependencies": {
+        "ajv": "^6.12.4",
+        "debug": "^4.3.2",
+        "espree": "^10.0.1",
+        "globals": "^14.0.0",
+        "ignore": "^5.2.0",
+        "import-fresh": "^3.2.1",
+        "js-yaml": "^4.1.1",
+        "minimatch": "^3.1.2",
+        "strip-json-comments": "^3.1.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/@eslint/js": {
+      "version": "9.39.2",
+      "resolved": "https://registry.npmjs.org/@eslint/js/-/js-9.39.2.tgz",
+      "integrity": "sha512-q1mjIoW1VX4IvSocvM/vbTiveKC4k9eLrajNEuSsmjymSDEbpGddtpfOoN7YGAqBK3NG+uqo8ia4PDTt8buCYA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://eslint.org/donate"
+      }
+    },
+    "node_modules/@eslint/object-schema": {
+      "version": "2.1.7",
+      "resolved": "https://registry.npmjs.org/@eslint/object-schema/-/object-schema-2.1.7.tgz",
+      "integrity": "sha512-VtAOaymWVfZcmZbp6E2mympDIHvyjXs/12LqWYjVw6qjrfF+VK+fyG33kChz3nnK+SU5/NeHOqrTEHS8sXO3OA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      }
+    },
+    "node_modules/@eslint/plugin-kit": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/@eslint/plugin-kit/-/plugin-kit-0.4.1.tgz",
+      "integrity": "sha512-43/qtrDUokr7LJqoF2c3+RInu/t4zfrpYdoSDfYyhg52rwLV6TnOvdG4fXm7IkSB3wErkcmJS9iEhjVtOSEjjA==",
+      "dev": true,
+      "dependencies": {
+        "@eslint/core": "^0.17.0",
+        "levn": "^0.4.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      }
+    },
+    "node_modules/@fiddy/db": {
+      "resolved": "packages/db",
+      "link": true
+    },
+    "node_modules/@fiddy/shared": {
+      "resolved": "packages/shared",
+      "link": true
+    },
+    "node_modules/@fiddy/web": {
+      "resolved": "apps/web",
+      "link": true
+    },
+    "node_modules/@humanfs/core": {
+      "version": "0.19.1",
+      "resolved": "https://registry.npmjs.org/@humanfs/core/-/core-0.19.1.tgz",
+      "integrity": "sha512-5DyQ4+1JEUzejeK1JGICcideyfUbGixgS9jNgex5nqkW+cY7WZhxBigmieN5Qnw9ZosSNVC9KQKyb+GUaGyKUA==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.18.0"
+      }
+    },
+    "node_modules/@humanfs/node": {
+      "version": "0.16.7",
+      "resolved": "https://registry.npmjs.org/@humanfs/node/-/node-0.16.7.tgz",
+      "integrity": "sha512-/zUx+yOsIrG4Y43Eh2peDeKCxlRt/gET6aHfaKpuq267qXdYDFViVHfMaLyygZOnl0kGWxFIgsBy8QFuTLUXEQ==",
+      "dev": true,
+      "dependencies": {
+        "@humanfs/core": "^0.19.1",
+        "@humanwhocodes/retry": "^0.4.0"
+      },
+      "engines": {
+        "node": ">=18.18.0"
+      }
+    },
+    "node_modules/@humanwhocodes/module-importer": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/@humanwhocodes/module-importer/-/module-importer-1.0.1.tgz",
+      "integrity": "sha512-bxveV4V8v5Yb4ncFTT3rPSgZBOpCkjfK0y4oVVVJwIuDVBRMDXrPyXRL988i5ap9m9bnyEEjWfm5WkBmtffLfA==",
+      "dev": true,
+      "engines": {
+        "node": ">=12.22"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/nzakas"
+      }
+    },
+    "node_modules/@humanwhocodes/retry": {
+      "version": "0.4.3",
+      "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.4.3.tgz",
+      "integrity": "sha512-bV0Tgo9K4hfPCek+aMAn81RppFKv2ySDQeMoSZuvTASywNTnVJCArCZE2FWqpvIatKu7VMRLWlR1EazvVhDyhQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.18"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/nzakas"
+      }
+    },
+    "node_modules/@img/colour": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/@img/colour/-/colour-1.0.0.tgz",
+      "integrity": "sha512-A5P/LfWGFSl6nsckYtjw9da+19jB8hkJ6ACTGcDfEJ0aE+l2n2El7dsVM7UVHZQ9s2lmYMWlrS21YLy2IR1LUw==",
+      "optional": true,
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@img/sharp-darwin-arm64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-darwin-arm64/-/sharp-darwin-arm64-0.34.5.tgz",
+      "integrity": "sha512-imtQ3WMJXbMY4fxb/Ndp6HBTNVtWCUI0WdobyheGf5+ad6xX8VIDO8u2xE4qc/fr08CKG/7dDseFtn6M6g/r3w==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-darwin-arm64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-darwin-x64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-darwin-x64/-/sharp-darwin-x64-0.34.5.tgz",
+      "integrity": "sha512-YNEFAF/4KQ/PeW0N+r+aVVsoIY0/qxxikF2SWdp+NRkmMB7y9LBZAVqQ4yhGCm/H3H270OSykqmQMKLBhBJDEw==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-darwin-x64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-libvips-darwin-arm64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-darwin-arm64/-/sharp-libvips-darwin-arm64-1.2.4.tgz",
+      "integrity": "sha512-zqjjo7RatFfFoP0MkQ51jfuFZBnVE2pRiaydKJ1G/rHZvnsrHAOcQALIi9sA5co5xenQdTugCvtb1cuf78Vf4g==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-darwin-x64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-darwin-x64/-/sharp-libvips-darwin-x64-1.2.4.tgz",
+      "integrity": "sha512-1IOd5xfVhlGwX+zXv2N93k0yMONvUlANylbJw1eTah8K/Jtpi15KC+WSiaX/nBmbm2HxRM1gZ0nSdjSsrZbGKg==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-arm": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-arm/-/sharp-libvips-linux-arm-1.2.4.tgz",
+      "integrity": "sha512-bFI7xcKFELdiNCVov8e44Ia4u2byA+l3XtsAj+Q8tfCwO6BQ8iDojYdvoPMqsKDkuoOo+X6HZA0s0q11ANMQ8A==",
+      "cpu": [
+        "arm"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-arm64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-arm64/-/sharp-libvips-linux-arm64-1.2.4.tgz",
+      "integrity": "sha512-excjX8DfsIcJ10x1Kzr4RcWe1edC9PquDRRPx3YVCvQv+U5p7Yin2s32ftzikXojb1PIFc/9Mt28/y+iRklkrw==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-ppc64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-ppc64/-/sharp-libvips-linux-ppc64-1.2.4.tgz",
+      "integrity": "sha512-FMuvGijLDYG6lW+b/UvyilUWu5Ayu+3r2d1S8notiGCIyYU/76eig1UfMmkZ7vwgOrzKzlQbFSuQfgm7GYUPpA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-riscv64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-riscv64/-/sharp-libvips-linux-riscv64-1.2.4.tgz",
+      "integrity": "sha512-oVDbcR4zUC0ce82teubSm+x6ETixtKZBh/qbREIOcI3cULzDyb18Sr/Wcyx7NRQeQzOiHTNbZFF1UwPS2scyGA==",
+      "cpu": [
+        "riscv64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-s390x": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-s390x/-/sharp-libvips-linux-s390x-1.2.4.tgz",
+      "integrity": "sha512-qmp9VrzgPgMoGZyPvrQHqk02uyjA0/QrTO26Tqk6l4ZV0MPWIW6LTkqOIov+J1yEu7MbFQaDpwdwJKhbJvuRxQ==",
+      "cpu": [
+        "s390x"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linux-x64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linux-x64/-/sharp-libvips-linux-x64-1.2.4.tgz",
+      "integrity": "sha512-tJxiiLsmHc9Ax1bz3oaOYBURTXGIRDODBqhveVHonrHJ9/+k89qbLl0bcJns+e4t4rvaNBxaEZsFtSfAdquPrw==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linuxmusl-arm64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linuxmusl-arm64/-/sharp-libvips-linuxmusl-arm64-1.2.4.tgz",
+      "integrity": "sha512-FVQHuwx1IIuNow9QAbYUzJ+En8KcVm9Lk5+uGUQJHaZmMECZmOlix9HnH7n1TRkXMS0pGxIJokIVB9SuqZGGXw==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-libvips-linuxmusl-x64": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/@img/sharp-libvips-linuxmusl-x64/-/sharp-libvips-linuxmusl-x64-1.2.4.tgz",
+      "integrity": "sha512-+LpyBk7L44ZIXwz/VYfglaX/okxezESc6UxDSoyo2Ks6Jxc4Y7sGjpgU9s4PMgqgjj1gZCylTieNamqA1MF7Dg==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-linux-arm": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-arm/-/sharp-linux-arm-0.34.5.tgz",
+      "integrity": "sha512-9dLqsvwtg1uuXBGZKsxem9595+ujv0sJ6Vi8wcTANSFpwV/GONat5eCkzQo/1O6zRIkh0m/8+5BjrRr7jDUSZw==",
+      "cpu": [
+        "arm"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-arm": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linux-arm64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-arm64/-/sharp-linux-arm64-0.34.5.tgz",
+      "integrity": "sha512-bKQzaJRY/bkPOXyKx5EVup7qkaojECG6NLYswgktOZjaXecSAeCWiZwwiFf3/Y+O1HrauiE3FVsGxFg8c24rZg==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-arm64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linux-ppc64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-ppc64/-/sharp-linux-ppc64-0.34.5.tgz",
+      "integrity": "sha512-7zznwNaqW6YtsfrGGDA6BRkISKAAE1Jo0QdpNYXNMHu2+0dTrPflTLNkpc8l7MUP5M16ZJcUvysVWWrMefZquA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-ppc64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linux-riscv64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-riscv64/-/sharp-linux-riscv64-0.34.5.tgz",
+      "integrity": "sha512-51gJuLPTKa7piYPaVs8GmByo7/U7/7TZOq+cnXJIHZKavIRHAP77e3N2HEl3dgiqdD/w0yUfiJnII77PuDDFdw==",
+      "cpu": [
+        "riscv64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-riscv64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linux-s390x": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-s390x/-/sharp-linux-s390x-0.34.5.tgz",
+      "integrity": "sha512-nQtCk0PdKfho3eC5MrbQoigJ2gd1CgddUMkabUj+rBevs8tZ2cULOx46E7oyX+04WGfABgIwmMC0VqieTiR4jg==",
+      "cpu": [
+        "s390x"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-s390x": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linux-x64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linux-x64/-/sharp-linux-x64-0.34.5.tgz",
+      "integrity": "sha512-MEzd8HPKxVxVenwAa+JRPwEC7QFjoPWuS5NZnBt6B3pu7EG2Ge0id1oLHZpPJdn3OQK+BQDiw9zStiHBTJQQQQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linux-x64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linuxmusl-arm64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linuxmusl-arm64/-/sharp-linuxmusl-arm64-0.34.5.tgz",
+      "integrity": "sha512-fprJR6GtRsMt6Kyfq44IsChVZeGN97gTD331weR1ex1c1rypDEABN6Tm2xa1wE6lYb5DdEnk03NZPqA7Id21yg==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linuxmusl-arm64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-linuxmusl-x64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-linuxmusl-x64/-/sharp-linuxmusl-x64-0.34.5.tgz",
+      "integrity": "sha512-Jg8wNT1MUzIvhBFxViqrEhWDGzqymo3sV7z7ZsaWbZNDLXRJZoRGrjulp60YYtV4wfY8VIKcWidjojlLcWrd8Q==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-libvips-linuxmusl-x64": "1.2.4"
+      }
+    },
+    "node_modules/@img/sharp-wasm32": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-wasm32/-/sharp-wasm32-0.34.5.tgz",
+      "integrity": "sha512-OdWTEiVkY2PHwqkbBI8frFxQQFekHaSSkUIJkwzclWZe64O1X4UlUjqqqLaPbUpMOQk6FBu/HtlGXNblIs0huw==",
+      "cpu": [
+        "wasm32"
+      ],
+      "optional": true,
+      "dependencies": {
+        "@emnapi/runtime": "^1.7.0"
+      },
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-win32-arm64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-win32-arm64/-/sharp-win32-arm64-0.34.5.tgz",
+      "integrity": "sha512-WQ3AgWCWYSb2yt+IG8mnC6Jdk9Whs7O0gxphblsLvdhSpSTtmu69ZG1Gkb6NuvxsNACwiPV6cNSZNzt0KPsw7g==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-win32-ia32": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-win32-ia32/-/sharp-win32-ia32-0.34.5.tgz",
+      "integrity": "sha512-FV9m/7NmeCmSHDD5j4+4pNI8Cp3aW+JvLoXcTUo0IqyjSfAZJ8dIUmijx1qaJsIiU+Hosw6xM5KijAWRJCSgNg==",
+      "cpu": [
+        "ia32"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@img/sharp-win32-x64": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/@img/sharp-win32-x64/-/sharp-win32-x64-0.34.5.tgz",
+      "integrity": "sha512-+29YMsqY2/9eFEiW93eqWnuLcWcufowXewwSNIT6UwZdUUCrM3oFjMWH/Z6/TMmb4hlFenmfAVbpWeup2jryCw==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      }
+    },
+    "node_modules/@jridgewell/gen-mapping": {
+      "version": "0.3.13",
+      "resolved": "https://registry.npmjs.org/@jridgewell/gen-mapping/-/gen-mapping-0.3.13.tgz",
+      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
+      "dev": true,
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.0",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/remapping": {
+      "version": "2.3.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/remapping/-/remapping-2.3.5.tgz",
+      "integrity": "sha512-LI9u/+laYG4Ds1TDKSJW2YPrIlcVYOwi2fUC6xB43lueCjgxV4lffOCZCtYFiH6TNOX+tQKXx97T4IKHbhyHEQ==",
+      "dev": true,
+      "dependencies": {
+        "@jridgewell/gen-mapping": "^0.3.5",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/resolve-uri": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/@jridgewell/resolve-uri/-/resolve-uri-3.1.2.tgz",
+      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@jridgewell/sourcemap-codec": {
+      "version": "1.5.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/sourcemap-codec/-/sourcemap-codec-1.5.5.tgz",
+      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og==",
+      "dev": true
+    },
+    "node_modules/@jridgewell/trace-mapping": {
+      "version": "0.3.31",
+      "resolved": "https://registry.npmjs.org/@jridgewell/trace-mapping/-/trace-mapping-0.3.31.tgz",
+      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
+      "dev": true,
+      "dependencies": {
+        "@jridgewell/resolve-uri": "^3.1.0",
+        "@jridgewell/sourcemap-codec": "^1.4.14"
+      }
+    },
+    "node_modules/@napi-rs/wasm-runtime": {
+      "version": "0.2.12",
+      "resolved": "https://registry.npmjs.org/@napi-rs/wasm-runtime/-/wasm-runtime-0.2.12.tgz",
+      "integrity": "sha512-ZVWUcfwY4E/yPitQJl481FjFo3K22D6qF0DuFH6Y/nbnE11GY5uguDxZMGXPQ8WQ0128MXQD7TnfHyK4oWoIJQ==",
+      "dev": true,
+      "optional": true,
+      "dependencies": {
+        "@emnapi/core": "^1.4.3",
+        "@emnapi/runtime": "^1.4.3",
+        "@tybys/wasm-util": "^0.10.0"
+      }
+    },
+    "node_modules/@next/env": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/env/-/env-16.1.6.tgz",
+      "integrity": "sha512-N1ySLuZjnAtN3kFnwhAwPvZah8RJxKasD7x1f8shFqhncnWZn4JMfg37diLNuoHsLAlrDfM3g4mawVdtAG8XLQ=="
+    },
+    "node_modules/@next/swc-darwin-arm64": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-darwin-arm64/-/swc-darwin-arm64-16.1.6.tgz",
+      "integrity": "sha512-wTzYulosJr/6nFnqGW7FrG3jfUUlEf8UjGA0/pyypJl42ExdVgC6xJgcXQ+V8QFn6niSG2Pb8+MIG1mZr2vczw==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-darwin-x64": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-darwin-x64/-/swc-darwin-x64-16.1.6.tgz",
+      "integrity": "sha512-BLFPYPDO+MNJsiDWbeVzqvYd4NyuRrEYVB5k2N3JfWncuHAy2IVwMAOlVQDFjj+krkWzhY2apvmekMkfQR0CUQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-linux-arm64-gnu": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-linux-arm64-gnu/-/swc-linux-arm64-gnu-16.1.6.tgz",
+      "integrity": "sha512-OJYkCd5pj/QloBvoEcJ2XiMnlJkRv9idWA/j0ugSuA34gMT6f5b7vOiCQHVRpvStoZUknhl6/UxOXL4OwtdaBw==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-linux-arm64-musl": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-linux-arm64-musl/-/swc-linux-arm64-musl-16.1.6.tgz",
+      "integrity": "sha512-S4J2v+8tT3NIO9u2q+S0G5KdvNDjXfAv06OhfOzNDaBn5rw84DGXWndOEB7d5/x852A20sW1M56vhC/tRVbccQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-linux-x64-gnu": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-linux-x64-gnu/-/swc-linux-x64-gnu-16.1.6.tgz",
+      "integrity": "sha512-2eEBDkFlMMNQnkTyPBhQOAyn2qMxyG2eE7GPH2WIDGEpEILcBPI/jdSv4t6xupSP+ot/jkfrCShLAa7+ZUPcJQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-linux-x64-musl": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-linux-x64-musl/-/swc-linux-x64-musl-16.1.6.tgz",
+      "integrity": "sha512-oicJwRlyOoZXVlxmIMaTq7f8pN9QNbdes0q2FXfRsPhfCi8n8JmOZJm5oo1pwDaFbnnD421rVU409M3evFbIqg==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-win32-arm64-msvc": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-win32-arm64-msvc/-/swc-win32-arm64-msvc-16.1.6.tgz",
+      "integrity": "sha512-gQmm8izDTPgs+DCWH22kcDmuUp7NyiJgEl18bcr8irXA5N2m2O+JQIr6f3ct42GOs9c0h8QF3L5SzIxcYAAXXw==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@next/swc-win32-x64-msvc": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/@next/swc-win32-x64-msvc/-/swc-win32-x64-msvc-16.1.6.tgz",
+      "integrity": "sha512-NRfO39AIrzBnixKbjuo2YiYhB6o9d8v/ymU9m/Xk8cyVk+k7XylniXkHwjs4s70wedVffc6bQNbufk5v0xEm0A==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">= 10"
+      }
+    },
+    "node_modules/@nodelib/fs.scandir": {
+      "version": "2.1.5",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.scandir/-/fs.scandir-2.1.5.tgz",
+      "integrity": "sha512-vq24Bq3ym5HEQm2NKCr3yXDwjc7vTsEThRDnkp2DK9p1uqLR+DHurm/NOTo0KG7HYHU7eppKZj3MyqYuMBf62g==",
+      "dev": true,
+      "dependencies": {
+        "@nodelib/fs.stat": "2.0.5",
+        "run-parallel": "^1.1.9"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@nodelib/fs.stat": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.stat/-/fs.stat-2.0.5.tgz",
+      "integrity": "sha512-RkhPPp2zrqDAQA/2jNhnztcPAlv64XdhIp7a7454A5ovI7Bukxgt7MX7udwAu3zg1DcpPU0rz3VV1SeaqvY4+A==",
+      "dev": true,
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@nodelib/fs.walk": {
+      "version": "1.2.8",
+      "resolved": "https://registry.npmjs.org/@nodelib/fs.walk/-/fs.walk-1.2.8.tgz",
+      "integrity": "sha512-oGB+UxlgWcgQkgwo8GcEGwemoTFt3FIO9ababBmaGwXIoBKZ+GTy0pP185beGg7Llih/NSHSV2XAs1lnznocSg==",
+      "dev": true,
+      "dependencies": {
+        "@nodelib/fs.scandir": "2.1.5",
+        "fastq": "^1.6.0"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/@nolyfill/is-core-module": {
+      "version": "1.0.39",
+      "resolved": "https://registry.npmjs.org/@nolyfill/is-core-module/-/is-core-module-1.0.39.tgz",
+      "integrity": "sha512-nn5ozdjYQpUCZlWGuxcJY/KpxkWQs4DcbMCmKojjyrYDEAGy4Ce19NN4v5MduafTwJlbKc99UA8YhSVqq9yPZA==",
+      "dev": true,
+      "engines": {
+        "node": ">=12.4.0"
+      }
+    },
+    "node_modules/@playwright/test": {
+      "version": "1.58.2",
+      "resolved": "https://registry.npmjs.org/@playwright/test/-/test-1.58.2.tgz",
+      "integrity": "sha512-akea+6bHYBBfA9uQqSYmlJXn61cTa+jbO87xVLCWbTqbWadRVmhxlXATaOjOgcBaWU4ePo0wB41KMFv3o35IXA==",
+      "devOptional": true,
+      "dependencies": {
+        "playwright": "1.58.2"
+      },
+      "bin": {
+        "playwright": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/@rtsao/scc": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@rtsao/scc/-/scc-1.1.0.tgz",
+      "integrity": "sha512-zt6OdqaDoOnJ1ZYsCYGt9YmWzDXl4vQdKTyJev62gFhRGKdx7mcT54V9KIjg+d2wi9EXsPvAPKe7i7WjfVWB8g==",
+      "dev": true
+    },
+    "node_modules/@swc/helpers": {
+      "version": "0.5.15",
+      "resolved": "https://registry.npmjs.org/@swc/helpers/-/helpers-0.5.15.tgz",
+      "integrity": "sha512-JQ5TuMi45Owi4/BIMAJBoSQoOJu12oOk/gADqlcUL9JEdHB8vyjUSsxqeNXnmXHjYKMi2WcYtezGEEhqUI/E2g==",
+      "dependencies": {
+        "tslib": "^2.8.0"
+      }
+    },
+    "node_modules/@tybys/wasm-util": {
+      "version": "0.10.1",
+      "resolved": "https://registry.npmjs.org/@tybys/wasm-util/-/wasm-util-0.10.1.tgz",
+      "integrity": "sha512-9tTaPJLSiejZKx+Bmog4uSubteqTvFrVrURwkmHixBo0G4seD0zUxp98E1DzUBJxLQ3NPwXrGKDiVjwx/DpPsg==",
+      "dev": true,
+      "optional": true,
+      "dependencies": {
+        "tslib": "^2.4.0"
+      }
+    },
+    "node_modules/@types/bcryptjs": {
+      "version": "2.4.6",
+      "resolved": "https://registry.npmjs.org/@types/bcryptjs/-/bcryptjs-2.4.6.tgz",
+      "integrity": "sha512-9xlo6R2qDs5uixm0bcIqCeMCE6HiQsIyel9KQySStiyqNl2tnj2mP3DX1Nf56MD6KMenNNlBBsy3LJ7gUEQPXQ==",
+      "dev": true
+    },
+    "node_modules/@types/estree": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/@types/estree/-/estree-1.0.8.tgz",
+      "integrity": "sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w==",
+      "dev": true
+    },
+    "node_modules/@types/json-schema": {
+      "version": "7.0.15",
+      "resolved": "https://registry.npmjs.org/@types/json-schema/-/json-schema-7.0.15.tgz",
+      "integrity": "sha512-5+fP8P8MFNC+AyZCDxrB2pkZFPGzqQWUzpSeuuVLvm8VMcorNYavBqoFcxK8bQz4Qsbn4oUEEem4wDLfcysGHA==",
+      "dev": true
+    },
+    "node_modules/@types/json5": {
+      "version": "0.0.29",
+      "resolved": "https://registry.npmjs.org/@types/json5/-/json5-0.0.29.tgz",
+      "integrity": "sha512-dRLjCWHYg4oaA77cxO64oO+7JwCwnIzkZPdrrC71jQmQtlhM556pwKo5bUzqvZndkVbeFLIIi+9TC40JNF5hNQ==",
+      "dev": true
+    },
+    "node_modules/@types/node": {
+      "version": "20.19.30",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-20.19.30.tgz",
+      "integrity": "sha512-WJtwWJu7UdlvzEAUm484QNg5eAoq5QR08KDNx7g45Usrs2NtOPiX8ugDqmKdXkyL03rBqU5dYNYVQetEpBHq2g==",
+      "dev": true,
+      "dependencies": {
+        "undici-types": "~6.21.0"
+      }
+    },
+    "node_modules/@types/pg": {
+      "version": "8.16.0",
+      "resolved": "https://registry.npmjs.org/@types/pg/-/pg-8.16.0.tgz",
+      "integrity": "sha512-RmhMd/wD+CF8Dfo+cVIy3RR5cl8CyfXQ0tGgW6XBL8L4LM/UTEbNXYRbLwU6w+CgrKBNbrQWt4FUtTfaU5jSYQ==",
+      "dev": true,
+      "dependencies": {
+        "@types/node": "*",
+        "pg-protocol": "*",
+        "pg-types": "^2.2.0"
+      }
+    },
+    "node_modules/@types/prop-types": {
+      "version": "15.7.15",
+      "resolved": "https://registry.npmjs.org/@types/prop-types/-/prop-types-15.7.15.tgz",
+      "integrity": "sha512-F6bEyamV9jKGAFBEmlQnesRPGOQqS2+Uwi0Em15xenOxHaf2hv6L8YCVn3rPdPJOiJfPiCnLIRyvwVaqMY3MIw==",
+      "dev": true
+    },
+    "node_modules/@types/react": {
+      "version": "18.3.27",
+      "resolved": "https://registry.npmjs.org/@types/react/-/react-18.3.27.tgz",
+      "integrity": "sha512-cisd7gxkzjBKU2GgdYrTdtQx1SORymWyaAFhaxQPK9bYO9ot3Y5OikQRvY0VYQtvwjeQnizCINJAenh/V7MK2w==",
+      "dev": true,
+      "dependencies": {
+        "@types/prop-types": "*",
+        "csstype": "^3.2.2"
+      }
+    },
+    "node_modules/@types/react-dom": {
+      "version": "18.3.7",
+      "resolved": "https://registry.npmjs.org/@types/react-dom/-/react-dom-18.3.7.tgz",
+      "integrity": "sha512-MEe3UeoENYVFXzoXEWsvcpg6ZvlrFNlOQ7EOsvhI3CfAXwzPfO8Qwuxd40nepsYKqyyVQnTdEfv68q91yLcKrQ==",
+      "dev": true,
+      "peerDependencies": {
+        "@types/react": "^18.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/project-service": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/project-service/-/project-service-8.54.0.tgz",
+      "integrity": "sha512-YPf+rvJ1s7MyiWM4uTRhE4DvBXrEV+d8oC3P9Y2eT7S+HBS0clybdMIPnhiATi9vZOYDc7OQ1L/i6ga6NFYK/g==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/tsconfig-utils": "^8.54.0",
+        "@typescript-eslint/types": "^8.54.0",
+        "debug": "^4.4.3"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/project-service/node_modules/@typescript-eslint/types": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.54.0.tgz",
+      "integrity": "sha512-PDUI9R1BVjqu7AUDsRBbKMtwmjWcn4J3le+5LpcFgWULN3LvHC5rkc9gCVxbrsrGmO1jfPybN5s6h4Jy+OnkAA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/tsconfig-utils": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/tsconfig-utils/-/tsconfig-utils-8.54.0.tgz",
+      "integrity": "sha512-dRgOyT2hPk/JwxNMZDsIXDgyl9axdJI3ogZ2XWhBPsnZUv+hPesa5iuhdYt2gzwA9t8RE5ytOJ6xB0moV0Ujvw==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/type-utils/-/type-utils-8.54.0.tgz",
+      "integrity": "sha512-hiLguxJWHjjwL6xMBwD903ciAwd7DmK30Y9Axs/etOkftC3ZNN9K44IuRD/EB08amu+Zw6W37x9RecLkOo3pMA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/typescript-estree": "8.54.0",
+        "@typescript-eslint/utils": "8.54.0",
+        "debug": "^4.4.3",
+        "ts-api-utils": "^2.4.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "eslint": "^8.57.0 || ^9.0.0",
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/@typescript-eslint/types": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.54.0.tgz",
+      "integrity": "sha512-PDUI9R1BVjqu7AUDsRBbKMtwmjWcn4J3le+5LpcFgWULN3LvHC5rkc9gCVxbrsrGmO1jfPybN5s6h4Jy+OnkAA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/@typescript-eslint/typescript-estree": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-8.54.0.tgz",
+      "integrity": "sha512-BUwcskRaPvTk6fzVWgDPdUndLjB87KYDrN5EYGetnktoeAvPtO4ONHlAZDnj5VFnUANg0Sjm7j4usBlnoVMHwA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/project-service": "8.54.0",
+        "@typescript-eslint/tsconfig-utils": "8.54.0",
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0",
+        "debug": "^4.4.3",
+        "minimatch": "^9.0.5",
+        "semver": "^7.7.3",
+        "tinyglobby": "^0.2.15",
+        "ts-api-utils": "^2.4.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/@typescript-eslint/visitor-keys": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-8.54.0.tgz",
+      "integrity": "sha512-VFlhGSl4opC0bprJiItPQ1RfUhGDIBokcPwaFH4yiBCaNPeld/9VeXbiPO1cLyorQi1G1vL+ecBk1x8o1axORA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "eslint-visitor-keys": "^4.2.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/brace-expansion": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz",
+      "integrity": "sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==",
+      "dev": true,
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/eslint-visitor-keys": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.1.tgz",
+      "integrity": "sha512-Uhdk5sfqcee/9H/rCOJikYz67o0a2Tw2hGRPOG2Y1R2dg7brRe1uG0yaNQDHu+TO/uQPF/5eCapvYSmHUjt7JQ==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "dev": true,
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/@typescript-eslint/type-utils/node_modules/ts-api-utils": {
+      "version": "2.4.0",
+      "resolved": "https://registry.npmjs.org/ts-api-utils/-/ts-api-utils-2.4.0.tgz",
+      "integrity": "sha512-3TaVTaAv2gTiMB35i3FiGJaRfwb3Pyn/j3m/bfAvGe8FB7CF6u+LMYqYlDh7reQf7UNvoTvdfAqHGmPGOSsPmA==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.12"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4"
+      }
+    },
+    "node_modules/@typescript-eslint/utils": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/utils/-/utils-8.54.0.tgz",
+      "integrity": "sha512-9Cnda8GS57AQakvRyG0PTejJNlA2xhvyNtEVIMlDWOOeEyBkYWhGPnfrIAnqxLMTSTo6q8g12XVjjev5l1NvMA==",
+      "dev": true,
+      "dependencies": {
+        "@eslint-community/eslint-utils": "^4.9.1",
+        "@typescript-eslint/scope-manager": "8.54.0",
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/typescript-estree": "8.54.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "eslint": "^8.57.0 || ^9.0.0",
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/@typescript-eslint/scope-manager": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-8.54.0.tgz",
+      "integrity": "sha512-27rYVQku26j/PbHYcVfRPonmOlVI6gihHtXFbTdB5sb6qA0wdAQAbyXFVarQ5t4HRojIz64IV90YtsjQSSGlQg==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/@typescript-eslint/types": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.54.0.tgz",
+      "integrity": "sha512-PDUI9R1BVjqu7AUDsRBbKMtwmjWcn4J3le+5LpcFgWULN3LvHC5rkc9gCVxbrsrGmO1jfPybN5s6h4Jy+OnkAA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/@typescript-eslint/typescript-estree": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-8.54.0.tgz",
+      "integrity": "sha512-BUwcskRaPvTk6fzVWgDPdUndLjB87KYDrN5EYGetnktoeAvPtO4ONHlAZDnj5VFnUANg0Sjm7j4usBlnoVMHwA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/project-service": "8.54.0",
+        "@typescript-eslint/tsconfig-utils": "8.54.0",
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0",
+        "debug": "^4.4.3",
+        "minimatch": "^9.0.5",
+        "semver": "^7.7.3",
+        "tinyglobby": "^0.2.15",
+        "ts-api-utils": "^2.4.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/@typescript-eslint/visitor-keys": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-8.54.0.tgz",
+      "integrity": "sha512-VFlhGSl4opC0bprJiItPQ1RfUhGDIBokcPwaFH4yiBCaNPeld/9VeXbiPO1cLyorQi1G1vL+ecBk1x8o1axORA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "eslint-visitor-keys": "^4.2.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/brace-expansion": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz",
+      "integrity": "sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==",
+      "dev": true,
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/eslint-visitor-keys": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.1.tgz",
+      "integrity": "sha512-Uhdk5sfqcee/9H/rCOJikYz67o0a2Tw2hGRPOG2Y1R2dg7brRe1uG0yaNQDHu+TO/uQPF/5eCapvYSmHUjt7JQ==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "dev": true,
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/@typescript-eslint/utils/node_modules/ts-api-utils": {
+      "version": "2.4.0",
+      "resolved": "https://registry.npmjs.org/ts-api-utils/-/ts-api-utils-2.4.0.tgz",
+      "integrity": "sha512-3TaVTaAv2gTiMB35i3FiGJaRfwb3Pyn/j3m/bfAvGe8FB7CF6u+LMYqYlDh7reQf7UNvoTvdfAqHGmPGOSsPmA==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.12"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4"
+      }
+    },
+    "node_modules/@unrs/resolver-binding-android-arm-eabi": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-android-arm-eabi/-/resolver-binding-android-arm-eabi-1.11.1.tgz",
+      "integrity": "sha512-ppLRUgHVaGRWUx0R0Ut06Mjo9gBaBkg3v/8AxusGLhsIotbBLuRk51rAzqLC8gq6NyyAojEXglNjzf6R948DNw==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-android-arm64": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-android-arm64/-/resolver-binding-android-arm64-1.11.1.tgz",
+      "integrity": "sha512-lCxkVtb4wp1v+EoN+HjIG9cIIzPkX5OtM03pQYkG+U5O/wL53LC4QbIeazgiKqluGeVEeBlZahHalCaBvU1a2g==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "android"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-darwin-arm64": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-darwin-arm64/-/resolver-binding-darwin-arm64-1.11.1.tgz",
+      "integrity": "sha512-gPVA1UjRu1Y/IsB/dQEsp2V1pm44Of6+LWvbLc9SDk1c2KhhDRDBUkQCYVWe6f26uJb3fOK8saWMgtX8IrMk3g==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-darwin-x64": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-darwin-x64/-/resolver-binding-darwin-x64-1.11.1.tgz",
+      "integrity": "sha512-cFzP7rWKd3lZaCsDze07QX1SC24lO8mPty9vdP+YVa3MGdVgPmFc59317b2ioXtgCMKGiCLxJ4HQs62oz6GfRQ==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-freebsd-x64": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-freebsd-x64/-/resolver-binding-freebsd-x64-1.11.1.tgz",
+      "integrity": "sha512-fqtGgak3zX4DCB6PFpsH5+Kmt/8CIi4Bry4rb1ho6Av2QHTREM+47y282Uqiu3ZRF5IQioJQ5qWRV6jduA+iGw==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "freebsd"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-arm-gnueabihf": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-arm-gnueabihf/-/resolver-binding-linux-arm-gnueabihf-1.11.1.tgz",
+      "integrity": "sha512-u92mvlcYtp9MRKmP+ZvMmtPN34+/3lMHlyMj7wXJDeXxuM0Vgzz0+PPJNsro1m3IZPYChIkn944wW8TYgGKFHw==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-arm-musleabihf": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-arm-musleabihf/-/resolver-binding-linux-arm-musleabihf-1.11.1.tgz",
+      "integrity": "sha512-cINaoY2z7LVCrfHkIcmvj7osTOtm6VVT16b5oQdS4beibX2SYBwgYLmqhBjA1t51CarSaBuX5YNsWLjsqfW5Cw==",
+      "cpu": [
+        "arm"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-arm64-gnu": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-arm64-gnu/-/resolver-binding-linux-arm64-gnu-1.11.1.tgz",
+      "integrity": "sha512-34gw7PjDGB9JgePJEmhEqBhWvCiiWCuXsL9hYphDF7crW7UgI05gyBAi6MF58uGcMOiOqSJ2ybEeCvHcq0BCmQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-arm64-musl": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-arm64-musl/-/resolver-binding-linux-arm64-musl-1.11.1.tgz",
+      "integrity": "sha512-RyMIx6Uf53hhOtJDIamSbTskA99sPHS96wxVE/bJtePJJtpdKGXO1wY90oRdXuYOGOTuqjT8ACccMc4K6QmT3w==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-ppc64-gnu": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-ppc64-gnu/-/resolver-binding-linux-ppc64-gnu-1.11.1.tgz",
+      "integrity": "sha512-D8Vae74A4/a+mZH0FbOkFJL9DSK2R6TFPC9M+jCWYia/q2einCubX10pecpDiTmkJVUH+y8K3BZClycD8nCShA==",
+      "cpu": [
+        "ppc64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-riscv64-gnu": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-riscv64-gnu/-/resolver-binding-linux-riscv64-gnu-1.11.1.tgz",
+      "integrity": "sha512-frxL4OrzOWVVsOc96+V3aqTIQl1O2TjgExV4EKgRY09AJ9leZpEg8Ak9phadbuX0BA4k8U5qtvMSQQGGmaJqcQ==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-riscv64-musl": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-riscv64-musl/-/resolver-binding-linux-riscv64-musl-1.11.1.tgz",
+      "integrity": "sha512-mJ5vuDaIZ+l/acv01sHoXfpnyrNKOk/3aDoEdLO/Xtn9HuZlDD6jKxHlkN8ZhWyLJsRBxfv9GYM2utQ1SChKew==",
+      "cpu": [
+        "riscv64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-s390x-gnu": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-s390x-gnu/-/resolver-binding-linux-s390x-gnu-1.11.1.tgz",
+      "integrity": "sha512-kELo8ebBVtb9sA7rMe1Cph4QHreByhaZ2QEADd9NzIQsYNQpt9UkM9iqr2lhGr5afh885d/cB5QeTXSbZHTYPg==",
+      "cpu": [
+        "s390x"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-x64-gnu": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-x64-gnu/-/resolver-binding-linux-x64-gnu-1.11.1.tgz",
+      "integrity": "sha512-C3ZAHugKgovV5YvAMsxhq0gtXuwESUKc5MhEtjBpLoHPLYM+iuwSj3lflFwK3DPm68660rZ7G8BMcwSro7hD5w==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-linux-x64-musl": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-linux-x64-musl/-/resolver-binding-linux-x64-musl-1.11.1.tgz",
+      "integrity": "sha512-rV0YSoyhK2nZ4vEswT/QwqzqQXw5I6CjoaYMOX0TqBlWhojUf8P94mvI7nuJTeaCkkds3QE4+zS8Ko+GdXuZtA==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "linux"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-wasm32-wasi": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-wasm32-wasi/-/resolver-binding-wasm32-wasi-1.11.1.tgz",
+      "integrity": "sha512-5u4RkfxJm+Ng7IWgkzi3qrFOvLvQYnPBmjmZQ8+szTK/b31fQCnleNl1GgEt7nIsZRIf5PLhPwT0WM+q45x/UQ==",
+      "cpu": [
+        "wasm32"
+      ],
+      "dev": true,
+      "optional": true,
+      "dependencies": {
+        "@napi-rs/wasm-runtime": "^0.2.11"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@unrs/resolver-binding-win32-arm64-msvc": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-win32-arm64-msvc/-/resolver-binding-win32-arm64-msvc-1.11.1.tgz",
+      "integrity": "sha512-nRcz5Il4ln0kMhfL8S3hLkxI85BXs3o8EYoattsJNdsX4YUU89iOkVn7g0VHSRxFuVMdM4Q1jEpIId1Ihim/Uw==",
+      "cpu": [
+        "arm64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-win32-ia32-msvc": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-win32-ia32-msvc/-/resolver-binding-win32-ia32-msvc-1.11.1.tgz",
+      "integrity": "sha512-DCEI6t5i1NmAZp6pFonpD5m7i6aFrpofcp4LA2i8IIq60Jyo28hamKBxNrZcyOwVOZkgsRp9O2sXWBWP8MnvIQ==",
+      "cpu": [
+        "ia32"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/@unrs/resolver-binding-win32-x64-msvc": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/@unrs/resolver-binding-win32-x64-msvc/-/resolver-binding-win32-x64-msvc-1.11.1.tgz",
+      "integrity": "sha512-lrW200hZdbfRtztbygyaq/6jP6AKE8qQN2KvPcJ+x7wiD038YtnYtZ82IMNJ69GJibV7bwL3y9FgK+5w/pYt6g==",
+      "cpu": [
+        "x64"
+      ],
+      "dev": true,
+      "optional": true,
+      "os": [
+        "win32"
+      ]
+    },
+    "node_modules/acorn": {
+      "version": "8.15.0",
+      "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.15.0.tgz",
+      "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==",
+      "dev": true,
+      "bin": {
+        "acorn": "bin/acorn"
+      },
+      "engines": {
+        "node": ">=0.4.0"
+      }
+    },
+    "node_modules/acorn-jsx": {
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/acorn-jsx/-/acorn-jsx-5.3.2.tgz",
+      "integrity": "sha512-rq9s+JNhf0IChjtDXxllJ7g41oZk5SlXtp0LHwyA5cejwn7vKmKp4pPri6YEePv2PU65sAsegbXtIinmDFDXgQ==",
+      "dev": true,
+      "peerDependencies": {
+        "acorn": "^6.0.0 || ^7.0.0 || ^8.0.0"
+      }
+    },
+    "node_modules/ajv": {
+      "version": "6.12.6",
+      "resolved": "https://registry.npmjs.org/ajv/-/ajv-6.12.6.tgz",
+      "integrity": "sha512-j3fVLgvTo527anyYyJOGTYJbG+vnnQYvE0m5mmkc1TK+nxAppkCLMIL0aZ4dblVCNoGShhm+kzE4ZUykBoMg4g==",
+      "dev": true,
+      "dependencies": {
+        "fast-deep-equal": "^3.1.1",
+        "fast-json-stable-stringify": "^2.0.0",
+        "json-schema-traverse": "^0.4.1",
+        "uri-js": "^4.2.2"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/epoberezkin"
+      }
+    },
+    "node_modules/ansi-styles": {
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/ansi-styles/-/ansi-styles-4.3.0.tgz",
+      "integrity": "sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==",
+      "dev": true,
+      "dependencies": {
+        "color-convert": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/ansi-styles?sponsor=1"
+      }
+    },
+    "node_modules/any-promise": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/any-promise/-/any-promise-1.3.0.tgz",
+      "integrity": "sha512-7UvmKalWRt1wgjL1RrGxoSJW/0QZFIegpeGvZG9kjp8vrRu55XTHbwnqq2GpXm9uLbcuhxm3IqX9OB4MZR1b2A==",
+      "dev": true
+    },
+    "node_modules/anymatch": {
+      "version": "3.1.3",
+      "resolved": "https://registry.npmjs.org/anymatch/-/anymatch-3.1.3.tgz",
+      "integrity": "sha512-KMReFUr0B4t+D+OBkjR3KYqvocp2XaSzO55UcB6mgQMd3KbcE+mWTyvVV7D/zsdEbNnV6acZUutkiHQXvTr1Rw==",
+      "dev": true,
+      "dependencies": {
+        "normalize-path": "^3.0.0",
+        "picomatch": "^2.0.4"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/arg": {
+      "version": "5.0.2",
+      "resolved": "https://registry.npmjs.org/arg/-/arg-5.0.2.tgz",
+      "integrity": "sha512-PYjyFOLKQ9y57JvQ6QLo8dAgNqswh8M1RMJYdQduT6xbWSgK36P/Z/v+p888pM69jMMfS8Xd8F6I1kQ/I9HUGg==",
+      "dev": true
+    },
+    "node_modules/argparse": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/argparse/-/argparse-2.0.1.tgz",
+      "integrity": "sha512-8+9WqebbFzpX9OR+Wa6O29asIogeRMzcGtAINdpMHHyAg10f05aSFVBbcEqGf/PXw1EjAZ+q2/bEBg3DvurK3Q==",
+      "dev": true
+    },
+    "node_modules/aria-query": {
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/aria-query/-/aria-query-5.3.2.tgz",
+      "integrity": "sha512-COROpnaoap1E2F000S62r6A60uHZnmlvomhfyT2DlTcrY1OrBKn2UhH7qn5wTC9zMvD0AY7csdPSNwKP+7WiQw==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/array-buffer-byte-length": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/array-buffer-byte-length/-/array-buffer-byte-length-1.0.2.tgz",
+      "integrity": "sha512-LHE+8BuR7RYGDKvnrmcuSq3tDcKv9OFEXQt/HpbZhY7V6h0zlUXutnAD82GiFx9rdieCMjkvtcsPqBwgUl1Iiw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "is-array-buffer": "^3.0.5"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array-includes": {
+      "version": "3.1.9",
+      "resolved": "https://registry.npmjs.org/array-includes/-/array-includes-3.1.9.tgz",
+      "integrity": "sha512-FmeCCAenzH0KH381SPT5FZmiA/TmpndpcaShhfgEN9eCVjnFBqq3l1xrI42y8+PPLI6hypzou4GXw00WHmPBLQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.24.0",
+        "es-object-atoms": "^1.1.1",
+        "get-intrinsic": "^1.3.0",
+        "is-string": "^1.1.1",
+        "math-intrinsics": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array.prototype.findlast": {
+      "version": "1.2.5",
+      "resolved": "https://registry.npmjs.org/array.prototype.findlast/-/array.prototype.findlast-1.2.5.tgz",
+      "integrity": "sha512-CVvd6FHg1Z3POpBLxO6E6zr+rSKEQ9L6rZHAaY7lLfhKsWYUBBOuMs0e9o24oopj6H+geRCX0YJ+TJLBK2eHyQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.2",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.0.0",
+        "es-shim-unscopables": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array.prototype.findlastindex": {
+      "version": "1.2.6",
+      "resolved": "https://registry.npmjs.org/array.prototype.findlastindex/-/array.prototype.findlastindex-1.2.6.tgz",
+      "integrity": "sha512-F/TKATkzseUExPlfvmwQKGITM3DGTK+vkAsCZoDc5daVygbJBnjEUCbgkAvVFsgfXfX4YIqZ/27G3k3tdXrTxQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.9",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.1.1",
+        "es-shim-unscopables": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array.prototype.flat": {
+      "version": "1.3.3",
+      "resolved": "https://registry.npmjs.org/array.prototype.flat/-/array.prototype.flat-1.3.3.tgz",
+      "integrity": "sha512-rwG/ja1neyLqCuGZ5YYrznA62D4mZXg0i1cIskIUKSiqF3Cje9/wXAls9B9s1Wa2fomMsIv8czB8jZcPmxCXFg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.5",
+        "es-shim-unscopables": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array.prototype.flatmap": {
+      "version": "1.3.3",
+      "resolved": "https://registry.npmjs.org/array.prototype.flatmap/-/array.prototype.flatmap-1.3.3.tgz",
+      "integrity": "sha512-Y7Wt51eKJSyi80hFrJCePGGNo5ktJCslFuboqJsbf57CCPcm5zztluPlc4/aD8sWsKvlwatezpV4U1efk8kpjg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.5",
+        "es-shim-unscopables": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/array.prototype.tosorted": {
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/array.prototype.tosorted/-/array.prototype.tosorted-1.1.4.tgz",
+      "integrity": "sha512-p6Fx8B7b7ZhL/gmUsAy0D15WhvDccw3mnGNbZpi3pmeJdxtWsj2jEaI4Y6oo3XiHfzuSgPwKc04MYt6KgvC/wA==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.3",
+        "es-errors": "^1.3.0",
+        "es-shim-unscopables": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/arraybuffer.prototype.slice": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/arraybuffer.prototype.slice/-/arraybuffer.prototype.slice-1.0.4.tgz",
+      "integrity": "sha512-BNoCY6SXXPQ7gF2opIP4GBE+Xw7U+pHMYKuzjgCN3GwiaIR09UUeKfheyIry77QtrCBlC0KK0q5/TER/tYh3PQ==",
+      "dev": true,
+      "dependencies": {
+        "array-buffer-byte-length": "^1.0.1",
+        "call-bind": "^1.0.8",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.5",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.6",
+        "is-array-buffer": "^3.0.4"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/ast-types-flow": {
+      "version": "0.0.8",
+      "resolved": "https://registry.npmjs.org/ast-types-flow/-/ast-types-flow-0.0.8.tgz",
+      "integrity": "sha512-OH/2E5Fg20h2aPrbe+QL8JZQFko0YZaF+j4mnQ7BGhfavO7OpSLa8a0y9sBwomHdSbkhTS8TQNayBfnW5DwbvQ==",
+      "dev": true
+    },
+    "node_modules/async-function": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/async-function/-/async-function-1.0.0.tgz",
+      "integrity": "sha512-hsU18Ae8CDTR6Kgu9DYf0EbCr/a5iGL0rytQDobUcdpYOKokk8LEjVphnXkDkgpi0wYVsqrXuP0bZxJaTqdgoA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/autoprefixer": {
+      "version": "10.4.24",
+      "resolved": "https://registry.npmjs.org/autoprefixer/-/autoprefixer-10.4.24.tgz",
+      "integrity": "sha512-uHZg7N9ULTVbutaIsDRoUkoS8/h3bdsmVJYZ5l3wv8Cp/6UIIoRDm90hZ+BwxUj/hGBEzLxdHNSKuFpn8WOyZw==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/autoprefixer"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "browserslist": "^4.28.1",
+        "caniuse-lite": "^1.0.30001766",
+        "fraction.js": "^5.3.4",
+        "picocolors": "^1.1.1",
+        "postcss-value-parser": "^4.2.0"
+      },
+      "bin": {
+        "autoprefixer": "bin/autoprefixer"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      },
+      "peerDependencies": {
+        "postcss": "^8.1.0"
+      }
+    },
+    "node_modules/available-typed-arrays": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/available-typed-arrays/-/available-typed-arrays-1.0.7.tgz",
+      "integrity": "sha512-wvUjBtSGN7+7SjNpq/9M2Tg350UZD3q62IFZLbRAR1bSMlCo1ZaeW+BJ+D090e4hIIZLBcTDWe4Mh4jvUDajzQ==",
+      "dev": true,
+      "dependencies": {
+        "possible-typed-array-names": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/axe-core": {
+      "version": "4.11.1",
+      "resolved": "https://registry.npmjs.org/axe-core/-/axe-core-4.11.1.tgz",
+      "integrity": "sha512-BASOg+YwO2C+346x3LZOeoovTIoTrRqEsqMa6fmfAV0P+U9mFr9NsyOEpiYvFjbc64NMrSswhV50WdXzdb/Z5A==",
+      "dev": true,
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/axobject-query": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/axobject-query/-/axobject-query-4.1.0.tgz",
+      "integrity": "sha512-qIj0G9wZbMGNLjLmg1PT6v2mE9AH2zlnADJD/2tC6E00hgmhUOfEB6greHPAfLRSufHqROIUTkw6E+M3lH0PTQ==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/balanced-match": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/balanced-match/-/balanced-match-1.0.2.tgz",
+      "integrity": "sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw==",
+      "dev": true
+    },
+    "node_modules/baseline-browser-mapping": {
+      "version": "2.9.19",
+      "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.9.19.tgz",
+      "integrity": "sha512-ipDqC8FrAl/76p2SSWKSI+H9tFwm7vYqXQrItCuiVPt26Km0jS+NzSsBWAaBusvSbQcfJG+JitdMm+wZAgTYqg==",
+      "bin": {
+        "baseline-browser-mapping": "dist/cli.js"
+      }
+    },
+    "node_modules/bcryptjs": {
+      "version": "2.4.3",
+      "resolved": "https://registry.npmjs.org/bcryptjs/-/bcryptjs-2.4.3.tgz",
+      "integrity": "sha512-V/Hy/X9Vt7f3BbPJEi8BdVFMByHi+jNXrYkW3huaybV/kQ0KJg0Y6PkEMbn+zeT+i+SiKZ/HMqJGIIt4LZDqNQ=="
+    },
+    "node_modules/binary-extensions": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/binary-extensions/-/binary-extensions-2.3.0.tgz",
+      "integrity": "sha512-Ceh+7ox5qe7LJuLHoY0feh3pHuUDHAcRUeyL2VYghZwfpkNIy/+8Ocg0a3UuSoYzavmylwuLWQOf3hl0jjMMIw==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/brace-expansion": {
+      "version": "1.1.12",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.12.tgz",
+      "integrity": "sha512-9T9UjW3r0UW5c1Q7GTwllptXwhvYmEzFhzMfZ9H7FQWt+uZePjZPjBP/W1ZEyZ1twGWom5/56TF4lPcqjnDHcg==",
+      "dev": true,
+      "dependencies": {
+        "balanced-match": "^1.0.0",
+        "concat-map": "0.0.1"
+      }
+    },
+    "node_modules/braces": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/braces/-/braces-3.0.3.tgz",
+      "integrity": "sha512-yQbXgO/OSZVD2IsiLlro+7Hf6Q18EJrKSEsdoMzKePKXct3gvD8oLcOQdIzGupr5Fj+EDe8gO/lxc1BzfMpxvA==",
+      "dev": true,
+      "dependencies": {
+        "fill-range": "^7.1.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/browserslist": {
+      "version": "4.28.1",
+      "resolved": "https://registry.npmjs.org/browserslist/-/browserslist-4.28.1.tgz",
+      "integrity": "sha512-ZC5Bd0LgJXgwGqUknZY/vkUQ04r8NXnJZ3yYi4vDmSiZmC/pdSN0NbNRPxZpbtO4uAfDUAFffO8IZoM3Gj8IkA==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "baseline-browser-mapping": "^2.9.0",
+        "caniuse-lite": "^1.0.30001759",
+        "electron-to-chromium": "^1.5.263",
+        "node-releases": "^2.0.27",
+        "update-browserslist-db": "^1.2.0"
+      },
+      "bin": {
+        "browserslist": "cli.js"
+      },
+      "engines": {
+        "node": "^6 || ^7 || ^8 || ^9 || ^10 || ^11 || ^12 || >=13.7"
+      }
+    },
+    "node_modules/call-bind": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/call-bind/-/call-bind-1.0.8.tgz",
+      "integrity": "sha512-oKlSFMcMwpUg2ednkhQ454wfWiU/ul3CkJe/PEHcTKuiX6RpbehUiFMXu13HalGZxfUwCQzZG747YXBn1im9ww==",
+      "dev": true,
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.0",
+        "es-define-property": "^1.0.0",
+        "get-intrinsic": "^1.2.4",
+        "set-function-length": "^1.2.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/call-bind-apply-helpers": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz",
+      "integrity": "sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/call-bound": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/call-bound/-/call-bound-1.0.4.tgz",
+      "integrity": "sha512-+ys997U96po4Kx/ABpBCqhA9EuxJaQWDQg7295H4hBphv3IZg0boBKuwYpt4YXp6MZ5AmZQnU/tyMTlRpaSejg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.2",
+        "get-intrinsic": "^1.3.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/callsites": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/callsites/-/callsites-3.1.0.tgz",
+      "integrity": "sha512-P8BjAsXvZS+VIDUI11hHCQEv74YT67YUi5JJFNWIqL235sBmjX4+qx9Muvls5ivyNENctx46xQLQ3aTuE7ssaQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/camelcase-css": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/camelcase-css/-/camelcase-css-2.0.1.tgz",
+      "integrity": "sha512-QOSvevhslijgYwRx6Rv7zKdMF8lbRmx+uQGx2+vDc+KI/eBnsy9kit5aj23AgGu3pa4t9AgwbnXWqS+iOY+2aA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/caniuse-lite": {
+      "version": "1.0.30001766",
+      "resolved": "https://registry.npmjs.org/caniuse-lite/-/caniuse-lite-1.0.30001766.tgz",
+      "integrity": "sha512-4C0lfJ0/YPjJQHagaE9x2Elb69CIqEPZeG0anQt9SIvIoOH4a4uaRl73IavyO+0qZh6MDLH//DrXThEYKHkmYA==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/caniuse-lite"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ]
+    },
+    "node_modules/chalk": {
+      "version": "4.1.2",
+      "resolved": "https://registry.npmjs.org/chalk/-/chalk-4.1.2.tgz",
+      "integrity": "sha512-oKnbhFyRIXpUuez8iBMmyEa4nbj4IOQyuhc/wy9kY7/WVPcwIO9VA668Pu8RkO7+0G76SLROeyw9CpQ061i4mA==",
+      "dev": true,
+      "dependencies": {
+        "ansi-styles": "^4.1.0",
+        "supports-color": "^7.1.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/chalk/chalk?sponsor=1"
+      }
+    },
+    "node_modules/chokidar": {
+      "version": "3.6.0",
+      "resolved": "https://registry.npmjs.org/chokidar/-/chokidar-3.6.0.tgz",
+      "integrity": "sha512-7VT13fmjotKpGipCW9JEQAusEPE+Ei8nl6/g4FBAmIm0GOOLMua9NDDo/DWp0ZAxCr3cPq5ZpBqmPAQgDda2Pw==",
+      "dev": true,
+      "dependencies": {
+        "anymatch": "~3.1.2",
+        "braces": "~3.0.2",
+        "glob-parent": "~5.1.2",
+        "is-binary-path": "~2.1.0",
+        "is-glob": "~4.0.1",
+        "normalize-path": "~3.0.0",
+        "readdirp": "~3.6.0"
+      },
+      "engines": {
+        "node": ">= 8.10.0"
+      },
+      "funding": {
+        "url": "https://paulmillr.com/funding/"
+      },
+      "optionalDependencies": {
+        "fsevents": "~2.3.2"
+      }
+    },
+    "node_modules/chokidar/node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "dev": true,
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/client-only": {
+      "version": "0.0.1",
+      "resolved": "https://registry.npmjs.org/client-only/-/client-only-0.0.1.tgz",
+      "integrity": "sha512-IV3Ou0jSMzZrd3pZ48nLkT9DA7Ag1pnPzaiQhpW7c3RbcqqzvzzVu+L8gfqMp/8IM2MQtSiqaCxrrcfu8I8rMA=="
+    },
+    "node_modules/color-convert": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/color-convert/-/color-convert-2.0.1.tgz",
+      "integrity": "sha512-RRECPsj7iu/xb5oKYcsFHSppFNnsj/52OVTRKb4zP5onXwVF3zVmmToNcOfGC+CRDpfK/U584fMg38ZHCaElKQ==",
+      "dev": true,
+      "dependencies": {
+        "color-name": "~1.1.4"
+      },
+      "engines": {
+        "node": ">=7.0.0"
+      }
+    },
+    "node_modules/color-name": {
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/color-name/-/color-name-1.1.4.tgz",
+      "integrity": "sha512-dOy+3AuW3a2wNbZHIuMZpTcgjGuLU/uBL/ubcZF9OXbDo8ff4O8yVp5Bf0efS8uEoYo5q4Fx7dY9OgQGXgAsQA==",
+      "dev": true
+    },
+    "node_modules/commander": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/commander/-/commander-4.1.1.tgz",
+      "integrity": "sha512-NOKm8xhkzAjzFx8B2v5OAHT+u5pRQc2UCa2Vq9jYL/31o2wi9mxBA7LIFs3sV5VSC49z6pEhfbMULvShKj26WA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/concat-map": {
+      "version": "0.0.1",
+      "resolved": "https://registry.npmjs.org/concat-map/-/concat-map-0.0.1.tgz",
+      "integrity": "sha512-/Srv4dswyQNBfohGpz9o6Yb3Gz3SrUDqBH5rTuhGR7ahtlbYKnVxw2bCFMRljaA7EXHaXZ8wsHdodFvbkhKmqg==",
+      "dev": true
+    },
+    "node_modules/convert-source-map": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/convert-source-map/-/convert-source-map-2.0.0.tgz",
+      "integrity": "sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg==",
+      "dev": true
+    },
+    "node_modules/cross-spawn": {
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/cross-spawn/-/cross-spawn-7.0.6.tgz",
+      "integrity": "sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA==",
+      "dev": true,
+      "dependencies": {
+        "path-key": "^3.1.0",
+        "shebang-command": "^2.0.0",
+        "which": "^2.0.1"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/cssesc": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/cssesc/-/cssesc-3.0.0.tgz",
+      "integrity": "sha512-/Tb/JcjK111nNScGob5MNtsntNM1aCNUDipB/TkwZFhyDrrE47SOx/18wF2bbjgc3ZzCSKW1T5nt5EbFoAz/Vg==",
+      "dev": true,
+      "bin": {
+        "cssesc": "bin/cssesc"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/csstype": {
+      "version": "3.2.3",
+      "resolved": "https://registry.npmjs.org/csstype/-/csstype-3.2.3.tgz",
+      "integrity": "sha512-z1HGKcYy2xA8AGQfwrn0PAy+PB7X/GSj3UVJW9qKyn43xWa+gl5nXmU4qqLMRzWVLFC8KusUX8T/0kCiOYpAIQ==",
+      "dev": true
+    },
+    "node_modules/damerau-levenshtein": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/damerau-levenshtein/-/damerau-levenshtein-1.0.8.tgz",
+      "integrity": "sha512-sdQSFB7+llfUcQHUQO3+B8ERRj0Oa4w9POWMI/puGtuf7gFywGmkaLCElnudfTiKZV+NvHqL0ifzdrI8Ro7ESA==",
+      "dev": true
+    },
+    "node_modules/data-view-buffer": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/data-view-buffer/-/data-view-buffer-1.0.2.tgz",
+      "integrity": "sha512-EmKO5V3OLXh1rtK2wgXRansaK1/mtVdTUEiEI0W8RkvgT05kfxaH29PliLnpLP73yYO6142Q72QNa8Wx/A5CqQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "es-errors": "^1.3.0",
+        "is-data-view": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/data-view-byte-length": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/data-view-byte-length/-/data-view-byte-length-1.0.2.tgz",
+      "integrity": "sha512-tuhGbE6CfTM9+5ANGf+oQb72Ky/0+s3xKUpHvShfiz2RxMFgFPjsXuRLBVMtvMs15awe45SRb83D6wH4ew6wlQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "es-errors": "^1.3.0",
+        "is-data-view": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/inspect-js"
+      }
+    },
+    "node_modules/data-view-byte-offset": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/data-view-byte-offset/-/data-view-byte-offset-1.0.1.tgz",
+      "integrity": "sha512-BS8PfmtDGnrgYdOonGZQdLZslWIeCGFP9tpan0hi1Co2Zr2NKADsvGYA8XxuG/4UWgJ6Cjtv+YJnB6MM69QGlQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "is-data-view": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/debug": {
+      "version": "4.4.3",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-4.4.3.tgz",
+      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
+      "dev": true,
+      "dependencies": {
+        "ms": "^2.1.3"
+      },
+      "engines": {
+        "node": ">=6.0"
+      },
+      "peerDependenciesMeta": {
+        "supports-color": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/deep-is": {
+      "version": "0.1.4",
+      "resolved": "https://registry.npmjs.org/deep-is/-/deep-is-0.1.4.tgz",
+      "integrity": "sha512-oIPzksmTg4/MriiaYGO+okXDT7ztn/w3Eptv/+gSIdMdKsJo0u4CfYNFJPy+4SKMuCqGw2wxnA+URMg3t8a/bQ==",
+      "dev": true
+    },
+    "node_modules/define-data-property": {
+      "version": "1.1.4",
+      "resolved": "https://registry.npmjs.org/define-data-property/-/define-data-property-1.1.4.tgz",
+      "integrity": "sha512-rBMvIzlpA8v6E+SJZoo++HAYqsLrkg7MSfIinMPFhmkorw7X+dOXVJQs+QT69zGkzMyfDnIMN2Wid1+NbL3T+A==",
+      "dev": true,
+      "dependencies": {
+        "es-define-property": "^1.0.0",
+        "es-errors": "^1.3.0",
+        "gopd": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/define-properties": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/define-properties/-/define-properties-1.2.1.tgz",
+      "integrity": "sha512-8QmQKqEASLd5nx0U1B1okLElbUuuttJ/AnYmRXbbbGDWh6uS208EjD4Xqq/I9wK7u0v6O08XhTWnt5XtEbR6Dg==",
+      "dev": true,
+      "dependencies": {
+        "define-data-property": "^1.0.1",
+        "has-property-descriptors": "^1.0.0",
+        "object-keys": "^1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/detect-libc": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/detect-libc/-/detect-libc-2.1.2.tgz",
+      "integrity": "sha512-Btj2BOOO83o3WyH59e8MgXsxEQVcarkUOpEYrubB0urwnN10yQ364rsiByU11nZlqWYZm05i/of7io4mzihBtQ==",
+      "optional": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/didyoumean": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/didyoumean/-/didyoumean-1.2.2.tgz",
+      "integrity": "sha512-gxtyfqMg7GKyhQmb056K7M3xszy/myH8w+B4RT+QXBQsvAOdc3XymqDDPHx1BgPgsdAA5SIifona89YtRATDzw==",
+      "dev": true
+    },
+    "node_modules/dlv": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/dlv/-/dlv-1.1.3.tgz",
+      "integrity": "sha512-+HlytyjlPKnIG8XuRG8WvmBP8xs8P71y+SKKS6ZXWoEgLuePxtDoUEiH7WkdePWrQ5JBpE6aoVqfZfJUQkjXwA==",
+      "dev": true
+    },
+    "node_modules/dotenv": {
+      "version": "16.6.1",
+      "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.6.1.tgz",
+      "integrity": "sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow==",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://dotenvx.com"
+      }
+    },
+    "node_modules/dunder-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz",
+      "integrity": "sha512-KIN/nDJBQRcXw0MLVhZE9iQHmG68qAVIBg9CqmUYjmQIhgij9U5MFvrqkUL5FbtyyzZuOeOt0zdeRe4UY7ct+A==",
+      "dev": true,
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "gopd": "^1.2.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/electron-to-chromium": {
+      "version": "1.5.283",
+      "resolved": "https://registry.npmjs.org/electron-to-chromium/-/electron-to-chromium-1.5.283.tgz",
+      "integrity": "sha512-3vifjt1HgrGW/h76UEeny+adYApveS9dH2h3p57JYzBSXJIKUJAvtmIytDKjcSCt9xHfrNCFJ7gts6vkhuq++w==",
+      "dev": true
+    },
+    "node_modules/emoji-regex": {
+      "version": "9.2.2",
+      "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-9.2.2.tgz",
+      "integrity": "sha512-L18DaJsXSUk2+42pv8mLs5jJT2hqFkFE4j21wOmgbUqsZ2hL72NsUU785g9RXgo3s0ZNgVl42TiHp3ZtOv/Vyg==",
+      "dev": true
+    },
+    "node_modules/es-abstract": {
+      "version": "1.24.1",
+      "resolved": "https://registry.npmjs.org/es-abstract/-/es-abstract-1.24.1.tgz",
+      "integrity": "sha512-zHXBLhP+QehSSbsS9Pt23Gg964240DPd6QCf8WpkqEXxQ7fhdZzYsocOr5u7apWonsS5EjZDmTF+/slGMyasvw==",
+      "dev": true,
+      "dependencies": {
+        "array-buffer-byte-length": "^1.0.2",
+        "arraybuffer.prototype.slice": "^1.0.4",
+        "available-typed-arrays": "^1.0.7",
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "data-view-buffer": "^1.0.2",
+        "data-view-byte-length": "^1.0.2",
+        "data-view-byte-offset": "^1.0.1",
+        "es-define-property": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.1.1",
+        "es-set-tostringtag": "^2.1.0",
+        "es-to-primitive": "^1.3.0",
+        "function.prototype.name": "^1.1.8",
+        "get-intrinsic": "^1.3.0",
+        "get-proto": "^1.0.1",
+        "get-symbol-description": "^1.1.0",
+        "globalthis": "^1.0.4",
+        "gopd": "^1.2.0",
+        "has-property-descriptors": "^1.0.2",
+        "has-proto": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "hasown": "^2.0.2",
+        "internal-slot": "^1.1.0",
+        "is-array-buffer": "^3.0.5",
+        "is-callable": "^1.2.7",
+        "is-data-view": "^1.0.2",
+        "is-negative-zero": "^2.0.3",
+        "is-regex": "^1.2.1",
+        "is-set": "^2.0.3",
+        "is-shared-array-buffer": "^1.0.4",
+        "is-string": "^1.1.1",
+        "is-typed-array": "^1.1.15",
+        "is-weakref": "^1.1.1",
+        "math-intrinsics": "^1.1.0",
+        "object-inspect": "^1.13.4",
+        "object-keys": "^1.1.1",
+        "object.assign": "^4.1.7",
+        "own-keys": "^1.0.1",
+        "regexp.prototype.flags": "^1.5.4",
+        "safe-array-concat": "^1.1.3",
+        "safe-push-apply": "^1.0.0",
+        "safe-regex-test": "^1.1.0",
+        "set-proto": "^1.0.0",
+        "stop-iteration-iterator": "^1.1.0",
+        "string.prototype.trim": "^1.2.10",
+        "string.prototype.trimend": "^1.0.9",
+        "string.prototype.trimstart": "^1.0.8",
+        "typed-array-buffer": "^1.0.3",
+        "typed-array-byte-length": "^1.0.3",
+        "typed-array-byte-offset": "^1.0.4",
+        "typed-array-length": "^1.0.7",
+        "unbox-primitive": "^1.1.0",
+        "which-typed-array": "^1.1.19"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/es-define-property": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.1.tgz",
+      "integrity": "sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-errors": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/es-errors/-/es-errors-1.3.0.tgz",
+      "integrity": "sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-iterator-helpers": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/es-iterator-helpers/-/es-iterator-helpers-1.2.2.tgz",
+      "integrity": "sha512-BrUQ0cPTB/IwXj23HtwHjS9n7O4h9FX94b4xc5zlTHxeLgTAdzYUDyy6KdExAl9lbN5rtfe44xpjpmj9grxs5w==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.24.1",
+        "es-errors": "^1.3.0",
+        "es-set-tostringtag": "^2.1.0",
+        "function-bind": "^1.1.2",
+        "get-intrinsic": "^1.3.0",
+        "globalthis": "^1.0.4",
+        "gopd": "^1.2.0",
+        "has-property-descriptors": "^1.0.2",
+        "has-proto": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "internal-slot": "^1.1.0",
+        "iterator.prototype": "^1.1.5",
+        "safe-array-concat": "^1.1.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-object-atoms": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/es-object-atoms/-/es-object-atoms-1.1.1.tgz",
+      "integrity": "sha512-FGgH2h8zKNim9ljj7dankFPcICIK9Cp5bm+c2gQSYePhpaG5+esrLODihIorn+Pe6FGJzWhXQotPv73jTaldXA==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-set-tostringtag": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz",
+      "integrity": "sha512-j6vWzfrGVfyXxge+O0x5sh6cvxAog0a/4Rdd2K36zCMV5eJ+/+tOAngRO8cODMNWbVRdVlmGZQL2YS3yR8bIUA==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.6",
+        "has-tostringtag": "^1.0.2",
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-shim-unscopables": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/es-shim-unscopables/-/es-shim-unscopables-1.1.0.tgz",
+      "integrity": "sha512-d9T8ucsEhh8Bi1woXCf+TIKDIROLG5WCkxg8geBCbvk22kzwC5G2OnXVMO6FUsvQlgUUXQ2itephWDLqDzbeCw==",
+      "dev": true,
+      "dependencies": {
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/es-to-primitive": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/es-to-primitive/-/es-to-primitive-1.3.0.tgz",
+      "integrity": "sha512-w+5mJ3GuFL+NjVtJlvydShqE1eN3h3PbI7/5LAsYJP/2qtuMXjfL2LpHSRqo4b4eSF5K/DH1JXKUAHSB2UW50g==",
+      "dev": true,
+      "dependencies": {
+        "is-callable": "^1.2.7",
+        "is-date-object": "^1.0.5",
+        "is-symbol": "^1.0.4"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/esbuild": {
+      "version": "0.27.2",
+      "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.27.2.tgz",
+      "integrity": "sha512-HyNQImnsOC7X9PMNaCIeAm4ISCQXs5a5YasTXVliKv4uuBo1dKrG0A+uQS8M5eXjVMnLg3WgXaKvprHlFJQffw==",
+      "dev": true,
+      "hasInstallScript": true,
+      "bin": {
+        "esbuild": "bin/esbuild"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "optionalDependencies": {
+        "@esbuild/aix-ppc64": "0.27.2",
+        "@esbuild/android-arm": "0.27.2",
+        "@esbuild/android-arm64": "0.27.2",
+        "@esbuild/android-x64": "0.27.2",
+        "@esbuild/darwin-arm64": "0.27.2",
+        "@esbuild/darwin-x64": "0.27.2",
+        "@esbuild/freebsd-arm64": "0.27.2",
+        "@esbuild/freebsd-x64": "0.27.2",
+        "@esbuild/linux-arm": "0.27.2",
+        "@esbuild/linux-arm64": "0.27.2",
+        "@esbuild/linux-ia32": "0.27.2",
+        "@esbuild/linux-loong64": "0.27.2",
+        "@esbuild/linux-mips64el": "0.27.2",
+        "@esbuild/linux-ppc64": "0.27.2",
+        "@esbuild/linux-riscv64": "0.27.2",
+        "@esbuild/linux-s390x": "0.27.2",
+        "@esbuild/linux-x64": "0.27.2",
+        "@esbuild/netbsd-arm64": "0.27.2",
+        "@esbuild/netbsd-x64": "0.27.2",
+        "@esbuild/openbsd-arm64": "0.27.2",
+        "@esbuild/openbsd-x64": "0.27.2",
+        "@esbuild/openharmony-arm64": "0.27.2",
+        "@esbuild/sunos-x64": "0.27.2",
+        "@esbuild/win32-arm64": "0.27.2",
+        "@esbuild/win32-ia32": "0.27.2",
+        "@esbuild/win32-x64": "0.27.2"
+      }
+    },
+    "node_modules/escalade": {
+      "version": "3.2.0",
+      "resolved": "https://registry.npmjs.org/escalade/-/escalade-3.2.0.tgz",
+      "integrity": "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA==",
+      "dev": true,
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/escape-string-regexp": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-4.0.0.tgz",
+      "integrity": "sha512-TtpcNJ3XAzx3Gq8sWRzJaVajRs0uVxA2YAkdb1jm2YkPz4G6egUFAyA3n5vtEIZefPk5Wa4UXbKuS5fKkJWdgA==",
+      "dev": true,
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/eslint": {
+      "version": "9.39.2",
+      "resolved": "https://registry.npmjs.org/eslint/-/eslint-9.39.2.tgz",
+      "integrity": "sha512-LEyamqS7W5HB3ujJyvi0HQK/dtVINZvd5mAAp9eT5S/ujByGjiZLCzPcHVzuXbpJDJF/cxwHlfceVUDZ2lnSTw==",
+      "dev": true,
+      "dependencies": {
+        "@eslint-community/eslint-utils": "^4.8.0",
+        "@eslint-community/regexpp": "^4.12.1",
+        "@eslint/config-array": "^0.21.1",
+        "@eslint/config-helpers": "^0.4.2",
+        "@eslint/core": "^0.17.0",
+        "@eslint/eslintrc": "^3.3.1",
+        "@eslint/js": "9.39.2",
+        "@eslint/plugin-kit": "^0.4.1",
+        "@humanfs/node": "^0.16.6",
+        "@humanwhocodes/module-importer": "^1.0.1",
+        "@humanwhocodes/retry": "^0.4.2",
+        "@types/estree": "^1.0.6",
+        "ajv": "^6.12.4",
+        "chalk": "^4.0.0",
+        "cross-spawn": "^7.0.6",
+        "debug": "^4.3.2",
+        "escape-string-regexp": "^4.0.0",
+        "eslint-scope": "^8.4.0",
+        "eslint-visitor-keys": "^4.2.1",
+        "espree": "^10.4.0",
+        "esquery": "^1.5.0",
+        "esutils": "^2.0.2",
+        "fast-deep-equal": "^3.1.3",
+        "file-entry-cache": "^8.0.0",
+        "find-up": "^5.0.0",
+        "glob-parent": "^6.0.2",
+        "ignore": "^5.2.0",
+        "imurmurhash": "^0.1.4",
+        "is-glob": "^4.0.0",
+        "json-stable-stringify-without-jsonify": "^1.0.1",
+        "lodash.merge": "^4.6.2",
+        "minimatch": "^3.1.2",
+        "natural-compare": "^1.4.0",
+        "optionator": "^0.9.3"
+      },
+      "bin": {
+        "eslint": "bin/eslint.js"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://eslint.org/donate"
+      },
+      "peerDependencies": {
+        "jiti": "*"
+      },
+      "peerDependenciesMeta": {
+        "jiti": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/eslint-import-resolver-node": {
+      "version": "0.3.9",
+      "resolved": "https://registry.npmjs.org/eslint-import-resolver-node/-/eslint-import-resolver-node-0.3.9.tgz",
+      "integrity": "sha512-WFj2isz22JahUv+B788TlO3N6zL3nNJGU8CcZbPZvVEkBPaJdCV4vy5wyghty5ROFbCRnm132v8BScu5/1BQ8g==",
+      "dev": true,
+      "dependencies": {
+        "debug": "^3.2.7",
+        "is-core-module": "^2.13.0",
+        "resolve": "^1.22.4"
+      }
+    },
+    "node_modules/eslint-import-resolver-node/node_modules/debug": {
+      "version": "3.2.7",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-3.2.7.tgz",
+      "integrity": "sha512-CFjzYYAi4ThfiQvizrFQevTTXHtnCqWfe7x1AhgEscTz6ZbLbfoLRLPugTQyBth6f8ZERVUSyWHFD/7Wu4t1XQ==",
+      "dev": true,
+      "dependencies": {
+        "ms": "^2.1.1"
+      }
+    },
+    "node_modules/eslint-import-resolver-typescript": {
+      "version": "3.10.1",
+      "resolved": "https://registry.npmjs.org/eslint-import-resolver-typescript/-/eslint-import-resolver-typescript-3.10.1.tgz",
+      "integrity": "sha512-A1rHYb06zjMGAxdLSkN2fXPBwuSaQ0iO5M/hdyS0Ajj1VBaRp0sPD3dn1FhME3c/JluGFbwSxyCfqdSbtQLAHQ==",
+      "dev": true,
+      "dependencies": {
+        "@nolyfill/is-core-module": "1.0.39",
+        "debug": "^4.4.0",
+        "get-tsconfig": "^4.10.0",
+        "is-bun-module": "^2.0.0",
+        "stable-hash": "^0.0.5",
+        "tinyglobby": "^0.2.13",
+        "unrs-resolver": "^1.6.2"
+      },
+      "engines": {
+        "node": "^14.18.0 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint-import-resolver-typescript"
+      },
+      "peerDependencies": {
+        "eslint": "*",
+        "eslint-plugin-import": "*",
+        "eslint-plugin-import-x": "*"
+      },
+      "peerDependenciesMeta": {
+        "eslint-plugin-import": {
+          "optional": true
+        },
+        "eslint-plugin-import-x": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/eslint-module-utils": {
+      "version": "2.12.1",
+      "resolved": "https://registry.npmjs.org/eslint-module-utils/-/eslint-module-utils-2.12.1.tgz",
+      "integrity": "sha512-L8jSWTze7K2mTg0vos/RuLRS5soomksDPoJLXIslC7c8Wmut3bx7CPpJijDcBZtxQ5lrbUdM+s0OlNbz0DCDNw==",
+      "dev": true,
+      "dependencies": {
+        "debug": "^3.2.7"
+      },
+      "engines": {
+        "node": ">=4"
+      },
+      "peerDependenciesMeta": {
+        "eslint": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/eslint-module-utils/node_modules/debug": {
+      "version": "3.2.7",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-3.2.7.tgz",
+      "integrity": "sha512-CFjzYYAi4ThfiQvizrFQevTTXHtnCqWfe7x1AhgEscTz6ZbLbfoLRLPugTQyBth6f8ZERVUSyWHFD/7Wu4t1XQ==",
+      "dev": true,
+      "dependencies": {
+        "ms": "^2.1.1"
+      }
+    },
+    "node_modules/eslint-plugin-import": {
+      "version": "2.32.0",
+      "resolved": "https://registry.npmjs.org/eslint-plugin-import/-/eslint-plugin-import-2.32.0.tgz",
+      "integrity": "sha512-whOE1HFo/qJDyX4SnXzP4N6zOWn79WhnCUY/iDR0mPfQZO8wcYE4JClzI2oZrhBnnMUCBCHZhO6VQyoBU95mZA==",
+      "dev": true,
+      "dependencies": {
+        "@rtsao/scc": "^1.1.0",
+        "array-includes": "^3.1.9",
+        "array.prototype.findlastindex": "^1.2.6",
+        "array.prototype.flat": "^1.3.3",
+        "array.prototype.flatmap": "^1.3.3",
+        "debug": "^3.2.7",
+        "doctrine": "^2.1.0",
+        "eslint-import-resolver-node": "^0.3.9",
+        "eslint-module-utils": "^2.12.1",
+        "hasown": "^2.0.2",
+        "is-core-module": "^2.16.1",
+        "is-glob": "^4.0.3",
+        "minimatch": "^3.1.2",
+        "object.fromentries": "^2.0.8",
+        "object.groupby": "^1.0.3",
+        "object.values": "^1.2.1",
+        "semver": "^6.3.1",
+        "string.prototype.trimend": "^1.0.9",
+        "tsconfig-paths": "^3.15.0"
+      },
+      "engines": {
+        "node": ">=4"
+      },
+      "peerDependencies": {
+        "eslint": "^2 || ^3 || ^4 || ^5 || ^6 || ^7.2.0 || ^8 || ^9"
+      }
+    },
+    "node_modules/eslint-plugin-import/node_modules/debug": {
+      "version": "3.2.7",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-3.2.7.tgz",
+      "integrity": "sha512-CFjzYYAi4ThfiQvizrFQevTTXHtnCqWfe7x1AhgEscTz6ZbLbfoLRLPugTQyBth6f8ZERVUSyWHFD/7Wu4t1XQ==",
+      "dev": true,
+      "dependencies": {
+        "ms": "^2.1.1"
+      }
+    },
+    "node_modules/eslint-plugin-import/node_modules/doctrine": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/doctrine/-/doctrine-2.1.0.tgz",
+      "integrity": "sha512-35mSku4ZXK0vfCuHEDAwt55dg2jNajHZ1odvF+8SSr82EsZY4QmXfuWso8oEd8zRhVObSN18aM0CjSdoBX7zIw==",
+      "dev": true,
+      "dependencies": {
+        "esutils": "^2.0.2"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/eslint-plugin-import/node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/eslint-plugin-jsx-a11y": {
+      "version": "6.10.2",
+      "resolved": "https://registry.npmjs.org/eslint-plugin-jsx-a11y/-/eslint-plugin-jsx-a11y-6.10.2.tgz",
+      "integrity": "sha512-scB3nz4WmG75pV8+3eRUQOHZlNSUhFNq37xnpgRkCCELU3XMvXAxLk1eqWWyE22Ki4Q01Fnsw9BA3cJHDPgn2Q==",
+      "dev": true,
+      "dependencies": {
+        "aria-query": "^5.3.2",
+        "array-includes": "^3.1.8",
+        "array.prototype.flatmap": "^1.3.2",
+        "ast-types-flow": "^0.0.8",
+        "axe-core": "^4.10.0",
+        "axobject-query": "^4.1.0",
+        "damerau-levenshtein": "^1.0.8",
+        "emoji-regex": "^9.2.2",
+        "hasown": "^2.0.2",
+        "jsx-ast-utils": "^3.3.5",
+        "language-tags": "^1.0.9",
+        "minimatch": "^3.1.2",
+        "object.fromentries": "^2.0.8",
+        "safe-regex-test": "^1.0.3",
+        "string.prototype.includes": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=4.0"
+      },
+      "peerDependencies": {
+        "eslint": "^3 || ^4 || ^5 || ^6 || ^7 || ^8 || ^9"
+      }
+    },
+    "node_modules/eslint-plugin-react": {
+      "version": "7.37.5",
+      "resolved": "https://registry.npmjs.org/eslint-plugin-react/-/eslint-plugin-react-7.37.5.tgz",
+      "integrity": "sha512-Qteup0SqU15kdocexFNAJMvCJEfa2xUKNV4CC1xsVMrIIqEy3SQ/rqyxCWNzfrd3/ldy6HMlD2e0JDVpDg2qIA==",
+      "dev": true,
+      "dependencies": {
+        "array-includes": "^3.1.8",
+        "array.prototype.findlast": "^1.2.5",
+        "array.prototype.flatmap": "^1.3.3",
+        "array.prototype.tosorted": "^1.1.4",
+        "doctrine": "^2.1.0",
+        "es-iterator-helpers": "^1.2.1",
+        "estraverse": "^5.3.0",
+        "hasown": "^2.0.2",
+        "jsx-ast-utils": "^2.4.1 || ^3.0.0",
+        "minimatch": "^3.1.2",
+        "object.entries": "^1.1.9",
+        "object.fromentries": "^2.0.8",
+        "object.values": "^1.2.1",
+        "prop-types": "^15.8.1",
+        "resolve": "^2.0.0-next.5",
+        "semver": "^6.3.1",
+        "string.prototype.matchall": "^4.0.12",
+        "string.prototype.repeat": "^1.0.0"
+      },
+      "engines": {
+        "node": ">=4"
+      },
+      "peerDependencies": {
+        "eslint": "^3 || ^4 || ^5 || ^6 || ^7 || ^8 || ^9.7"
+      }
+    },
+    "node_modules/eslint-plugin-react/node_modules/doctrine": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/doctrine/-/doctrine-2.1.0.tgz",
+      "integrity": "sha512-35mSku4ZXK0vfCuHEDAwt55dg2jNajHZ1odvF+8SSr82EsZY4QmXfuWso8oEd8zRhVObSN18aM0CjSdoBX7zIw==",
+      "dev": true,
+      "dependencies": {
+        "esutils": "^2.0.2"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/eslint-plugin-react/node_modules/resolve": {
+      "version": "2.0.0-next.5",
+      "resolved": "https://registry.npmjs.org/resolve/-/resolve-2.0.0-next.5.tgz",
+      "integrity": "sha512-U7WjGVG9sH8tvjW5SmGbQuui75FiyjAX72HX15DwBBwF9dNiQZRQAg9nnPhYy+TUnE0+VcrttuvNI8oSxZcocA==",
+      "dev": true,
+      "dependencies": {
+        "is-core-module": "^2.13.0",
+        "path-parse": "^1.0.7",
+        "supports-preserve-symlinks-flag": "^1.0.0"
+      },
+      "bin": {
+        "resolve": "bin/resolve"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/eslint-plugin-react/node_modules/semver": {
+      "version": "6.3.1",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.1.tgz",
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "dev": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      }
+    },
+    "node_modules/eslint-scope": {
+      "version": "8.4.0",
+      "resolved": "https://registry.npmjs.org/eslint-scope/-/eslint-scope-8.4.0.tgz",
+      "integrity": "sha512-sNXOfKCn74rt8RICKMvJS7XKV/Xk9kA7DyJr8mJik3S7Cwgy3qlkkmyS2uQB3jiJg6VNdZd/pDBJu0nvG2NlTg==",
+      "dev": true,
+      "dependencies": {
+        "esrecurse": "^4.3.0",
+        "estraverse": "^5.2.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/eslint-visitor-keys": {
+      "version": "3.4.3",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-3.4.3.tgz",
+      "integrity": "sha512-wpc+LXeiyiisxPlEkUzU6svyS1frIO3Mgxj1fdy7Pm8Ygzguax2N3Fa/D/ag1WqbOprdI+uY6wMUl8/a2G+iag==",
+      "dev": true,
+      "engines": {
+        "node": "^12.22.0 || ^14.17.0 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/eslint/node_modules/eslint-visitor-keys": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.1.tgz",
+      "integrity": "sha512-Uhdk5sfqcee/9H/rCOJikYz67o0a2Tw2hGRPOG2Y1R2dg7brRe1uG0yaNQDHu+TO/uQPF/5eCapvYSmHUjt7JQ==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/espree": {
+      "version": "10.4.0",
+      "resolved": "https://registry.npmjs.org/espree/-/espree-10.4.0.tgz",
+      "integrity": "sha512-j6PAQ2uUr79PZhBjP5C5fhl8e39FmRnOjsD5lGnWrFU8i2G776tBK7+nP8KuQUTTyAZUwfQqXAgrVH5MbH9CYQ==",
+      "dev": true,
+      "dependencies": {
+        "acorn": "^8.15.0",
+        "acorn-jsx": "^5.3.2",
+        "eslint-visitor-keys": "^4.2.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/espree/node_modules/eslint-visitor-keys": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.1.tgz",
+      "integrity": "sha512-Uhdk5sfqcee/9H/rCOJikYz67o0a2Tw2hGRPOG2Y1R2dg7brRe1uG0yaNQDHu+TO/uQPF/5eCapvYSmHUjt7JQ==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/esquery": {
+      "version": "1.7.0",
+      "resolved": "https://registry.npmjs.org/esquery/-/esquery-1.7.0.tgz",
+      "integrity": "sha512-Ap6G0WQwcU/LHsvLwON1fAQX9Zp0A2Y6Y/cJBl9r/JbW90Zyg4/zbG6zzKa2OTALELarYHmKu0GhpM5EO+7T0g==",
+      "dev": true,
+      "dependencies": {
+        "estraverse": "^5.1.0"
+      },
+      "engines": {
+        "node": ">=0.10"
+      }
+    },
+    "node_modules/esrecurse": {
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/esrecurse/-/esrecurse-4.3.0.tgz",
+      "integrity": "sha512-KmfKL3b6G+RXvP8N1vr3Tq1kL/oCFgn2NYXEtqP8/L3pKapUA4G8cFVaoF3SU323CD4XypR/ffioHmkti6/Tag==",
+      "dev": true,
+      "dependencies": {
+        "estraverse": "^5.2.0"
+      },
+      "engines": {
+        "node": ">=4.0"
+      }
+    },
+    "node_modules/estraverse": {
+      "version": "5.3.0",
+      "resolved": "https://registry.npmjs.org/estraverse/-/estraverse-5.3.0.tgz",
+      "integrity": "sha512-MMdARuVEQziNTeJD8DgMqmhwR11BRQ/cBP+pLtYdSTnf3MIO8fFeiINEbX36ZdNlfU/7A9f3gUw49B3oQsvwBA==",
+      "dev": true,
+      "engines": {
+        "node": ">=4.0"
+      }
+    },
+    "node_modules/esutils": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/esutils/-/esutils-2.0.3.tgz",
+      "integrity": "sha512-kVscqXk4OCp68SZ0dkgEKVi6/8ij300KBWTJq32P/dYeWTSwK41WyTxalN1eRmA5Z9UU/LX9D7FWSmV9SAYx6g==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/fast-deep-equal": {
+      "version": "3.1.3",
+      "resolved": "https://registry.npmjs.org/fast-deep-equal/-/fast-deep-equal-3.1.3.tgz",
+      "integrity": "sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==",
+      "dev": true
+    },
+    "node_modules/fast-glob": {
+      "version": "3.3.3",
+      "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.3.tgz",
+      "integrity": "sha512-7MptL8U0cqcFdzIzwOTHoilX9x5BrNqye7Z/LuC7kCMRio1EMSyqRK3BEAUD7sXRq4iT4AzTVuZdhgQ2TCvYLg==",
+      "dev": true,
+      "dependencies": {
+        "@nodelib/fs.stat": "^2.0.2",
+        "@nodelib/fs.walk": "^1.2.3",
+        "glob-parent": "^5.1.2",
+        "merge2": "^1.3.0",
+        "micromatch": "^4.0.8"
+      },
+      "engines": {
+        "node": ">=8.6.0"
+      }
+    },
+    "node_modules/fast-glob/node_modules/glob-parent": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-5.1.2.tgz",
+      "integrity": "sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==",
+      "dev": true,
+      "dependencies": {
+        "is-glob": "^4.0.1"
+      },
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/fast-json-stable-stringify": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/fast-json-stable-stringify/-/fast-json-stable-stringify-2.1.0.tgz",
+      "integrity": "sha512-lhd/wF+Lk98HZoTCtlVraHtfh5XYijIjalXck7saUtuanSDyLMxnHhSXEDJqHxD7msR8D0uCmqlkwjCV8xvwHw==",
+      "dev": true
+    },
+    "node_modules/fast-levenshtein": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/fast-levenshtein/-/fast-levenshtein-2.0.6.tgz",
+      "integrity": "sha512-DCXu6Ifhqcks7TZKY3Hxp3y6qphY5SJZmrWMDrKcERSOXWQdMhU9Ig/PYrzyw/ul9jOIyh0N4M0tbC5hodg8dw==",
+      "dev": true
+    },
+    "node_modules/fastq": {
+      "version": "1.20.1",
+      "resolved": "https://registry.npmjs.org/fastq/-/fastq-1.20.1.tgz",
+      "integrity": "sha512-GGToxJ/w1x32s/D2EKND7kTil4n8OVk/9mycTc4VDza13lOvpUZTGX3mFSCtV9ksdGBVzvsyAVLM6mHFThxXxw==",
+      "dev": true,
+      "dependencies": {
+        "reusify": "^1.0.4"
+      }
+    },
+    "node_modules/file-entry-cache": {
+      "version": "8.0.0",
+      "resolved": "https://registry.npmjs.org/file-entry-cache/-/file-entry-cache-8.0.0.tgz",
+      "integrity": "sha512-XXTUwCvisa5oacNGRP9SfNtYBNAMi+RPwBFmblZEF7N7swHYQS6/Zfk7SRwx4D5j3CH211YNRco1DEMNVfZCnQ==",
+      "dev": true,
+      "dependencies": {
+        "flat-cache": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=16.0.0"
+      }
+    },
+    "node_modules/fill-range": {
+      "version": "7.1.1",
+      "resolved": "https://registry.npmjs.org/fill-range/-/fill-range-7.1.1.tgz",
+      "integrity": "sha512-YsGpe3WHLK8ZYi4tWDg2Jy3ebRz2rXowDxnld4bkQB00cc/1Zw9AWnC0i9ztDJitivtQvaI9KaLyKrc+hBW0yg==",
+      "dev": true,
+      "dependencies": {
+        "to-regex-range": "^5.0.1"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/find-up": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/find-up/-/find-up-5.0.0.tgz",
+      "integrity": "sha512-78/PXT1wlLLDgTzDs7sjq9hzz0vXD+zn+7wypEe4fXQxCmdmqfGsEPQxmiCSQI3ajFV91bVSsvNtrJRiW6nGng==",
+      "dev": true,
+      "dependencies": {
+        "locate-path": "^6.0.0",
+        "path-exists": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/flat-cache": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/flat-cache/-/flat-cache-4.0.1.tgz",
+      "integrity": "sha512-f7ccFPK3SXFHpx15UIGyRJ/FJQctuKZ0zVuN3frBo4HnK3cay9VEW0R6yPYFHC0AgqhukPzKjq22t5DmAyqGyw==",
+      "dev": true,
+      "dependencies": {
+        "flatted": "^3.2.9",
+        "keyv": "^4.5.4"
+      },
+      "engines": {
+        "node": ">=16"
+      }
+    },
+    "node_modules/flatted": {
+      "version": "3.3.3",
+      "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.3.3.tgz",
+      "integrity": "sha512-GX+ysw4PBCz0PzosHDepZGANEuFCMLrnRTiEy9McGjmkCQYwRq4A/X786G/fjM/+OjsWSU1ZrY5qyARZmO/uwg==",
+      "dev": true
+    },
+    "node_modules/for-each": {
+      "version": "0.3.5",
+      "resolved": "https://registry.npmjs.org/for-each/-/for-each-0.3.5.tgz",
+      "integrity": "sha512-dKx12eRCVIzqCxFGplyFKJMPvLEWgmNtUrpTiJIR5u97zEhRG8ySrtboPHZXx7daLxQVrl643cTzbab2tkQjxg==",
+      "dev": true,
+      "dependencies": {
+        "is-callable": "^1.2.7"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/fraction.js": {
+      "version": "5.3.4",
+      "resolved": "https://registry.npmjs.org/fraction.js/-/fraction.js-5.3.4.tgz",
+      "integrity": "sha512-1X1NTtiJphryn/uLQz3whtY6jK3fTqoE3ohKs0tT+Ujr1W59oopxmoEh7Lu5p6vBaPbgoM0bzveAW4Qi5RyWDQ==",
+      "dev": true,
+      "engines": {
+        "node": "*"
+      },
+      "funding": {
+        "type": "github",
+        "url": "https://github.com/sponsors/rawify"
+      }
+    },
+    "node_modules/fsevents": {
+      "version": "2.3.3",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz",
+      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "dev": true,
+      "hasInstallScript": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
+    "node_modules/function-bind": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.2.tgz",
+      "integrity": "sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA==",
+      "dev": true,
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/function.prototype.name": {
+      "version": "1.1.8",
+      "resolved": "https://registry.npmjs.org/function.prototype.name/-/function.prototype.name-1.1.8.tgz",
+      "integrity": "sha512-e5iwyodOHhbMr/yNrc7fDYG4qlbIvI5gajyzPnb5TCwyhjApznQh1BMFou9b30SevY43gCJKXycoCBjMbsuW0Q==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.3",
+        "define-properties": "^1.2.1",
+        "functions-have-names": "^1.2.3",
+        "hasown": "^2.0.2",
+        "is-callable": "^1.2.7"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/functions-have-names": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/functions-have-names/-/functions-have-names-1.2.3.tgz",
+      "integrity": "sha512-xckBUXyTIqT97tq2x2AMb+g163b5JFysYk0x4qxNFwbfQkmNZoiRHb6sPzI9/QV33WeuvVYBUIiD4NzNIyqaRQ==",
+      "dev": true,
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/generator-function": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/generator-function/-/generator-function-2.0.1.tgz",
+      "integrity": "sha512-SFdFmIJi+ybC0vjlHN0ZGVGHc3lgE0DxPAT0djjVg+kjOnSqclqmj0KQ7ykTOLP6YxoqOvuAODGdcHJn+43q3g==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/gensync": {
+      "version": "1.0.0-beta.2",
+      "resolved": "https://registry.npmjs.org/gensync/-/gensync-1.0.0-beta.2.tgz",
+      "integrity": "sha512-3hN7NaskYvMDLQY55gnW3NQ+mesEAepTqlg+VEbj7zzqEMBVNhzcGYYeqFo/TlYz6eQiFcp1HcsCZO+nGgS8zg==",
+      "dev": true,
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/get-intrinsic": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.3.0.tgz",
+      "integrity": "sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind-apply-helpers": "^1.0.2",
+        "es-define-property": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.1.1",
+        "function-bind": "^1.1.2",
+        "get-proto": "^1.0.1",
+        "gopd": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "hasown": "^2.0.2",
+        "math-intrinsics": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/get-proto": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/get-proto/-/get-proto-1.0.1.tgz",
+      "integrity": "sha512-sTSfBjoXBp89JvIKIefqw7U2CCebsc74kiY6awiGogKtoSGbgjYE/G/+l9sF3MWFPNc9IcoOC4ODfKHfxFmp0g==",
+      "dev": true,
+      "dependencies": {
+        "dunder-proto": "^1.0.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/get-symbol-description": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/get-symbol-description/-/get-symbol-description-1.1.0.tgz",
+      "integrity": "sha512-w9UMqWwJxHNOvoNzSJ2oPF5wvYcvP7jUvYzhp67yEhTi17ZDBBC1z9pTdGuzjD+EFIqLSYRweZjqfiPzQ06Ebg==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.6"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/get-tsconfig": {
+      "version": "4.13.1",
+      "resolved": "https://registry.npmjs.org/get-tsconfig/-/get-tsconfig-4.13.1.tgz",
+      "integrity": "sha512-EoY1N2xCn44xU6750Sx7OjOIT59FkmstNc3X6y5xpz7D5cBtZRe/3pSlTkDJgqsOk3WwZPkWfonhhUJfttQo3w==",
+      "dev": true,
+      "dependencies": {
+        "resolve-pkg-maps": "^1.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/privatenumber/get-tsconfig?sponsor=1"
+      }
+    },
+    "node_modules/glob-parent": {
+      "version": "6.0.2",
+      "resolved": "https://registry.npmjs.org/glob-parent/-/glob-parent-6.0.2.tgz",
+      "integrity": "sha512-XxwI8EOhVQgWp6iDL+3b0r86f4d6AX6zSU55HfB4ydCEuXLXc5FcYeOu+nnGftS4TEju/11rt4KJPTMgbfmv4A==",
+      "dev": true,
+      "dependencies": {
+        "is-glob": "^4.0.3"
+      },
+      "engines": {
+        "node": ">=10.13.0"
+      }
+    },
+    "node_modules/globals": {
+      "version": "14.0.0",
+      "resolved": "https://registry.npmjs.org/globals/-/globals-14.0.0.tgz",
+      "integrity": "sha512-oahGvuMGQlPw/ivIYBjVSrWAfWLBeku5tpPE2fOPLi+WHffIWbuh2tCjhyQhTBPMf5E9jDEH4FOmTYgYwbKwtQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=18"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/globalthis": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/globalthis/-/globalthis-1.0.4.tgz",
+      "integrity": "sha512-DpLKbNU4WylpxJykQujfCcwYWiV/Jhm50Goo0wrVILAv5jOr9d+H+UR3PhSCD2rCCEIg0uc+G+muBTwD54JhDQ==",
+      "dev": true,
+      "dependencies": {
+        "define-properties": "^1.2.1",
+        "gopd": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/gopd": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz",
+      "integrity": "sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-bigints": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/has-bigints/-/has-bigints-1.1.0.tgz",
+      "integrity": "sha512-R3pbpkcIqv2Pm3dUwgjclDRVmWpTJW2DcMzcIhEXEx1oh/CEMObMm3KLmRJOdvhM7o4uQBnwr8pzRK2sJWIqfg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-flag": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/has-flag/-/has-flag-4.0.0.tgz",
+      "integrity": "sha512-EykJT/Q1KjTWctppgIAgfSO0tKVuZUjhgMr17kqTumMl6Afv3EISleU7qZUzoXDFTAHTDC4NOoG/ZxU3EvlMPQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/has-property-descriptors": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/has-property-descriptors/-/has-property-descriptors-1.0.2.tgz",
+      "integrity": "sha512-55JNKuIW+vq4Ke1BjOTjM2YctQIvCT7GFzHwmfZPGo5wnrgkid0YQtnAleFSqumZm4az3n2BS+erby5ipJdgrg==",
+      "dev": true,
+      "dependencies": {
+        "es-define-property": "^1.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-proto": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/has-proto/-/has-proto-1.2.0.tgz",
+      "integrity": "sha512-KIL7eQPfHQRC8+XluaIw7BHUwwqL19bQn4hzNgdr+1wXoU0KKj6rufu47lhY7KbJR2C6T6+PfyN0Ea7wkSS+qQ==",
+      "dev": true,
+      "dependencies": {
+        "dunder-proto": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-symbols": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.1.0.tgz",
+      "integrity": "sha512-1cDNdwJ2Jaohmb3sg4OmKaMBwuC48sYni5HUw2DvsC8LjGTLK9h+eb1X6RyuOHe4hT0ULCW68iomhjUoKUqlPQ==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/has-tostringtag": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/has-tostringtag/-/has-tostringtag-1.0.2.tgz",
+      "integrity": "sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw==",
+      "dev": true,
+      "dependencies": {
+        "has-symbols": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/hasown": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/hasown/-/hasown-2.0.2.tgz",
+      "integrity": "sha512-0hJU9SCPvmMzIBdZFqNPXWa6dqh7WdH0cII9y+CyS8rG3nL48Bclra9HmKhVVUHyPWNH5Y7xDwAB7bfgSjkUMQ==",
+      "dev": true,
+      "dependencies": {
+        "function-bind": "^1.1.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/hermes-estree": {
+      "version": "0.25.1",
+      "resolved": "https://registry.npmjs.org/hermes-estree/-/hermes-estree-0.25.1.tgz",
+      "integrity": "sha512-0wUoCcLp+5Ev5pDW2OriHC2MJCbwLwuRx+gAqMTOkGKJJiBCLjtrvy4PWUGn6MIVefecRpzoOZ/UV6iGdOr+Cw==",
+      "dev": true
+    },
+    "node_modules/hermes-parser": {
+      "version": "0.25.1",
+      "resolved": "https://registry.npmjs.org/hermes-parser/-/hermes-parser-0.25.1.tgz",
+      "integrity": "sha512-6pEjquH3rqaI6cYAXYPcz9MS4rY6R4ngRgrgfDshRptUZIc3lw0MCIJIGDj9++mfySOuPTHB4nrSW99BCvOPIA==",
+      "dev": true,
+      "dependencies": {
+        "hermes-estree": "0.25.1"
+      }
+    },
+    "node_modules/ignore": {
+      "version": "5.3.2",
+      "resolved": "https://registry.npmjs.org/ignore/-/ignore-5.3.2.tgz",
+      "integrity": "sha512-hsBTNUqQTDwkWtcdYI2i06Y/nUBEsNEDJKjWdigLvegy8kDuJAS8uRlpkkcQpyEXL0Z/pjDy5HBmMjRCJ2gq+g==",
+      "dev": true,
+      "engines": {
+        "node": ">= 4"
+      }
+    },
+    "node_modules/import-fresh": {
+      "version": "3.3.1",
+      "resolved": "https://registry.npmjs.org/import-fresh/-/import-fresh-3.3.1.tgz",
+      "integrity": "sha512-TR3KfrTZTYLPB6jUjfx6MF9WcWrHL9su5TObK4ZkYgBdWKPOFoSoQIdEuTuR82pmtxH2spWG9h6etwfr1pLBqQ==",
+      "dev": true,
+      "dependencies": {
+        "parent-module": "^1.0.0",
+        "resolve-from": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/imurmurhash": {
+      "version": "0.1.4",
+      "resolved": "https://registry.npmjs.org/imurmurhash/-/imurmurhash-0.1.4.tgz",
+      "integrity": "sha512-JmXMZ6wuvDmLiHEml9ykzqO6lwFbof0GG4IkcGaENdCRDDmMVnny7s5HsIgHCbaq0w2MyPhDqkhTUgS2LU2PHA==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.8.19"
+      }
+    },
+    "node_modules/internal-slot": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/internal-slot/-/internal-slot-1.1.0.tgz",
+      "integrity": "sha512-4gd7VpWNQNB4UKKCFFVcp1AVv+FMOgs9NKzjHKusc8jTMhd5eL1NqQqOpE0KzMds804/yHlglp3uxgluOqAPLw==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "hasown": "^2.0.2",
+        "side-channel": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/is-array-buffer": {
+      "version": "3.0.5",
+      "resolved": "https://registry.npmjs.org/is-array-buffer/-/is-array-buffer-3.0.5.tgz",
+      "integrity": "sha512-DDfANUiiG2wC1qawP66qlTugJeL5HyzMpfr8lLK+jMQirGzNod0B12cFB/9q838Ru27sBwfw78/rdoU7RERz6A==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.3",
+        "get-intrinsic": "^1.2.6"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-async-function": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/is-async-function/-/is-async-function-2.1.1.tgz",
+      "integrity": "sha512-9dgM/cZBnNvjzaMYHVoxxfPj2QXt22Ev7SuuPrs+xav0ukGB0S6d4ydZdEiM48kLx5kDV+QBPrpVnFyefL8kkQ==",
+      "dev": true,
+      "dependencies": {
+        "async-function": "^1.0.0",
+        "call-bound": "^1.0.3",
+        "get-proto": "^1.0.1",
+        "has-tostringtag": "^1.0.2",
+        "safe-regex-test": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-bigint": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/is-bigint/-/is-bigint-1.1.0.tgz",
+      "integrity": "sha512-n4ZT37wG78iz03xPRKJrHTdZbe3IicyucEtdRsV5yglwc3GyUfbAfpSeD0FJ41NbUNSt5wbhqfp1fS+BgnvDFQ==",
+      "dev": true,
+      "dependencies": {
+        "has-bigints": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-binary-path": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/is-binary-path/-/is-binary-path-2.1.0.tgz",
+      "integrity": "sha512-ZMERYes6pDydyuGidse7OsHxtbI7WVeUEozgR/g7rd0xUimYNlvZRE/K2MgZTjWy725IfelLeVcEM97mmtRGXw==",
+      "dev": true,
+      "dependencies": {
+        "binary-extensions": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/is-boolean-object": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/is-boolean-object/-/is-boolean-object-1.2.2.tgz",
+      "integrity": "sha512-wa56o2/ElJMYqjCjGkXri7it5FbebW5usLw/nPmCMs5DeZ7eziSYZhSmPRn0txqeW4LnAmQQU7FgqLpsEFKM4A==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "has-tostringtag": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-bun-module": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/is-bun-module/-/is-bun-module-2.0.0.tgz",
+      "integrity": "sha512-gNCGbnnnnFAUGKeZ9PdbyeGYJqewpmc2aKHUEMO5nQPWU9lOmv7jcmQIv+qHD8fXW6W7qfuCwX4rY9LNRjXrkQ==",
+      "dev": true,
+      "dependencies": {
+        "semver": "^7.7.1"
+      }
+    },
+    "node_modules/is-callable": {
+      "version": "1.2.7",
+      "resolved": "https://registry.npmjs.org/is-callable/-/is-callable-1.2.7.tgz",
+      "integrity": "sha512-1BC0BVFhS/p0qtw6enp8e+8OD0UrK0oFLztSjNzhcKA3WDuJxxAPXzPuPtKkjEY9UUoEWlX/8fgKeu2S8i9JTA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-core-module": {
+      "version": "2.16.1",
+      "resolved": "https://registry.npmjs.org/is-core-module/-/is-core-module-2.16.1.tgz",
+      "integrity": "sha512-UfoeMA6fIJ8wTYFEUjelnaGI67v6+N7qXJEvQuIGa99l4xsCruSYOVSQ0uPANn4dAzm8lkYPaKLrrijLq7x23w==",
+      "dev": true,
+      "dependencies": {
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-data-view": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/is-data-view/-/is-data-view-1.0.2.tgz",
+      "integrity": "sha512-RKtWF8pGmS87i2D6gqQu/l7EYRlVdfzemCJN/P3UOs//x1QE7mfhvzHIApBTRf7axvT6DMGwSwBXYCT0nfB9xw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "get-intrinsic": "^1.2.6",
+        "is-typed-array": "^1.1.13"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-date-object": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/is-date-object/-/is-date-object-1.1.0.tgz",
+      "integrity": "sha512-PwwhEakHVKTdRNVOw+/Gyh0+MzlCl4R6qKvkhuvLtPMggI1WAHt9sOwZxQLSGpUaDnrdyDsomoRgNnCfKNSXXg==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "has-tostringtag": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-extglob": {
+      "version": "2.1.1",
+      "resolved": "https://registry.npmjs.org/is-extglob/-/is-extglob-2.1.1.tgz",
+      "integrity": "sha512-SbKbANkN603Vi4jEZv49LeVJMn4yGwsbzZworEoyEiutsN3nJYdbO36zfhGJ6QEDpOZIFkDtnq5JRxmvl3jsoQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/is-finalizationregistry": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/is-finalizationregistry/-/is-finalizationregistry-1.1.1.tgz",
+      "integrity": "sha512-1pC6N8qWJbWoPtEjgcL2xyhQOP491EQjeUo3qTKcmV8YSDDJrOepfG8pcC7h/QgnQHYSv0mJ3Z/ZWxmatVrysg==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-generator-function": {
+      "version": "1.1.2",
+      "resolved": "https://registry.npmjs.org/is-generator-function/-/is-generator-function-1.1.2.tgz",
+      "integrity": "sha512-upqt1SkGkODW9tsGNG5mtXTXtECizwtS2kA161M+gJPc1xdb/Ax629af6YrTwcOeQHbewrPNlE5Dx7kzvXTizA==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.4",
+        "generator-function": "^2.0.0",
+        "get-proto": "^1.0.1",
+        "has-tostringtag": "^1.0.2",
+        "safe-regex-test": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-glob": {
+      "version": "4.0.3",
+      "resolved": "https://registry.npmjs.org/is-glob/-/is-glob-4.0.3.tgz",
+      "integrity": "sha512-xelSayHH36ZgE7ZWhli7pW34hNbNl8Ojv5KVmkJD4hBdD3th8Tfk9vYasLM+mXWOZhFkgZfxhLSnrwRr4elSSg==",
+      "dev": true,
+      "dependencies": {
+        "is-extglob": "^2.1.1"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/is-map": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/is-map/-/is-map-2.0.3.tgz",
+      "integrity": "sha512-1Qed0/Hr2m+YqxnM09CjA2d/i6YZNfF6R2oRAOj36eUdS6qIV/huPJNSEpKbupewFs+ZsJlxsjjPbc0/afW6Lw==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-negative-zero": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/is-negative-zero/-/is-negative-zero-2.0.3.tgz",
+      "integrity": "sha512-5KoIu2Ngpyek75jXodFvnafB6DJgr3u8uuK0LEZJjrU19DrMD3EVERaR8sjz8CCGgpZvxPl9SuE1GMVPFHx1mw==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-number": {
+      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/is-number/-/is-number-7.0.0.tgz",
+      "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.12.0"
+      }
+    },
+    "node_modules/is-number-object": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/is-number-object/-/is-number-object-1.1.1.tgz",
+      "integrity": "sha512-lZhclumE1G6VYD8VHe35wFaIif+CTy5SJIi5+3y4psDgWu4wPDoBhF8NxUOinEc7pHgiTsT6MaBb92rKhhD+Xw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "has-tostringtag": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-regex": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/is-regex/-/is-regex-1.2.1.tgz",
+      "integrity": "sha512-MjYsKHO5O7mCsmRGxWcLWheFqN9DJ/2TmngvjKXihe6efViPqc274+Fx/4fYj/r03+ESvBdTXK0V6tA3rgez1g==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "gopd": "^1.2.0",
+        "has-tostringtag": "^1.0.2",
+        "hasown": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-set": {
+      "version": "2.0.3",
+      "resolved": "https://registry.npmjs.org/is-set/-/is-set-2.0.3.tgz",
+      "integrity": "sha512-iPAjerrse27/ygGLxw+EBR9agv9Y6uLeYVJMu+QNCoouJ1/1ri0mGrcWpfCqFZuzzx3WjtwxG098X+n4OuRkPg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-shared-array-buffer": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/is-shared-array-buffer/-/is-shared-array-buffer-1.0.4.tgz",
+      "integrity": "sha512-ISWac8drv4ZGfwKl5slpHG9OwPNty4jOWPRIhBpxOoD+hqITiwuipOQ2bNthAzwA3B4fIjO4Nln74N0S9byq8A==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-string": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/is-string/-/is-string-1.1.1.tgz",
+      "integrity": "sha512-BtEeSsoaQjlSPBemMQIrY1MY0uM6vnS1g5fmufYOtnxLGUZM2178PKbhsk7Ffv58IX+ZtcvoGwccYsh0PglkAA==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "has-tostringtag": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-symbol": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/is-symbol/-/is-symbol-1.1.1.tgz",
+      "integrity": "sha512-9gGx6GTtCQM73BgmHQXfDmLtfjjTUDSyoxTCbp5WtoixAhfgsDirWIcVQ/IHpvI5Vgd5i/J5F7B9cN/WlVbC/w==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "has-symbols": "^1.1.0",
+        "safe-regex-test": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-typed-array": {
+      "version": "1.1.15",
+      "resolved": "https://registry.npmjs.org/is-typed-array/-/is-typed-array-1.1.15.tgz",
+      "integrity": "sha512-p3EcsicXjit7SaskXHs1hA91QxgTw46Fv6EFKKGS5DRFLD8yKnohjF3hxoju94b/OcMZoQukzpPpBE9uLVKzgQ==",
+      "dev": true,
+      "dependencies": {
+        "which-typed-array": "^1.1.16"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-weakmap": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/is-weakmap/-/is-weakmap-2.0.2.tgz",
+      "integrity": "sha512-K5pXYOm9wqY1RgjpL3YTkF39tni1XajUIkawTLUo9EZEVUFga5gSQJF8nNS7ZwJQ02y+1YCNYcMh+HIf1ZqE+w==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-weakref": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/is-weakref/-/is-weakref-1.1.1.tgz",
+      "integrity": "sha512-6i9mGWSlqzNMEqpCp93KwRS1uUOodk2OJ6b+sq7ZPDSy2WuI5NFIxp/254TytR8ftefexkWn5xNiHUNpPOfSew==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/is-weakset": {
+      "version": "2.0.4",
+      "resolved": "https://registry.npmjs.org/is-weakset/-/is-weakset-2.0.4.tgz",
+      "integrity": "sha512-mfcwb6IzQyOKTs84CQMrOwW4gQcaTOAWJ0zzJCl2WSPDrWk/OzDaImWFH3djXhb24g4eudZfLRozAvPGw4d9hQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "get-intrinsic": "^1.2.6"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/isarray": {
+      "version": "2.0.5",
+      "resolved": "https://registry.npmjs.org/isarray/-/isarray-2.0.5.tgz",
+      "integrity": "sha512-xHjhDr3cNBK0BzdUJSPXZntQUx/mwMS5Rw4A7lPJ90XGAO6ISP/ePDNuo0vhqOZU+UD5JoodwCAAoZQd3FeAKw==",
+      "dev": true
+    },
+    "node_modules/isexe": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/isexe/-/isexe-2.0.0.tgz",
+      "integrity": "sha512-RHxMLp9lnKHGHRng9QFhRCMbYAcVpn69smSGcq3f36xjgVVWThj4qqLbTLlq7Ssj8B+fIQ1EuCEGI2lKsyQeIw==",
+      "dev": true
+    },
+    "node_modules/iterator.prototype": {
+      "version": "1.1.5",
+      "resolved": "https://registry.npmjs.org/iterator.prototype/-/iterator.prototype-1.1.5.tgz",
+      "integrity": "sha512-H0dkQoCa3b2VEeKQBOxFph+JAbcrQdE7KC0UkqwpLmv2EC4P41QXP+rqo9wYodACiG5/WM5s9oDApTU8utwj9g==",
+      "dev": true,
+      "dependencies": {
+        "define-data-property": "^1.1.4",
+        "es-object-atoms": "^1.0.0",
+        "get-intrinsic": "^1.2.6",
+        "get-proto": "^1.0.0",
+        "has-symbols": "^1.1.0",
+        "set-function-name": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/jiti": {
+      "version": "1.21.7",
+      "resolved": "https://registry.npmjs.org/jiti/-/jiti-1.21.7.tgz",
+      "integrity": "sha512-/imKNG4EbWNrVjoNC/1H5/9GFy+tqjGBHCaSsN+P2RnPqjsLmv6UD3Ej+Kj8nBWaRAwyk7kK5ZUc+OEatnTR3A==",
+      "dev": true,
+      "bin": {
+        "jiti": "bin/jiti.js"
+      }
+    },
+    "node_modules/js-tokens": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz",
+      "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ=="
+    },
+    "node_modules/js-yaml": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/js-yaml/-/js-yaml-4.1.1.tgz",
+      "integrity": "sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==",
+      "dev": true,
+      "dependencies": {
+        "argparse": "^2.0.1"
+      },
+      "bin": {
+        "js-yaml": "bin/js-yaml.js"
+      }
+    },
+    "node_modules/jsesc": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/jsesc/-/jsesc-3.1.0.tgz",
+      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
+      "dev": true,
+      "bin": {
+        "jsesc": "bin/jsesc"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/json-buffer": {
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/json-buffer/-/json-buffer-3.0.1.tgz",
+      "integrity": "sha512-4bV5BfR2mqfQTJm+V5tPPdf+ZpuhiIvTuAB5g8kcrXOZpTT/QwwVRWBywX1ozr6lEuPdbHxwaJlm9G6mI2sfSQ==",
+      "dev": true
+    },
+    "node_modules/json-schema-traverse": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/json-schema-traverse/-/json-schema-traverse-0.4.1.tgz",
+      "integrity": "sha512-xbbCH5dCYU5T8LcEhhuh7HJ88HXuW3qsI3Y0zOZFKfZEHcpWiHU/Jxzk629Brsab/mMiHQti9wMP+845RPe3Vg==",
+      "dev": true
+    },
+    "node_modules/json-stable-stringify-without-jsonify": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/json-stable-stringify-without-jsonify/-/json-stable-stringify-without-jsonify-1.0.1.tgz",
+      "integrity": "sha512-Bdboy+l7tA3OGW6FjyFHWkP5LuByj1Tk33Ljyq0axyzdk9//JSi2u3fP1QSmd1KNwq6VOKYGlAu87CisVir6Pw==",
+      "dev": true
+    },
+    "node_modules/json5": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/json5/-/json5-1.0.2.tgz",
+      "integrity": "sha512-g1MWMLBiz8FKi1e4w0UyVL3w+iJceWAFBAaBnnGKOpNa5f8TLktkbre1+s6oICydWAm+HRUGTmI+//xv2hvXYA==",
+      "dev": true,
+      "dependencies": {
+        "minimist": "^1.2.0"
+      },
+      "bin": {
+        "json5": "lib/cli.js"
+      }
+    },
+    "node_modules/jsx-ast-utils": {
+      "version": "3.3.5",
+      "resolved": "https://registry.npmjs.org/jsx-ast-utils/-/jsx-ast-utils-3.3.5.tgz",
+      "integrity": "sha512-ZZow9HBI5O6EPgSJLUb8n2NKgmVWTwCvHGwFuJlMjvLFqlGG6pjirPhtdsseaLZjSibD8eegzmYpUZwoIlj2cQ==",
+      "dev": true,
+      "dependencies": {
+        "array-includes": "^3.1.6",
+        "array.prototype.flat": "^1.3.1",
+        "object.assign": "^4.1.4",
+        "object.values": "^1.1.6"
+      },
+      "engines": {
+        "node": ">=4.0"
+      }
+    },
+    "node_modules/keyv": {
+      "version": "4.5.4",
+      "resolved": "https://registry.npmjs.org/keyv/-/keyv-4.5.4.tgz",
+      "integrity": "sha512-oxVHkHR/EJf2CNXnWxRLW6mg7JyCCUcG0DtEGmL2ctUo1PNTin1PUil+r/+4r5MpVgC/fn1kjsx7mjSujKqIpw==",
+      "dev": true,
+      "dependencies": {
+        "json-buffer": "3.0.1"
+      }
+    },
+    "node_modules/language-subtag-registry": {
+      "version": "0.3.23",
+      "resolved": "https://registry.npmjs.org/language-subtag-registry/-/language-subtag-registry-0.3.23.tgz",
+      "integrity": "sha512-0K65Lea881pHotoGEa5gDlMxt3pctLi2RplBb7Ezh4rRdLEOtgi7n4EwK9lamnUCkKBqaeKRVebTq6BAxSkpXQ==",
+      "dev": true
+    },
+    "node_modules/language-tags": {
+      "version": "1.0.9",
+      "resolved": "https://registry.npmjs.org/language-tags/-/language-tags-1.0.9.tgz",
+      "integrity": "sha512-MbjN408fEndfiQXbFQ1vnd+1NoLDsnQW41410oQBXiyXDMYH5z505juWa4KUE1LqxRC7DgOgZDbKLxHIwm27hA==",
+      "dev": true,
+      "dependencies": {
+        "language-subtag-registry": "^0.3.20"
+      },
+      "engines": {
+        "node": ">=0.10"
+      }
+    },
+    "node_modules/levn": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/levn/-/levn-0.4.1.tgz",
+      "integrity": "sha512-+bT2uH4E5LGE7h/n3evcS/sQlJXCpIp6ym8OWJ5eV6+67Dsql/LaaT7qJBAt2rzfoa/5QBGBhxDix1dMt2kQKQ==",
+      "dev": true,
+      "dependencies": {
+        "prelude-ls": "^1.2.1",
+        "type-check": "~0.4.0"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/lilconfig": {
+      "version": "3.1.3",
+      "resolved": "https://registry.npmjs.org/lilconfig/-/lilconfig-3.1.3.tgz",
+      "integrity": "sha512-/vlFKAoH5Cgt3Ie+JLhRbwOsCQePABiU3tJ1egGvyQ+33R/vcwM2Zl2QR/LzjsBeItPt3oSVXapn+m4nQDvpzw==",
+      "dev": true,
+      "engines": {
+        "node": ">=14"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/antonk52"
+      }
+    },
+    "node_modules/lines-and-columns": {
+      "version": "1.2.4",
+      "resolved": "https://registry.npmjs.org/lines-and-columns/-/lines-and-columns-1.2.4.tgz",
+      "integrity": "sha512-7ylylesZQ/PV29jhEDl3Ufjo6ZX7gCqJr5F7PKrqc93v7fzSymt1BpwEU8nAUXs8qzzvqhbjhK5QZg6Mt/HkBg==",
+      "dev": true
+    },
+    "node_modules/locate-path": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/locate-path/-/locate-path-6.0.0.tgz",
+      "integrity": "sha512-iPZK6eYjbxRu3uB4/WZ3EsEIMJFMqAoopl3R+zuq0UjcAm/MO6KCweDgPfP3elTztoKP3KtnVHxTn2NHBSDVUw==",
+      "dev": true,
+      "dependencies": {
+        "p-locate": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/lodash.merge": {
+      "version": "4.6.2",
+      "resolved": "https://registry.npmjs.org/lodash.merge/-/lodash.merge-4.6.2.tgz",
+      "integrity": "sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ==",
+      "dev": true
+    },
+    "node_modules/loose-envify": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/loose-envify/-/loose-envify-1.4.0.tgz",
+      "integrity": "sha512-lyuxPGr/Wfhrlem2CL/UcnUc1zcqKAImBDzukY7Y5F/yQiNdko6+fRLevlw1HgMySw7f611UIY408EtxRSoK3Q==",
+      "dependencies": {
+        "js-tokens": "^3.0.0 || ^4.0.0"
+      },
+      "bin": {
+        "loose-envify": "cli.js"
+      }
+    },
+    "node_modules/math-intrinsics": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz",
+      "integrity": "sha512-/IXtbwEk5HTPyEwyKX6hGkYXxM9nbj64B+ilVJnC/R6B0pH5G4V3b0pVbL7DBj4tkhBAppbQUlf6F6Xl9LHu1g==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/merge2": {
+      "version": "1.4.1",
+      "resolved": "https://registry.npmjs.org/merge2/-/merge2-1.4.1.tgz",
+      "integrity": "sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/micromatch": {
+      "version": "4.0.8",
+      "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz",
+      "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==",
+      "dev": true,
+      "dependencies": {
+        "braces": "^3.0.3",
+        "picomatch": "^2.3.1"
+      },
+      "engines": {
+        "node": ">=8.6"
+      }
+    },
+    "node_modules/minimatch": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-3.1.2.tgz",
+      "integrity": "sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==",
+      "dev": true,
+      "dependencies": {
+        "brace-expansion": "^1.1.7"
+      },
+      "engines": {
+        "node": "*"
+      }
+    },
+    "node_modules/minimist": {
+      "version": "1.2.8",
+      "resolved": "https://registry.npmjs.org/minimist/-/minimist-1.2.8.tgz",
+      "integrity": "sha512-2yyAR8qBkN3YuheJanUpWC5U3bb5osDywNB8RzDVlDwDHbocAJveqqj1u8+SVD7jkWT4yvsHCpWqqWqAxb0zCA==",
+      "dev": true,
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/ms": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
+      "dev": true
+    },
+    "node_modules/mz": {
+      "version": "2.7.0",
+      "resolved": "https://registry.npmjs.org/mz/-/mz-2.7.0.tgz",
+      "integrity": "sha512-z81GNO7nnYMEhrGh9LeymoE4+Yr0Wn5McHIZMK5cfQCl+NDX08sCZgUc9/6MHni9IWuFLm1Z3HTCXu2z9fN62Q==",
+      "dev": true,
+      "dependencies": {
+        "any-promise": "^1.0.0",
+        "object-assign": "^4.0.1",
+        "thenify-all": "^1.0.0"
+      }
+    },
+    "node_modules/nanoid": {
+      "version": "3.3.11",
+      "resolved": "https://registry.npmjs.org/nanoid/-/nanoid-3.3.11.tgz",
+      "integrity": "sha512-N8SpfPUnUp1bK+PMYW8qSWdl9U+wwNWI4QKxOYDy9JAro3WMX7p2OeVRF9v+347pnakNevPmiHhNmZ2HbFA76w==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "bin": {
+        "nanoid": "bin/nanoid.cjs"
+      },
+      "engines": {
+        "node": "^10 || ^12 || ^13.7 || ^14 || >=15.0.1"
+      }
+    },
+    "node_modules/napi-postinstall": {
+      "version": "0.3.4",
+      "resolved": "https://registry.npmjs.org/napi-postinstall/-/napi-postinstall-0.3.4.tgz",
+      "integrity": "sha512-PHI5f1O0EP5xJ9gQmFGMS6IZcrVvTjpXjz7Na41gTE7eE2hK11lg04CECCYEEjdc17EV4DO+fkGEtt7TpTaTiQ==",
+      "dev": true,
+      "bin": {
+        "napi-postinstall": "lib/cli.js"
+      },
+      "engines": {
+        "node": "^12.20.0 || ^14.18.0 || >=16.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/napi-postinstall"
+      }
+    },
+    "node_modules/natural-compare": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/natural-compare/-/natural-compare-1.4.0.tgz",
+      "integrity": "sha512-OWND8ei3VtNC9h7V60qff3SVobHr996CTwgxubgyQYEpg290h9J0buyECNNJexkFm5sOajh5G116RYA1c8ZMSw==",
+      "dev": true
+    },
+    "node_modules/next": {
+      "version": "16.1.6",
+      "resolved": "https://registry.npmjs.org/next/-/next-16.1.6.tgz",
+      "integrity": "sha512-hkyRkcu5x/41KoqnROkfTm2pZVbKxvbZRuNvKXLRXxs3VfyO0WhY50TQS40EuKO9SW3rBj/sF3WbVwDACeMZyw==",
+      "dependencies": {
+        "@next/env": "16.1.6",
+        "@swc/helpers": "0.5.15",
+        "baseline-browser-mapping": "^2.8.3",
+        "caniuse-lite": "^1.0.30001579",
+        "postcss": "8.4.31",
+        "styled-jsx": "5.1.6"
+      },
+      "bin": {
+        "next": "dist/bin/next"
+      },
+      "engines": {
+        "node": ">=20.9.0"
+      },
+      "optionalDependencies": {
+        "@next/swc-darwin-arm64": "16.1.6",
+        "@next/swc-darwin-x64": "16.1.6",
+        "@next/swc-linux-arm64-gnu": "16.1.6",
+        "@next/swc-linux-arm64-musl": "16.1.6",
+        "@next/swc-linux-x64-gnu": "16.1.6",
+        "@next/swc-linux-x64-musl": "16.1.6",
+        "@next/swc-win32-arm64-msvc": "16.1.6",
+        "@next/swc-win32-x64-msvc": "16.1.6",
+        "sharp": "^0.34.4"
+      },
+      "peerDependencies": {
+        "@opentelemetry/api": "^1.1.0",
+        "@playwright/test": "^1.51.1",
+        "babel-plugin-react-compiler": "*",
+        "react": "^18.2.0 || 19.0.0-rc-de68d2f4-20241204 || ^19.0.0",
+        "react-dom": "^18.2.0 || 19.0.0-rc-de68d2f4-20241204 || ^19.0.0",
+        "sass": "^1.3.0"
+      },
+      "peerDependenciesMeta": {
+        "@opentelemetry/api": {
+          "optional": true
+        },
+        "@playwright/test": {
+          "optional": true
+        },
+        "babel-plugin-react-compiler": {
+          "optional": true
+        },
+        "sass": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/next/node_modules/postcss": {
+      "version": "8.4.31",
+      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.4.31.tgz",
+      "integrity": "sha512-PS08Iboia9mts/2ygV3eLpY5ghnUcfLV/EXTOW1E2qYxJKGGBUtNjN76FYHnMs36RmARn41bC0AZmn+rR0OVpQ==",
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/postcss"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "nanoid": "^3.3.6",
+        "picocolors": "^1.0.0",
+        "source-map-js": "^1.0.2"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      }
+    },
+    "node_modules/node-releases": {
+      "version": "2.0.27",
+      "resolved": "https://registry.npmjs.org/node-releases/-/node-releases-2.0.27.tgz",
+      "integrity": "sha512-nmh3lCkYZ3grZvqcCH+fjmQ7X+H0OeZgP40OierEaAptX4XofMh5kwNbWh7lBduUzCcV/8kZ+NDLCwm2iorIlA==",
+      "dev": true
+    },
+    "node_modules/normalize-path": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/normalize-path/-/normalize-path-3.0.0.tgz",
+      "integrity": "sha512-6eZs5Ls3WtCisHWp9S2GUy8dqkpGi4BVSz3GaqiE6ezub0512ESztXUwUB6C6IKbQkY2Pnb/mD4WYojCRwcwLA==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/object-assign": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/object-assign/-/object-assign-4.1.1.tgz",
+      "integrity": "sha512-rJgTQnkUnH1sFw8yT6VSU3zD3sWmu6sZhIseY8VX+GRu3P6F7Fu+JNDoXfklElbLJSnc3FUQHVe4cU5hj+BcUg==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/object-hash": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/object-hash/-/object-hash-3.0.0.tgz",
+      "integrity": "sha512-RSn9F68PjH9HqtltsSnqYC1XXoWe9Bju5+213R98cNGttag9q9yAOTzdbsqvIa7aNm5WffBZFpWYr2aWrklWAw==",
+      "dev": true,
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/object-inspect": {
+      "version": "1.13.4",
+      "resolved": "https://registry.npmjs.org/object-inspect/-/object-inspect-1.13.4.tgz",
+      "integrity": "sha512-W67iLl4J2EXEGTbfeHCffrjDfitvLANg0UlX3wFUUSTx92KXRFegMHUVgSqE+wvhAbi4WqjGg9czysTV2Epbew==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/object-keys": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/object-keys/-/object-keys-1.1.1.tgz",
+      "integrity": "sha512-NuAESUOUMrlIXOfHKzD6bpPu3tYt3xvjNdRIQ+FeT0lNb4K8WR70CaDxhuNguS2XG+GjkyMwOzsN5ZktImfhLA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/object.assign": {
+      "version": "4.1.7",
+      "resolved": "https://registry.npmjs.org/object.assign/-/object.assign-4.1.7.tgz",
+      "integrity": "sha512-nK28WOo+QIjBkDduTINE4JkF/UJJKyf2EJxvJKfblDpyg0Q+pkOHNTL0Qwy6NP6FhE/EnzV73BxxqcJaXY9anw==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.3",
+        "define-properties": "^1.2.1",
+        "es-object-atoms": "^1.0.0",
+        "has-symbols": "^1.1.0",
+        "object-keys": "^1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/object.entries": {
+      "version": "1.1.9",
+      "resolved": "https://registry.npmjs.org/object.entries/-/object.entries-1.1.9.tgz",
+      "integrity": "sha512-8u/hfXFRBD1O0hPUjioLhoWFHRmt6tKA4/vZPyckBr18l1KE9uHrFaFaUi8MDRTpi4uak2goyPTSNJLXX2k2Hw==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "define-properties": "^1.2.1",
+        "es-object-atoms": "^1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/object.fromentries": {
+      "version": "2.0.8",
+      "resolved": "https://registry.npmjs.org/object.fromentries/-/object.fromentries-2.0.8.tgz",
+      "integrity": "sha512-k6E21FzySsSK5a21KRADBd/NGneRegFO5pLHfdQLpRDETUNJueLXs3WCzyQ3tFRDYgbq3KHGXfTbi2bs8WQ6rQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.2",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/object.groupby": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/object.groupby/-/object.groupby-1.0.3.tgz",
+      "integrity": "sha512-+Lhy3TQTuzXI5hevh8sBGqbmurHbbIjAi0Z4S63nthVLmLxfbj4T54a4CfZrXIrt9iP4mVAPYMo/v99taj3wjQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/object.values": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/object.values/-/object.values-1.2.1.tgz",
+      "integrity": "sha512-gXah6aZrcUxjWg2zR2MwouP2eHlCBzdV4pygudehaKXSGW4v2AsRQUK+lwwXhii6KFZcunEnmSUoYp5CXibxtA==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.3",
+        "define-properties": "^1.2.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/optionator": {
+      "version": "0.9.4",
+      "resolved": "https://registry.npmjs.org/optionator/-/optionator-0.9.4.tgz",
+      "integrity": "sha512-6IpQ7mKUxRcZNLIObR0hz7lxsapSSIYNZJwXPGeF0mTVqGKFIXj1DQcMoT22S3ROcLyY/rz0PWaWZ9ayWmad9g==",
+      "dev": true,
+      "dependencies": {
+        "deep-is": "^0.1.3",
+        "fast-levenshtein": "^2.0.6",
+        "levn": "^0.4.1",
+        "prelude-ls": "^1.2.1",
+        "type-check": "^0.4.0",
+        "word-wrap": "^1.2.5"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/own-keys": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/own-keys/-/own-keys-1.0.1.tgz",
+      "integrity": "sha512-qFOyK5PjiWZd+QQIh+1jhdb9LpxTF0qs7Pm8o5QHYZ0M3vKqSqzsZaEB6oWlxZ+q2sJBMI/Ktgd2N5ZwQoRHfg==",
+      "dev": true,
+      "dependencies": {
+        "get-intrinsic": "^1.2.6",
+        "object-keys": "^1.1.1",
+        "safe-push-apply": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/p-limit": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-3.1.0.tgz",
+      "integrity": "sha512-TYOanM3wGwNGsZN2cVTYPArw454xnXj5qmWF1bEoAc4+cU/ol7GVh7odevjp1FNHduHc3KZMcFduxU5Xc6uJRQ==",
+      "dev": true,
+      "dependencies": {
+        "yocto-queue": "^0.1.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/p-locate": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/p-locate/-/p-locate-5.0.0.tgz",
+      "integrity": "sha512-LaNjtRWUBY++zB5nE/NwcaoMylSPk+S+ZHNB1TzdbMJMny6dynpAGt7X/tl/QYq3TIeE6nxHppbo2LGymrG5Pw==",
+      "dev": true,
+      "dependencies": {
+        "p-limit": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/parent-module": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/parent-module/-/parent-module-1.0.1.tgz",
+      "integrity": "sha512-GQ2EWRpQV8/o+Aw8YqtfZZPfNRWZYkbidE9k5rpl/hC3vtHHBfGm2Ifi6qWV+coDGkrUKZAxE3Lot5kcsRlh+g==",
+      "dev": true,
+      "dependencies": {
+        "callsites": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/path-exists": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/path-exists/-/path-exists-4.0.0.tgz",
+      "integrity": "sha512-ak9Qy5Q7jYb2Wwcey5Fpvg2KoAc/ZIhLSLOSBmRmygPsGwkVVt0fZa0qrtMz+m6tJTAHfZQ8FnmB4MG4LWy7/w==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/path-key": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/path-key/-/path-key-3.1.1.tgz",
+      "integrity": "sha512-ojmeN0qd+y0jszEtoY48r0Peq5dwMEkIlCOu6Q5f41lfkswXuKtYrhgoTpLnyIcHm24Uhqx+5Tqm2InSwLhE6Q==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/path-parse": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/path-parse/-/path-parse-1.0.7.tgz",
+      "integrity": "sha512-LDJzPVEEEPR+y48z93A0Ed0yXb8pAByGWo/k5YYdYgpY2/2EsOsksJrq7lOHxryrVOn1ejG6oAp8ahvOIQD8sw==",
+      "dev": true
+    },
+    "node_modules/pg": {
+      "version": "8.18.0",
+      "resolved": "https://registry.npmjs.org/pg/-/pg-8.18.0.tgz",
+      "integrity": "sha512-xqrUDL1b9MbkydY/s+VZ6v+xiMUmOUk7SS9d/1kpyQxoJ6U9AO1oIJyUWVZojbfe5Cc/oluutcgFG4L9RDP1iQ==",
+      "dependencies": {
+        "pg-connection-string": "^2.11.0",
+        "pg-pool": "^3.11.0",
+        "pg-protocol": "^1.11.0",
+        "pg-types": "2.2.0",
+        "pgpass": "1.0.5"
+      },
+      "engines": {
+        "node": ">= 16.0.0"
+      },
+      "optionalDependencies": {
+        "pg-cloudflare": "^1.3.0"
+      },
+      "peerDependencies": {
+        "pg-native": ">=3.0.1"
+      },
+      "peerDependenciesMeta": {
+        "pg-native": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/pg-cloudflare": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/pg-cloudflare/-/pg-cloudflare-1.3.0.tgz",
+      "integrity": "sha512-6lswVVSztmHiRtD6I8hw4qP/nDm1EJbKMRhf3HCYaqud7frGysPv7FYJ5noZQdhQtN2xJnimfMtvQq21pdbzyQ==",
+      "optional": true
+    },
+    "node_modules/pg-connection-string": {
+      "version": "2.11.0",
+      "resolved": "https://registry.npmjs.org/pg-connection-string/-/pg-connection-string-2.11.0.tgz",
+      "integrity": "sha512-kecgoJwhOpxYU21rZjULrmrBJ698U2RxXofKVzOn5UDj61BPj/qMb7diYUR1nLScCDbrztQFl1TaQZT0t1EtzQ=="
+    },
+    "node_modules/pg-int8": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/pg-int8/-/pg-int8-1.0.1.tgz",
+      "integrity": "sha512-WCtabS6t3c8SkpDBUlb1kjOs7l66xsGdKpIPZsg4wR+B3+u9UAum2odSsF9tnvxg80h4ZxLWMy4pRjOsFIqQpw==",
+      "engines": {
+        "node": ">=4.0.0"
+      }
+    },
+    "node_modules/pg-pool": {
+      "version": "3.11.0",
+      "resolved": "https://registry.npmjs.org/pg-pool/-/pg-pool-3.11.0.tgz",
+      "integrity": "sha512-MJYfvHwtGp870aeusDh+hg9apvOe2zmpZJpyt+BMtzUWlVqbhFmMK6bOBXLBUPd7iRtIF9fZplDc7KrPN3PN7w==",
+      "peerDependencies": {
+        "pg": ">=8.0"
+      }
+    },
+    "node_modules/pg-protocol": {
+      "version": "1.11.0",
+      "resolved": "https://registry.npmjs.org/pg-protocol/-/pg-protocol-1.11.0.tgz",
+      "integrity": "sha512-pfsxk2M9M3BuGgDOfuy37VNRRX3jmKgMjcvAcWqNDpZSf4cUmv8HSOl5ViRQFsfARFn0KuUQTgLxVMbNq5NW3g=="
+    },
+    "node_modules/pg-types": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/pg-types/-/pg-types-2.2.0.tgz",
+      "integrity": "sha512-qTAAlrEsl8s4OiEQY69wDvcMIdQN6wdz5ojQiOy6YRMuynxenON0O5oCpJI6lshc6scgAY8qvJ2On/p+CXY0GA==",
+      "dependencies": {
+        "pg-int8": "1.0.1",
+        "postgres-array": "~2.0.0",
+        "postgres-bytea": "~1.0.0",
+        "postgres-date": "~1.0.4",
+        "postgres-interval": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/pgpass": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/pgpass/-/pgpass-1.0.5.tgz",
+      "integrity": "sha512-FdW9r/jQZhSeohs1Z3sI1yxFQNFvMcnmfuj4WBMUTxOrAyLMaTcE1aAMBiTlbMNaXvBCQuVi0R7hd8udDSP7ug==",
+      "dependencies": {
+        "split2": "^4.1.0"
+      }
+    },
+    "node_modules/picocolors": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.1.tgz",
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA=="
+    },
+    "node_modules/picomatch": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz",
+      "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==",
+      "dev": true,
+      "engines": {
+        "node": ">=8.6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
+    "node_modules/pify": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/pify/-/pify-2.3.0.tgz",
+      "integrity": "sha512-udgsAY+fTnvv7kI7aaxbqwWNb0AHiB0qBO89PZKPkoTmGOgdbrHDKD+0B2X4uTfJ/FT1R09r9gTsjUjNJotuog==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/pirates": {
+      "version": "4.0.7",
+      "resolved": "https://registry.npmjs.org/pirates/-/pirates-4.0.7.tgz",
+      "integrity": "sha512-TfySrs/5nm8fQJDcBDuUng3VOUKsd7S+zqvbOTiGXHfxX4wK31ard+hoNuvkicM/2YFzlpDgABOevKSsB4G/FA==",
+      "dev": true,
+      "engines": {
+        "node": ">= 6"
+      }
+    },
+    "node_modules/playwright": {
+      "version": "1.58.2",
+      "resolved": "https://registry.npmjs.org/playwright/-/playwright-1.58.2.tgz",
+      "integrity": "sha512-vA30H8Nvkq/cPBnNw4Q8TWz1EJyqgpuinBcHET0YVJVFldr8JDNiU9LaWAE1KqSkRYazuaBhTpB5ZzShOezQ6A==",
+      "devOptional": true,
+      "dependencies": {
+        "playwright-core": "1.58.2"
+      },
+      "bin": {
+        "playwright": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      },
+      "optionalDependencies": {
+        "fsevents": "2.3.2"
+      }
+    },
+    "node_modules/playwright-core": {
+      "version": "1.58.2",
+      "resolved": "https://registry.npmjs.org/playwright-core/-/playwright-core-1.58.2.tgz",
+      "integrity": "sha512-yZkEtftgwS8CsfYo7nm0KE8jsvm6i/PTgVtB8DL726wNf6H2IMsDuxCpJj59KDaxCtSnrWan2AeDqM7JBaultg==",
+      "devOptional": true,
+      "bin": {
+        "playwright-core": "cli.js"
+      },
+      "engines": {
+        "node": ">=18"
+      }
+    },
+    "node_modules/playwright/node_modules/fsevents": {
+      "version": "2.3.2",
+      "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.2.tgz",
+      "integrity": "sha512-xiqMQR4xAeHTuB9uWm+fFRcIOgKBMiOBP+eXiyT7jsgVCq1bkVygt00oASowB7EdtpOHaaPgKt812P9ab+DDKA==",
+      "dev": true,
+      "hasInstallScript": true,
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
+      }
+    },
+    "node_modules/possible-typed-array-names": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/possible-typed-array-names/-/possible-typed-array-names-1.1.0.tgz",
+      "integrity": "sha512-/+5VFTchJDoVj3bhoqi6UeymcD00DAwb1nJwamzPvHEszJ4FpF6SNNbUbOS8yI56qHzdV8eK0qEfOSiodkTdxg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/postcss": {
+      "version": "8.5.6",
+      "resolved": "https://registry.npmjs.org/postcss/-/postcss-8.5.6.tgz",
+      "integrity": "sha512-3Ybi1tAuwAP9s0r1UQ2J4n5Y0G05bJkpUIO0/bI9MhwmD70S5aTWbXGBwxHrelT+XM1k6dM0pk+SwNkpTRN7Pg==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/postcss"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "nanoid": "^3.3.11",
+        "picocolors": "^1.1.1",
+        "source-map-js": "^1.2.1"
+      },
+      "engines": {
+        "node": "^10 || ^12 || >=14"
+      }
+    },
+    "node_modules/postcss-import": {
+      "version": "15.1.0",
+      "resolved": "https://registry.npmjs.org/postcss-import/-/postcss-import-15.1.0.tgz",
+      "integrity": "sha512-hpr+J05B2FVYUAXHeK1YyI267J/dDDhMU6B6civm8hSY1jYJnBXxzKDKDswzJmtLHryrjhnDjqqp/49t8FALew==",
+      "dev": true,
+      "dependencies": {
+        "postcss-value-parser": "^4.0.0",
+        "read-cache": "^1.0.0",
+        "resolve": "^1.1.7"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "peerDependencies": {
+        "postcss": "^8.0.0"
+      }
+    },
+    "node_modules/postcss-js": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/postcss-js/-/postcss-js-4.1.0.tgz",
+      "integrity": "sha512-oIAOTqgIo7q2EOwbhb8UalYePMvYoIeRY2YKntdpFQXNosSu3vLrniGgmH9OKs/qAkfoj5oB3le/7mINW1LCfw==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "camelcase-css": "^2.0.1"
+      },
+      "engines": {
+        "node": "^12 || ^14 || >= 16"
+      },
+      "peerDependencies": {
+        "postcss": "^8.4.21"
+      }
+    },
+    "node_modules/postcss-load-config": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/postcss-load-config/-/postcss-load-config-6.0.1.tgz",
+      "integrity": "sha512-oPtTM4oerL+UXmx+93ytZVN82RrlY/wPUV8IeDxFrzIjXOLF1pN+EmKPLbubvKHT2HC20xXsCAH2Z+CKV6Oz/g==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "lilconfig": "^3.1.1"
+      },
+      "engines": {
+        "node": ">= 18"
+      },
+      "peerDependencies": {
+        "jiti": ">=1.21.0",
+        "postcss": ">=8.0.9",
+        "tsx": "^4.8.1",
+        "yaml": "^2.4.2"
+      },
+      "peerDependenciesMeta": {
+        "jiti": {
+          "optional": true
+        },
+        "postcss": {
+          "optional": true
+        },
+        "tsx": {
+          "optional": true
+        },
+        "yaml": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/postcss-nested": {
+      "version": "6.2.0",
+      "resolved": "https://registry.npmjs.org/postcss-nested/-/postcss-nested-6.2.0.tgz",
+      "integrity": "sha512-HQbt28KulC5AJzG+cZtj9kvKB93CFCdLvog1WFLf1D+xmMvPGlBstkpTEZfK5+AN9hfJocyBFCNiqyS48bpgzQ==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/postcss/"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "postcss-selector-parser": "^6.1.1"
+      },
+      "engines": {
+        "node": ">=12.0"
+      },
+      "peerDependencies": {
+        "postcss": "^8.2.14"
+      }
+    },
+    "node_modules/postcss-selector-parser": {
+      "version": "6.1.2",
+      "resolved": "https://registry.npmjs.org/postcss-selector-parser/-/postcss-selector-parser-6.1.2.tgz",
+      "integrity": "sha512-Q8qQfPiZ+THO/3ZrOrO0cJJKfpYCagtMUkXbnEfmgUjwXg6z/WBeOyS9APBBPCTSiDV+s4SwQGu8yFsiMRIudg==",
+      "dev": true,
+      "dependencies": {
+        "cssesc": "^3.0.0",
+        "util-deprecate": "^1.0.2"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/postcss-value-parser": {
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/postcss-value-parser/-/postcss-value-parser-4.2.0.tgz",
+      "integrity": "sha512-1NNCs6uurfkVbeXG4S8JFT9t19m45ICnif8zWLd5oPSZ50QnwMfK+H3jv408d4jw/7Bttv5axS5IiHoLaVNHeQ==",
+      "dev": true
+    },
+    "node_modules/postgres-array": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/postgres-array/-/postgres-array-2.0.0.tgz",
+      "integrity": "sha512-VpZrUqU5A69eQyW2c5CA1jtLecCsN2U/bD6VilrFDWq5+5UIEVO7nazS3TEcHf1zuPYO/sqGvUvW62g86RXZuA==",
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/postgres-bytea": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/postgres-bytea/-/postgres-bytea-1.0.1.tgz",
+      "integrity": "sha512-5+5HqXnsZPE65IJZSMkZtURARZelel2oXUEO8rH83VS/hxH5vv1uHquPg5wZs8yMAfdv971IU+kcPUczi7NVBQ==",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-date": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/postgres-date/-/postgres-date-1.0.7.tgz",
+      "integrity": "sha512-suDmjLVQg78nMK2UZ454hAG+OAW+HQPZ6n++TNDUX+L0+uUlLywnoxJKDou51Zm+zTCjrCl0Nq6J9C5hP9vK/Q==",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/postgres-interval": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/postgres-interval/-/postgres-interval-1.2.0.tgz",
+      "integrity": "sha512-9ZhXKM/rw350N1ovuWHbGxnGh/SNJ4cnxHiM0rxE4VN41wsg8P8zWn9hv/buK00RP4WvlOyr/RBDiptyxVbkZQ==",
+      "dependencies": {
+        "xtend": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/prelude-ls": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/prelude-ls/-/prelude-ls-1.2.1.tgz",
+      "integrity": "sha512-vkcDPrRZo1QZLbn5RLGPpg/WmIQ65qoWWhcGKf/b5eplkkarX0m9z8ppCat4mlOqUsWpyNuYgO3VRyrYHSzX5g==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/prop-types": {
+      "version": "15.8.1",
+      "resolved": "https://registry.npmjs.org/prop-types/-/prop-types-15.8.1.tgz",
+      "integrity": "sha512-oj87CgZICdulUohogVAR7AjlC0327U4el4L6eAvOqCeudMDVU0NThNaV+b9Df4dXgSP1gXMTnPdhfe/2qDH5cg==",
+      "dev": true,
+      "dependencies": {
+        "loose-envify": "^1.4.0",
+        "object-assign": "^4.1.1",
+        "react-is": "^16.13.1"
+      }
+    },
+    "node_modules/punycode": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/punycode/-/punycode-2.3.1.tgz",
+      "integrity": "sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg==",
+      "dev": true,
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/queue-microtask": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/queue-microtask/-/queue-microtask-1.2.3.tgz",
+      "integrity": "sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ]
+    },
+    "node_modules/react": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react/-/react-18.3.1.tgz",
+      "integrity": "sha512-wS+hAgJShR0KhEvPJArfuPVN1+Hz1t0Y6n5jLrGQbkb4urgPE/0Rve+1kMB1v/oWgHgm4WIcV+i7F2pTVj+2iQ==",
+      "dependencies": {
+        "loose-envify": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/react-dom": {
+      "version": "18.3.1",
+      "resolved": "https://registry.npmjs.org/react-dom/-/react-dom-18.3.1.tgz",
+      "integrity": "sha512-5m4nQKp+rZRb09LNH59GM4BxTh9251/ylbKIbpe7TpGxfJ+9kv6BLkLBXIjjspbgbnIBNqlI23tRnTWT0snUIw==",
+      "dependencies": {
+        "loose-envify": "^1.1.0",
+        "scheduler": "^0.23.2"
+      },
+      "peerDependencies": {
+        "react": "^18.3.1"
+      }
+    },
+    "node_modules/react-is": {
+      "version": "16.13.1",
+      "resolved": "https://registry.npmjs.org/react-is/-/react-is-16.13.1.tgz",
+      "integrity": "sha512-24e6ynE2H+OKt4kqsOvNd8kBpV65zoxbA4BVsEOB3ARVWQki/DHzaUoC5KuON/BiccDaCCTZBuOcfZs70kR8bQ==",
+      "dev": true
+    },
+    "node_modules/read-cache": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/read-cache/-/read-cache-1.0.0.tgz",
+      "integrity": "sha512-Owdv/Ft7IjOgm/i0xvNDZ1LrRANRfew4b2prF3OWMQLxLfu3bS8FVhCsrSCMK4lR56Y9ya+AThoTpDCTxCmpRA==",
+      "dev": true,
+      "dependencies": {
+        "pify": "^2.3.0"
+      }
+    },
+    "node_modules/readdirp": {
+      "version": "3.6.0",
+      "resolved": "https://registry.npmjs.org/readdirp/-/readdirp-3.6.0.tgz",
+      "integrity": "sha512-hOS089on8RduqdbhvQ5Z37A0ESjsqz6qnRcffsMU3495FuTdqSm+7bhJ29JvIOsBDEEnan5DPu9t3To9VRlMzA==",
+      "dev": true,
+      "dependencies": {
+        "picomatch": "^2.2.1"
+      },
+      "engines": {
+        "node": ">=8.10.0"
+      }
+    },
+    "node_modules/reflect.getprototypeof": {
+      "version": "1.0.10",
+      "resolved": "https://registry.npmjs.org/reflect.getprototypeof/-/reflect.getprototypeof-1.0.10.tgz",
+      "integrity": "sha512-00o4I+DVrefhv+nX0ulyi3biSHCPDe+yLv5o/p6d/UVlirijB8E16FtfwSAi4g3tcqrQ4lRAqQSoFEZJehYEcw==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.9",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.0.0",
+        "get-intrinsic": "^1.2.7",
+        "get-proto": "^1.0.1",
+        "which-builtin-type": "^1.2.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/regexp.prototype.flags": {
+      "version": "1.5.4",
+      "resolved": "https://registry.npmjs.org/regexp.prototype.flags/-/regexp.prototype.flags-1.5.4.tgz",
+      "integrity": "sha512-dYqgNSZbDwkaJ2ceRd9ojCGjBq+mOm9LmtXnAnEGyHhN/5R7iDW2TRw3h+o/jCFxus3P2LfWIIiwowAjANm7IA==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "define-properties": "^1.2.1",
+        "es-errors": "^1.3.0",
+        "get-proto": "^1.0.1",
+        "gopd": "^1.2.0",
+        "set-function-name": "^2.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/resolve": {
+      "version": "1.22.11",
+      "resolved": "https://registry.npmjs.org/resolve/-/resolve-1.22.11.tgz",
+      "integrity": "sha512-RfqAvLnMl313r7c9oclB1HhUEAezcpLjz95wFH4LVuhk9JF/r22qmVP9AMmOU4vMX7Q8pN8jwNg/CSpdFnMjTQ==",
+      "dev": true,
+      "dependencies": {
+        "is-core-module": "^2.16.1",
+        "path-parse": "^1.0.7",
+        "supports-preserve-symlinks-flag": "^1.0.0"
+      },
+      "bin": {
+        "resolve": "bin/resolve"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/resolve-from": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/resolve-from/-/resolve-from-4.0.0.tgz",
+      "integrity": "sha512-pb/MYmXstAkysRFx8piNI1tGFNQIFA3vkE3Gq4EuA1dF6gHp/+vgZqsCGJapvy8N3Q+4o7FwvquPJcnZ7RYy4g==",
+      "dev": true,
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/resolve-pkg-maps": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/resolve-pkg-maps/-/resolve-pkg-maps-1.0.0.tgz",
+      "integrity": "sha512-seS2Tj26TBVOC2NIc2rOe2y2ZO7efxITtLZcGSOnHHNOQ7CkiUBfw0Iw2ck6xkIhPwLhKNLS8BO+hEpngQlqzw==",
+      "dev": true,
+      "funding": {
+        "url": "https://github.com/privatenumber/resolve-pkg-maps?sponsor=1"
+      }
+    },
+    "node_modules/reusify": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/reusify/-/reusify-1.1.0.tgz",
+      "integrity": "sha512-g6QUff04oZpHs0eG5p83rFLhHeV00ug/Yf9nZM6fLeUrPguBTkTQOdpAWWspMh55TZfVQDPaN3NQJfbVRAxdIw==",
+      "dev": true,
+      "engines": {
+        "iojs": ">=1.0.0",
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/run-parallel": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/run-parallel/-/run-parallel-1.2.0.tgz",
+      "integrity": "sha512-5l4VyZR86LZ/lDxZTR6jqL8AFE2S0IFLMP26AbjsLVADxHdhB/c0GUsH+y39UfCi3dzz8OlQuPmnaJOMoDHQBA==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "dependencies": {
+        "queue-microtask": "^1.2.2"
+      }
+    },
+    "node_modules/safe-array-concat": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/safe-array-concat/-/safe-array-concat-1.1.3.tgz",
+      "integrity": "sha512-AURm5f0jYEOydBj7VQlVvDrjeFgthDdEF5H1dP+6mNpoXOMo1quQqJ4wvJDyRZ9+pO3kGWoOdmV08cSv2aJV6Q==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.2",
+        "get-intrinsic": "^1.2.6",
+        "has-symbols": "^1.1.0",
+        "isarray": "^2.0.5"
+      },
+      "engines": {
+        "node": ">=0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/safe-push-apply": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/safe-push-apply/-/safe-push-apply-1.0.0.tgz",
+      "integrity": "sha512-iKE9w/Z7xCzUMIZqdBsp6pEQvwuEebH4vdpjcDWnyzaI6yl6O9FHvVpmGelvEHNsoY6wGblkxR6Zty/h00WiSA==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "isarray": "^2.0.5"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/safe-regex-test": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/safe-regex-test/-/safe-regex-test-1.1.0.tgz",
+      "integrity": "sha512-x/+Cz4YrimQxQccJf5mKEbIa1NzeCRNI5Ecl/ekmlYaampdNLPalVyIcCZNNH3MvmqBugV5TMYZXv0ljslUlaw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "is-regex": "^1.2.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/scheduler": {
+      "version": "0.23.2",
+      "resolved": "https://registry.npmjs.org/scheduler/-/scheduler-0.23.2.tgz",
+      "integrity": "sha512-UOShsPwz7NrMUqhR6t0hWjFduvOzbtv7toDH1/hIrfRNIDBnnBWd0CwJTGvTpngVlmwGCdP9/Zl/tVrDqcuYzQ==",
+      "dependencies": {
+        "loose-envify": "^1.1.0"
+      }
+    },
+    "node_modules/semver": {
+      "version": "7.7.3",
+      "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.3.tgz",
+      "integrity": "sha512-SdsKMrI9TdgjdweUSR9MweHA4EJ8YxHn8DFaDisvhVlUOe4BF1tLD7GAj0lIqWVl+dPb/rExr0Btby5loQm20Q==",
+      "devOptional": true,
+      "bin": {
+        "semver": "bin/semver.js"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
+    "node_modules/server-only": {
+      "version": "0.0.1",
+      "resolved": "https://registry.npmjs.org/server-only/-/server-only-0.0.1.tgz",
+      "integrity": "sha512-qepMx2JxAa5jjfzxG79yPPq+8BuFToHd1hm7kI+Z4zAq1ftQiP7HcxMhDDItrbtwVeLg/cY2JnKnrcFkmiswNA==",
+      "dev": true
+    },
+    "node_modules/set-function-length": {
+      "version": "1.2.2",
+      "resolved": "https://registry.npmjs.org/set-function-length/-/set-function-length-1.2.2.tgz",
+      "integrity": "sha512-pgRc4hJ4/sNjWCSS9AmnS40x3bNMDTknHgL5UaMBTMyJnU90EgWh1Rz+MC9eFu4BuN/UwZjKQuY/1v3rM7HMfg==",
+      "dev": true,
+      "dependencies": {
+        "define-data-property": "^1.1.4",
+        "es-errors": "^1.3.0",
+        "function-bind": "^1.1.2",
+        "get-intrinsic": "^1.2.4",
+        "gopd": "^1.0.1",
+        "has-property-descriptors": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/set-function-name": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/set-function-name/-/set-function-name-2.0.2.tgz",
+      "integrity": "sha512-7PGFlmtwsEADb0WYyvCMa1t+yke6daIG4Wirafur5kcf+MhUnPms1UeR0CKQdTZD81yESwMHbtn+TR+dMviakQ==",
+      "dev": true,
+      "dependencies": {
+        "define-data-property": "^1.1.4",
+        "es-errors": "^1.3.0",
+        "functions-have-names": "^1.2.3",
+        "has-property-descriptors": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/set-proto": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/set-proto/-/set-proto-1.0.0.tgz",
+      "integrity": "sha512-RJRdvCo6IAnPdsvP/7m6bsQqNnn1FCBX5ZNtFL98MmFF/4xAIJTIg1YbHW5DC2W5SKZanrC6i4HsJqlajw/dZw==",
+      "dev": true,
+      "dependencies": {
+        "dunder-proto": "^1.0.1",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/sharp": {
+      "version": "0.34.5",
+      "resolved": "https://registry.npmjs.org/sharp/-/sharp-0.34.5.tgz",
+      "integrity": "sha512-Ou9I5Ft9WNcCbXrU9cMgPBcCK8LiwLqcbywW3t4oDV37n1pzpuNLsYiAV8eODnjbtQlSDwZ2cUEeQz4E54Hltg==",
+      "hasInstallScript": true,
+      "optional": true,
+      "dependencies": {
+        "@img/colour": "^1.0.0",
+        "detect-libc": "^2.1.2",
+        "semver": "^7.7.3"
+      },
+      "engines": {
+        "node": "^18.17.0 || ^20.3.0 || >=21.0.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/libvips"
+      },
+      "optionalDependencies": {
+        "@img/sharp-darwin-arm64": "0.34.5",
+        "@img/sharp-darwin-x64": "0.34.5",
+        "@img/sharp-libvips-darwin-arm64": "1.2.4",
+        "@img/sharp-libvips-darwin-x64": "1.2.4",
+        "@img/sharp-libvips-linux-arm": "1.2.4",
+        "@img/sharp-libvips-linux-arm64": "1.2.4",
+        "@img/sharp-libvips-linux-ppc64": "1.2.4",
+        "@img/sharp-libvips-linux-riscv64": "1.2.4",
+        "@img/sharp-libvips-linux-s390x": "1.2.4",
+        "@img/sharp-libvips-linux-x64": "1.2.4",
+        "@img/sharp-libvips-linuxmusl-arm64": "1.2.4",
+        "@img/sharp-libvips-linuxmusl-x64": "1.2.4",
+        "@img/sharp-linux-arm": "0.34.5",
+        "@img/sharp-linux-arm64": "0.34.5",
+        "@img/sharp-linux-ppc64": "0.34.5",
+        "@img/sharp-linux-riscv64": "0.34.5",
+        "@img/sharp-linux-s390x": "0.34.5",
+        "@img/sharp-linux-x64": "0.34.5",
+        "@img/sharp-linuxmusl-arm64": "0.34.5",
+        "@img/sharp-linuxmusl-x64": "0.34.5",
+        "@img/sharp-wasm32": "0.34.5",
+        "@img/sharp-win32-arm64": "0.34.5",
+        "@img/sharp-win32-ia32": "0.34.5",
+        "@img/sharp-win32-x64": "0.34.5"
+      }
+    },
+    "node_modules/shebang-command": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-command/-/shebang-command-2.0.0.tgz",
+      "integrity": "sha512-kHxr2zZpYtdmrN1qDjrrX/Z1rR1kG8Dx+gkpK1G4eXmvXswmcE1hTWBWYUzlraYw1/yZp6YuDY77YtvbN0dmDA==",
+      "dev": true,
+      "dependencies": {
+        "shebang-regex": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/shebang-regex": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/shebang-regex/-/shebang-regex-3.0.0.tgz",
+      "integrity": "sha512-7++dFhtcx3353uBaq8DDR4NuxBetBzC7ZQOhmTQInHEd6bSrXdiEyzCvG07Z44UYdLShWUyXt5M/yhz8ekcb1A==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/side-channel": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/side-channel/-/side-channel-1.1.0.tgz",
+      "integrity": "sha512-ZX99e6tRweoUXqR+VBrslhda51Nh5MTQwou5tnUDgbtyM0dBgmhEDtWGP/xbKn6hqfPRHujUNwz5fy/wbbhnpw==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "object-inspect": "^1.13.3",
+        "side-channel-list": "^1.0.0",
+        "side-channel-map": "^1.0.1",
+        "side-channel-weakmap": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-list": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/side-channel-list/-/side-channel-list-1.0.0.tgz",
+      "integrity": "sha512-FCLHtRD/gnpCiCHEiJLOwdmFP+wzCmDEkc9y7NsYxeF4u7Btsn1ZuwgwJGxImImHicJArLP4R0yX4c2KCrMrTA==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "object-inspect": "^1.13.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-map": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/side-channel-map/-/side-channel-map-1.0.1.tgz",
+      "integrity": "sha512-VCjCNfgMsby3tTdo02nbjtM/ewra6jPHmpThenkTYh8pG9ucZ/1P8So4u4FGBek/BjpOVsDCMoLA/iuBKIFXRA==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.5",
+        "object-inspect": "^1.13.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/side-channel-weakmap": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/side-channel-weakmap/-/side-channel-weakmap-1.0.2.tgz",
+      "integrity": "sha512-WPS/HvHQTYnHisLo9McqBHOJk2FkHO/tlpvldyrnem4aeQp4hai3gythswg6p01oSoTl58rcpiFAjF2br2Ak2A==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "es-errors": "^1.3.0",
+        "get-intrinsic": "^1.2.5",
+        "object-inspect": "^1.13.3",
+        "side-channel-map": "^1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/source-map-js": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/source-map-js/-/source-map-js-1.2.1.tgz",
+      "integrity": "sha512-UXWMKhLOwVKb728IUtQPXxfYU+usdybtUrK/8uGE8CQMvrhOpwvzDBwj0QhSL7MQc7vIsISBG8VQ8+IDQxpfQA==",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/split2": {
+      "version": "4.2.0",
+      "resolved": "https://registry.npmjs.org/split2/-/split2-4.2.0.tgz",
+      "integrity": "sha512-UcjcJOWknrNkF6PLX83qcHM6KHgVKNkV62Y8a5uYDVv9ydGQVwAHMKqHdJje1VTWpljG0WYpCDhrCdAOYH4TWg==",
+      "engines": {
+        "node": ">= 10.x"
+      }
+    },
+    "node_modules/stable-hash": {
+      "version": "0.0.5",
+      "resolved": "https://registry.npmjs.org/stable-hash/-/stable-hash-0.0.5.tgz",
+      "integrity": "sha512-+L3ccpzibovGXFK+Ap/f8LOS0ahMrHTf3xu7mMLSpEGU0EO9ucaysSylKo9eRDFNhWve/y275iPmIZ4z39a9iA==",
+      "dev": true
+    },
+    "node_modules/stop-iteration-iterator": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/stop-iteration-iterator/-/stop-iteration-iterator-1.1.0.tgz",
+      "integrity": "sha512-eLoXW/DHyl62zxY4SCaIgnRhuMr6ri4juEYARS8E6sCEqzKpOiE521Ucofdx+KnDZl5xmvGYaaKCk5FEOxJCoQ==",
+      "dev": true,
+      "dependencies": {
+        "es-errors": "^1.3.0",
+        "internal-slot": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/string.prototype.includes": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/string.prototype.includes/-/string.prototype.includes-2.0.1.tgz",
+      "integrity": "sha512-o7+c9bW6zpAdJHTtujeePODAhkuicdAryFsfVKwA+wGw89wJ4GTY484WTucM9hLtDEOpOvI+aHnzqnC5lHp4Rg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/string.prototype.matchall": {
+      "version": "4.0.12",
+      "resolved": "https://registry.npmjs.org/string.prototype.matchall/-/string.prototype.matchall-4.0.12.tgz",
+      "integrity": "sha512-6CC9uyBL+/48dYizRf7H7VAYCMCNTBeM78x/VTUe9bFEaxBepPJDa1Ow99LqI/1yF7kuy7Q3cQsYMrcjGUcskA==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.3",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.6",
+        "es-errors": "^1.3.0",
+        "es-object-atoms": "^1.0.0",
+        "get-intrinsic": "^1.2.6",
+        "gopd": "^1.2.0",
+        "has-symbols": "^1.1.0",
+        "internal-slot": "^1.1.0",
+        "regexp.prototype.flags": "^1.5.3",
+        "set-function-name": "^2.0.2",
+        "side-channel": "^1.1.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/string.prototype.repeat": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/string.prototype.repeat/-/string.prototype.repeat-1.0.0.tgz",
+      "integrity": "sha512-0u/TldDbKD8bFCQ/4f5+mNRrXwZ8hg2w7ZR8wa16e8z9XpePWl3eGEcUD0OXpEH/VJH/2G3gjUtR3ZOiBe2S/w==",
+      "dev": true,
+      "dependencies": {
+        "define-properties": "^1.1.3",
+        "es-abstract": "^1.17.5"
+      }
+    },
+    "node_modules/string.prototype.trim": {
+      "version": "1.2.10",
+      "resolved": "https://registry.npmjs.org/string.prototype.trim/-/string.prototype.trim-1.2.10.tgz",
+      "integrity": "sha512-Rs66F0P/1kedk5lyYyH9uBzuiI/kNRmwJAR9quK6VOtIpZ2G+hMZd+HQbbv25MgCA6gEffoMZYxlTod4WcdrKA==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.2",
+        "define-data-property": "^1.1.4",
+        "define-properties": "^1.2.1",
+        "es-abstract": "^1.23.5",
+        "es-object-atoms": "^1.0.0",
+        "has-property-descriptors": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/string.prototype.trimend": {
+      "version": "1.0.9",
+      "resolved": "https://registry.npmjs.org/string.prototype.trimend/-/string.prototype.trimend-1.0.9.tgz",
+      "integrity": "sha512-G7Ok5C6E/j4SGfyLCloXTrngQIQU3PWtXGst3yM7Bea9FRURf1S42ZHlZZtsNque2FN2PoUhfZXYLNWwEr4dLQ==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.2",
+        "define-properties": "^1.2.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/string.prototype.trimstart": {
+      "version": "1.0.8",
+      "resolved": "https://registry.npmjs.org/string.prototype.trimstart/-/string.prototype.trimstart-1.0.8.tgz",
+      "integrity": "sha512-UXSH262CSZY1tfu3G3Secr6uGLCFVPMhIqHjlgCUtCCcgihYc/xKs9djMTMUOb2j1mVSeU8EU6NWc/iQKU6Gfg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "define-properties": "^1.2.1",
+        "es-object-atoms": "^1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/strip-bom": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/strip-bom/-/strip-bom-3.0.0.tgz",
+      "integrity": "sha512-vavAMRXOgBVNF6nyEEmL3DBK19iRpDcoIwW+swQ+CbGiu7lju6t+JklA1MHweoWtadgt4ISVUsXLyDq34ddcwA==",
+      "dev": true,
+      "engines": {
+        "node": ">=4"
+      }
+    },
+    "node_modules/strip-json-comments": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/strip-json-comments/-/strip-json-comments-3.1.1.tgz",
+      "integrity": "sha512-6fPc+R4ihwqP6N/aIv2f1gMH8lOVtWQHoqC4yK6oSDVVocumAsfCqjkXnqiYMhmMwS/mEHLp7Vehlt3ql6lEig==",
+      "dev": true,
+      "engines": {
+        "node": ">=8"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/styled-jsx": {
+      "version": "5.1.6",
+      "resolved": "https://registry.npmjs.org/styled-jsx/-/styled-jsx-5.1.6.tgz",
+      "integrity": "sha512-qSVyDTeMotdvQYoHWLNGwRFJHC+i+ZvdBRYosOFgC+Wg1vx4frN2/RG/NA7SYqqvKNLf39P2LSRA2pu6n0XYZA==",
+      "dependencies": {
+        "client-only": "0.0.1"
+      },
+      "engines": {
+        "node": ">= 12.0.0"
+      },
+      "peerDependencies": {
+        "react": ">= 16.8.0 || 17.x.x || ^18.0.0-0 || ^19.0.0-0"
+      },
+      "peerDependenciesMeta": {
+        "@babel/core": {
+          "optional": true
+        },
+        "babel-plugin-macros": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/sucrase": {
+      "version": "3.35.1",
+      "resolved": "https://registry.npmjs.org/sucrase/-/sucrase-3.35.1.tgz",
+      "integrity": "sha512-DhuTmvZWux4H1UOnWMB3sk0sbaCVOoQZjv8u1rDoTV0HTdGem9hkAZtl4JZy8P2z4Bg0nT+YMeOFyVr4zcG5Tw==",
+      "dev": true,
+      "dependencies": {
+        "@jridgewell/gen-mapping": "^0.3.2",
+        "commander": "^4.0.0",
+        "lines-and-columns": "^1.1.6",
+        "mz": "^2.7.0",
+        "pirates": "^4.0.1",
+        "tinyglobby": "^0.2.11",
+        "ts-interface-checker": "^0.1.9"
+      },
+      "bin": {
+        "sucrase": "bin/sucrase",
+        "sucrase-node": "bin/sucrase-node"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      }
+    },
+    "node_modules/supports-color": {
+      "version": "7.2.0",
+      "resolved": "https://registry.npmjs.org/supports-color/-/supports-color-7.2.0.tgz",
+      "integrity": "sha512-qpCAvRl9stuOHveKsn7HncJRvv501qIacKzQlO/+Lwxc9+0q2wLyv4Dfvt80/DPn2pqOBsJdDiogXGR9+OvwRw==",
+      "dev": true,
+      "dependencies": {
+        "has-flag": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/supports-preserve-symlinks-flag": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/supports-preserve-symlinks-flag/-/supports-preserve-symlinks-flag-1.0.0.tgz",
+      "integrity": "sha512-ot0WnXS9fgdkgIcePe6RHNk1WA8+muPa6cSjeR3V8K27q9BB1rTE3R1p7Hv0z1ZyAc8s6Vvv8DIyWf681MAt0w==",
+      "dev": true,
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/tailwindcss": {
+      "version": "3.4.19",
+      "resolved": "https://registry.npmjs.org/tailwindcss/-/tailwindcss-3.4.19.tgz",
+      "integrity": "sha512-3ofp+LL8E+pK/JuPLPggVAIaEuhvIz4qNcf3nA1Xn2o/7fb7s/TYpHhwGDv1ZU3PkBluUVaF8PyCHcm48cKLWQ==",
+      "dev": true,
+      "dependencies": {
+        "@alloc/quick-lru": "^5.2.0",
+        "arg": "^5.0.2",
+        "chokidar": "^3.6.0",
+        "didyoumean": "^1.2.2",
+        "dlv": "^1.1.3",
+        "fast-glob": "^3.3.2",
+        "glob-parent": "^6.0.2",
+        "is-glob": "^4.0.3",
+        "jiti": "^1.21.7",
+        "lilconfig": "^3.1.3",
+        "micromatch": "^4.0.8",
+        "normalize-path": "^3.0.0",
+        "object-hash": "^3.0.0",
+        "picocolors": "^1.1.1",
+        "postcss": "^8.4.47",
+        "postcss-import": "^15.1.0",
+        "postcss-js": "^4.0.1",
+        "postcss-load-config": "^4.0.2 || ^5.0 || ^6.0",
+        "postcss-nested": "^6.2.0",
+        "postcss-selector-parser": "^6.1.2",
+        "resolve": "^1.22.8",
+        "sucrase": "^3.35.0"
+      },
+      "bin": {
+        "tailwind": "lib/cli.js",
+        "tailwindcss": "lib/cli.js"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/thenify": {
+      "version": "3.3.1",
+      "resolved": "https://registry.npmjs.org/thenify/-/thenify-3.3.1.tgz",
+      "integrity": "sha512-RVZSIV5IG10Hk3enotrhvz0T9em6cyHBLkH/YAZuKqd8hRkKhSfCGIcP2KUY0EPxndzANBmNllzWPwak+bheSw==",
+      "dev": true,
+      "dependencies": {
+        "any-promise": "^1.0.0"
+      }
+    },
+    "node_modules/thenify-all": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/thenify-all/-/thenify-all-1.6.0.tgz",
+      "integrity": "sha512-RNxQH/qI8/t3thXJDwcstUO4zeqo64+Uy/+sNVRBx4Xn2OX+OZ9oP+iJnNFqplFra2ZUVeKCSa2oVWi3T4uVmA==",
+      "dev": true,
+      "dependencies": {
+        "thenify": ">= 3.1.0 < 4"
+      },
+      "engines": {
+        "node": ">=0.8"
+      }
+    },
+    "node_modules/tinyglobby": {
+      "version": "0.2.15",
+      "resolved": "https://registry.npmjs.org/tinyglobby/-/tinyglobby-0.2.15.tgz",
+      "integrity": "sha512-j2Zq4NyQYG5XMST4cbs02Ak8iJUdxRM0XI5QyxXuZOzKOINmWurp3smXu3y5wDcJrptwpSjgXHzIQxR0omXljQ==",
+      "dev": true,
+      "dependencies": {
+        "fdir": "^6.5.0",
+        "picomatch": "^4.0.3"
+      },
+      "engines": {
+        "node": ">=12.0.0"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/SuperchupuDev"
+      }
+    },
+    "node_modules/tinyglobby/node_modules/fdir": {
+      "version": "6.5.0",
+      "resolved": "https://registry.npmjs.org/fdir/-/fdir-6.5.0.tgz",
+      "integrity": "sha512-tIbYtZbucOs0BRGqPJkshJUYdL+SDH7dVM8gjy+ERp3WAUjLEFJE+02kanyHtwjWOnwrKYBiwAmM0p4kLJAnXg==",
+      "dev": true,
+      "engines": {
+        "node": ">=12.0.0"
+      },
+      "peerDependencies": {
+        "picomatch": "^3 || ^4"
+      },
+      "peerDependenciesMeta": {
+        "picomatch": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/tinyglobby/node_modules/picomatch": {
+      "version": "4.0.3",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.3.tgz",
+      "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==",
+      "dev": true,
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/jonschlinkert"
+      }
+    },
+    "node_modules/to-regex-range": {
+      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/to-regex-range/-/to-regex-range-5.0.1.tgz",
+      "integrity": "sha512-65P7iz6X5yEr1cwcgvQxbbIw7Uk3gOy5dIdtZ4rDveLqhrdJP+Li/Hx6tyK0NEb+2GCyneCMJiGqrADCSNk8sQ==",
+      "dev": true,
+      "dependencies": {
+        "is-number": "^7.0.0"
+      },
+      "engines": {
+        "node": ">=8.0"
+      }
+    },
+    "node_modules/ts-interface-checker": {
+      "version": "0.1.13",
+      "resolved": "https://registry.npmjs.org/ts-interface-checker/-/ts-interface-checker-0.1.13.tgz",
+      "integrity": "sha512-Y/arvbn+rrz3JCKl9C4kVNfTfSm2/mEp5FSz5EsZSANGPSlQrpRI5M4PKF+mJnE52jOO90PnPSc3Ur3bTQw0gA==",
+      "dev": true
+    },
+    "node_modules/tsconfig-paths": {
+      "version": "3.15.0",
+      "resolved": "https://registry.npmjs.org/tsconfig-paths/-/tsconfig-paths-3.15.0.tgz",
+      "integrity": "sha512-2Ac2RgzDe/cn48GvOe3M+o82pEFewD3UPbyoUHHdKasHwJKjds4fLXWf/Ux5kATBKN20oaFGu+jbElp1pos0mg==",
+      "dev": true,
+      "dependencies": {
+        "@types/json5": "^0.0.29",
+        "json5": "^1.0.2",
+        "minimist": "^1.2.6",
+        "strip-bom": "^3.0.0"
+      }
+    },
+    "node_modules/tslib": {
+      "version": "2.8.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz",
+      "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w=="
+    },
+    "node_modules/tsx": {
+      "version": "4.21.0",
+      "resolved": "https://registry.npmjs.org/tsx/-/tsx-4.21.0.tgz",
+      "integrity": "sha512-5C1sg4USs1lfG0GFb2RLXsdpXqBSEhAaA/0kPL01wxzpMqLILNxIxIOKiILz+cdg/pLnOUxFYOR5yhHU666wbw==",
+      "dev": true,
+      "dependencies": {
+        "esbuild": "~0.27.0",
+        "get-tsconfig": "^4.7.5"
+      },
+      "bin": {
+        "tsx": "dist/cli.mjs"
+      },
+      "engines": {
+        "node": ">=18.0.0"
+      },
+      "optionalDependencies": {
+        "fsevents": "~2.3.3"
+      }
+    },
+    "node_modules/type-check": {
+      "version": "0.4.0",
+      "resolved": "https://registry.npmjs.org/type-check/-/type-check-0.4.0.tgz",
+      "integrity": "sha512-XleUoc9uwGXqjWwXaUTZAmzMcFZ5858QA2vvx1Ur5xIcixXIP+8LnFDgRplU30us6teqdlskFfu+ae4K79Ooew==",
+      "dev": true,
+      "dependencies": {
+        "prelude-ls": "^1.2.1"
+      },
+      "engines": {
+        "node": ">= 0.8.0"
+      }
+    },
+    "node_modules/typed-array-buffer": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/typed-array-buffer/-/typed-array-buffer-1.0.3.tgz",
+      "integrity": "sha512-nAYYwfY3qnzX30IkA6AQZjVbtK6duGontcQm1WSG1MD94YLqK0515GNApXkoxKOWMusVssAHWLh9SeaoefYFGw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "es-errors": "^1.3.0",
+        "is-typed-array": "^1.1.14"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      }
+    },
+    "node_modules/typed-array-byte-length": {
+      "version": "1.0.3",
+      "resolved": "https://registry.npmjs.org/typed-array-byte-length/-/typed-array-byte-length-1.0.3.tgz",
+      "integrity": "sha512-BaXgOuIxz8n8pIq3e7Atg/7s+DpiYrxn4vdot3w9KbnBhcRQq6o3xemQdIfynqSeXeDrF32x+WvfzmOjPiY9lg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.8",
+        "for-each": "^0.3.3",
+        "gopd": "^1.2.0",
+        "has-proto": "^1.2.0",
+        "is-typed-array": "^1.1.14"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/typed-array-byte-offset": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/typed-array-byte-offset/-/typed-array-byte-offset-1.0.4.tgz",
+      "integrity": "sha512-bTlAFB/FBYMcuX81gbL4OcpH5PmlFHqlCCpAl8AlEzMz5k53oNDvN8p1PNOWLEmI2x4orp3raOFB51tv9X+MFQ==",
+      "dev": true,
+      "dependencies": {
+        "available-typed-arrays": "^1.0.7",
+        "call-bind": "^1.0.8",
+        "for-each": "^0.3.3",
+        "gopd": "^1.2.0",
+        "has-proto": "^1.2.0",
+        "is-typed-array": "^1.1.15",
+        "reflect.getprototypeof": "^1.0.9"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/typed-array-length": {
+      "version": "1.0.7",
+      "resolved": "https://registry.npmjs.org/typed-array-length/-/typed-array-length-1.0.7.tgz",
+      "integrity": "sha512-3KS2b+kL7fsuk/eJZ7EQdnEmQoaho/r6KUef7hxvltNA5DR8NAUM+8wJMbJyZ4G9/7i3v5zPBIMN5aybAh2/Jg==",
+      "dev": true,
+      "dependencies": {
+        "call-bind": "^1.0.7",
+        "for-each": "^0.3.3",
+        "gopd": "^1.0.1",
+        "is-typed-array": "^1.1.13",
+        "possible-typed-array-names": "^1.0.0",
+        "reflect.getprototypeof": "^1.0.6"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/typescript": {
+      "version": "5.9.3",
+      "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.9.3.tgz",
+      "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==",
+      "dev": true,
+      "bin": {
+        "tsc": "bin/tsc",
+        "tsserver": "bin/tsserver"
+      },
+      "engines": {
+        "node": ">=14.17"
+      }
+    },
+    "node_modules/typescript-eslint": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/typescript-eslint/-/typescript-eslint-8.54.0.tgz",
+      "integrity": "sha512-CKsJ+g53QpsNPqbzUsfKVgd3Lny4yKZ1pP4qN3jdMOg/sisIDLGyDMezycquXLE5JsEU0wp3dGNdzig0/fmSVQ==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/eslint-plugin": "8.54.0",
+        "@typescript-eslint/parser": "8.54.0",
+        "@typescript-eslint/typescript-estree": "8.54.0",
+        "@typescript-eslint/utils": "8.54.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "eslint": "^8.57.0 || ^9.0.0",
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/eslint-plugin": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/eslint-plugin/-/eslint-plugin-8.54.0.tgz",
+      "integrity": "sha512-hAAP5io/7csFStuOmR782YmTthKBJ9ND3WVL60hcOjvtGFb+HJxH4O5huAcmcZ9v9G8P+JETiZ/G1B8MALnWZQ==",
+      "dev": true,
+      "dependencies": {
+        "@eslint-community/regexpp": "^4.12.2",
+        "@typescript-eslint/scope-manager": "8.54.0",
+        "@typescript-eslint/type-utils": "8.54.0",
+        "@typescript-eslint/utils": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0",
+        "ignore": "^7.0.5",
+        "natural-compare": "^1.4.0",
+        "ts-api-utils": "^2.4.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "@typescript-eslint/parser": "^8.54.0",
+        "eslint": "^8.57.0 || ^9.0.0",
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/parser": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-8.54.0.tgz",
+      "integrity": "sha512-BtE0k6cjwjLZoZixN0t5AKP0kSzlGu7FctRXYuPAm//aaiZhmfq1JwdYpYr1brzEspYyFeF+8XF5j2VK6oalrA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/scope-manager": "8.54.0",
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/typescript-estree": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0",
+        "debug": "^4.4.3"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "eslint": "^8.57.0 || ^9.0.0",
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/scope-manager": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-8.54.0.tgz",
+      "integrity": "sha512-27rYVQku26j/PbHYcVfRPonmOlVI6gihHtXFbTdB5sb6qA0wdAQAbyXFVarQ5t4HRojIz64IV90YtsjQSSGlQg==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/types": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.54.0.tgz",
+      "integrity": "sha512-PDUI9R1BVjqu7AUDsRBbKMtwmjWcn4J3le+5LpcFgWULN3LvHC5rkc9gCVxbrsrGmO1jfPybN5s6h4Jy+OnkAA==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/typescript-estree": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-8.54.0.tgz",
+      "integrity": "sha512-BUwcskRaPvTk6fzVWgDPdUndLjB87KYDrN5EYGetnktoeAvPtO4ONHlAZDnj5VFnUANg0Sjm7j4usBlnoVMHwA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/project-service": "8.54.0",
+        "@typescript-eslint/tsconfig-utils": "8.54.0",
+        "@typescript-eslint/types": "8.54.0",
+        "@typescript-eslint/visitor-keys": "8.54.0",
+        "debug": "^4.4.3",
+        "minimatch": "^9.0.5",
+        "semver": "^7.7.3",
+        "tinyglobby": "^0.2.15",
+        "ts-api-utils": "^2.4.0"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4 <6.0.0"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/@typescript-eslint/visitor-keys": {
+      "version": "8.54.0",
+      "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-8.54.0.tgz",
+      "integrity": "sha512-VFlhGSl4opC0bprJiItPQ1RfUhGDIBokcPwaFH4yiBCaNPeld/9VeXbiPO1cLyorQi1G1vL+ecBk1x8o1axORA==",
+      "dev": true,
+      "dependencies": {
+        "@typescript-eslint/types": "8.54.0",
+        "eslint-visitor-keys": "^4.2.1"
+      },
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/typescript-eslint"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/brace-expansion": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz",
+      "integrity": "sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==",
+      "dev": true,
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/eslint-visitor-keys": {
+      "version": "4.2.1",
+      "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.1.tgz",
+      "integrity": "sha512-Uhdk5sfqcee/9H/rCOJikYz67o0a2Tw2hGRPOG2Y1R2dg7brRe1uG0yaNQDHu+TO/uQPF/5eCapvYSmHUjt7JQ==",
+      "dev": true,
+      "engines": {
+        "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/eslint"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/ignore": {
+      "version": "7.0.5",
+      "resolved": "https://registry.npmjs.org/ignore/-/ignore-7.0.5.tgz",
+      "integrity": "sha512-Hs59xBNfUIunMFgWAbGX5cq6893IbWg4KnrjbYwX3tx0ztorVgTDA6B2sxf8ejHJ4wz8BqGUMYlnzNBer5NvGg==",
+      "dev": true,
+      "engines": {
+        "node": ">= 4"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/minimatch": {
+      "version": "9.0.5",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-9.0.5.tgz",
+      "integrity": "sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==",
+      "dev": true,
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=16 || 14 >=14.17"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/typescript-eslint/node_modules/ts-api-utils": {
+      "version": "2.4.0",
+      "resolved": "https://registry.npmjs.org/ts-api-utils/-/ts-api-utils-2.4.0.tgz",
+      "integrity": "sha512-3TaVTaAv2gTiMB35i3FiGJaRfwb3Pyn/j3m/bfAvGe8FB7CF6u+LMYqYlDh7reQf7UNvoTvdfAqHGmPGOSsPmA==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.12"
+      },
+      "peerDependencies": {
+        "typescript": ">=4.8.4"
+      }
+    },
+    "node_modules/unbox-primitive": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/unbox-primitive/-/unbox-primitive-1.1.0.tgz",
+      "integrity": "sha512-nWJ91DjeOkej/TA8pXQ3myruKpKEYgqvpw9lz4OPHj/NWFNluYrjbz9j01CJ8yKQd2g4jFoOkINCTW2I5LEEyw==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.3",
+        "has-bigints": "^1.0.2",
+        "has-symbols": "^1.1.0",
+        "which-boxed-primitive": "^1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/undici-types": {
+      "version": "6.21.0",
+      "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-6.21.0.tgz",
+      "integrity": "sha512-iwDZqg0QAGrg9Rav5H4n0M64c3mkR59cJ6wQp+7C4nI0gsmExaedaYLNO44eT4AtBBwjbTiGPMlt2Md0T9H9JQ==",
+      "dev": true
+    },
+    "node_modules/unrs-resolver": {
+      "version": "1.11.1",
+      "resolved": "https://registry.npmjs.org/unrs-resolver/-/unrs-resolver-1.11.1.tgz",
+      "integrity": "sha512-bSjt9pjaEBnNiGgc9rUiHGKv5l4/TGzDmYw3RhnkJGtLhbnnA/5qJj7x3dNDCRx/PJxu774LlH8lCOlB4hEfKg==",
+      "dev": true,
+      "hasInstallScript": true,
+      "dependencies": {
+        "napi-postinstall": "^0.3.0"
+      },
+      "funding": {
+        "url": "https://opencollective.com/unrs-resolver"
+      },
+      "optionalDependencies": {
+        "@unrs/resolver-binding-android-arm-eabi": "1.11.1",
+        "@unrs/resolver-binding-android-arm64": "1.11.1",
+        "@unrs/resolver-binding-darwin-arm64": "1.11.1",
+        "@unrs/resolver-binding-darwin-x64": "1.11.1",
+        "@unrs/resolver-binding-freebsd-x64": "1.11.1",
+        "@unrs/resolver-binding-linux-arm-gnueabihf": "1.11.1",
+        "@unrs/resolver-binding-linux-arm-musleabihf": "1.11.1",
+        "@unrs/resolver-binding-linux-arm64-gnu": "1.11.1",
+        "@unrs/resolver-binding-linux-arm64-musl": "1.11.1",
+        "@unrs/resolver-binding-linux-ppc64-gnu": "1.11.1",
+        "@unrs/resolver-binding-linux-riscv64-gnu": "1.11.1",
+        "@unrs/resolver-binding-linux-riscv64-musl": "1.11.1",
+        "@unrs/resolver-binding-linux-s390x-gnu": "1.11.1",
+        "@unrs/resolver-binding-linux-x64-gnu": "1.11.1",
+        "@unrs/resolver-binding-linux-x64-musl": "1.11.1",
+        "@unrs/resolver-binding-wasm32-wasi": "1.11.1",
+        "@unrs/resolver-binding-win32-arm64-msvc": "1.11.1",
+        "@unrs/resolver-binding-win32-ia32-msvc": "1.11.1",
+        "@unrs/resolver-binding-win32-x64-msvc": "1.11.1"
+      }
+    },
+    "node_modules/update-browserslist-db": {
+      "version": "1.2.3",
+      "resolved": "https://registry.npmjs.org/update-browserslist-db/-/update-browserslist-db-1.2.3.tgz",
+      "integrity": "sha512-Js0m9cx+qOgDxo0eMiFGEueWztz+d4+M3rGlmKPT+T4IS/jP4ylw3Nwpu6cpTTP8R1MAC1kF4VbdLt3ARf209w==",
+      "dev": true,
+      "funding": [
+        {
+          "type": "opencollective",
+          "url": "https://opencollective.com/browserslist"
+        },
+        {
+          "type": "tidelift",
+          "url": "https://tidelift.com/funding/github/npm/browserslist"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/ai"
+        }
+      ],
+      "dependencies": {
+        "escalade": "^3.2.0",
+        "picocolors": "^1.1.1"
+      },
+      "bin": {
+        "update-browserslist-db": "cli.js"
+      },
+      "peerDependencies": {
+        "browserslist": ">= 4.21.0"
+      }
+    },
+    "node_modules/uri-js": {
+      "version": "4.4.1",
+      "resolved": "https://registry.npmjs.org/uri-js/-/uri-js-4.4.1.tgz",
+      "integrity": "sha512-7rKUyy33Q1yc98pQ1DAmLtwX109F7TIfWlW1Ydo8Wl1ii1SeHieeh0HHfPeL2fMXK6z0s8ecKs9frCuLJvndBg==",
+      "dev": true,
+      "dependencies": {
+        "punycode": "^2.1.0"
+      }
+    },
+    "node_modules/util-deprecate": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/util-deprecate/-/util-deprecate-1.0.2.tgz",
+      "integrity": "sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==",
+      "dev": true
+    },
+    "node_modules/which": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/which/-/which-2.0.2.tgz",
+      "integrity": "sha512-BLI3Tl1TW3Pvl70l3yq3Y64i+awpwXqsGBYWkkqMtnbXgrMD+yj7rhW0kuEDxzJaYXGjEW5ogapKNMEKNMjibA==",
+      "dev": true,
+      "dependencies": {
+        "isexe": "^2.0.0"
+      },
+      "bin": {
+        "node-which": "bin/node-which"
+      },
+      "engines": {
+        "node": ">= 8"
+      }
+    },
+    "node_modules/which-boxed-primitive": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/which-boxed-primitive/-/which-boxed-primitive-1.1.1.tgz",
+      "integrity": "sha512-TbX3mj8n0odCBFVlY8AxkqcHASw3L60jIuF8jFP78az3C2YhmGvqbHBpAjTRH2/xqYunrJ9g1jSyjCjpoWzIAA==",
+      "dev": true,
+      "dependencies": {
+        "is-bigint": "^1.1.0",
+        "is-boolean-object": "^1.2.1",
+        "is-number-object": "^1.1.1",
+        "is-string": "^1.1.1",
+        "is-symbol": "^1.1.1"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/which-builtin-type": {
+      "version": "1.2.1",
+      "resolved": "https://registry.npmjs.org/which-builtin-type/-/which-builtin-type-1.2.1.tgz",
+      "integrity": "sha512-6iBczoX+kDQ7a3+YJBnh3T+KZRxM/iYNPXicqk66/Qfm1b93iu+yOImkg0zHbj5LNOcNv1TEADiZ0xa34B4q6Q==",
+      "dev": true,
+      "dependencies": {
+        "call-bound": "^1.0.2",
+        "function.prototype.name": "^1.1.6",
+        "has-tostringtag": "^1.0.2",
+        "is-async-function": "^2.0.0",
+        "is-date-object": "^1.1.0",
+        "is-finalizationregistry": "^1.1.0",
+        "is-generator-function": "^1.0.10",
+        "is-regex": "^1.2.1",
+        "is-weakref": "^1.0.2",
+        "isarray": "^2.0.5",
+        "which-boxed-primitive": "^1.1.0",
+        "which-collection": "^1.0.2",
+        "which-typed-array": "^1.1.16"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/which-collection": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/which-collection/-/which-collection-1.0.2.tgz",
+      "integrity": "sha512-K4jVyjnBdgvc86Y6BkaLZEN933SwYOuBFkdmBu9ZfkcAbdVbpITnDmjvZ/aQjRXQrv5EPkTnD1s39GiiqbngCw==",
+      "dev": true,
+      "dependencies": {
+        "is-map": "^2.0.3",
+        "is-set": "^2.0.3",
+        "is-weakmap": "^2.0.2",
+        "is-weakset": "^2.0.3"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/which-typed-array": {
+      "version": "1.1.20",
+      "resolved": "https://registry.npmjs.org/which-typed-array/-/which-typed-array-1.1.20.tgz",
+      "integrity": "sha512-LYfpUkmqwl0h9A2HL09Mms427Q1RZWuOHsukfVcKRq9q95iQxdw0ix1JQrqbcDR9PH1QDwf5Qo8OZb5lksZ8Xg==",
+      "dev": true,
+      "dependencies": {
+        "available-typed-arrays": "^1.0.7",
+        "call-bind": "^1.0.8",
+        "call-bound": "^1.0.4",
+        "for-each": "^0.3.5",
+        "get-proto": "^1.0.1",
+        "gopd": "^1.2.0",
+        "has-tostringtag": "^1.0.2"
+      },
+      "engines": {
+        "node": ">= 0.4"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/ljharb"
+      }
+    },
+    "node_modules/word-wrap": {
+      "version": "1.2.5",
+      "resolved": "https://registry.npmjs.org/word-wrap/-/word-wrap-1.2.5.tgz",
+      "integrity": "sha512-BN22B5eaMMI9UMtjrGd5g5eCYPpCPDUy0FJXbYsaT5zYxjFOckS53SQDE3pWkVoWpHXVb3BrYcEN4Twa55B5cA==",
+      "dev": true,
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
+    "node_modules/xtend": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/xtend/-/xtend-4.0.2.tgz",
+      "integrity": "sha512-LKYU1iAXJXUgAXn9URjiu+MWhyUXHsvfp7mcuYm9dSUKK0/CjtrUwFAxD82/mCWbtLsGjFIad0wIsod4zrTAEQ==",
+      "engines": {
+        "node": ">=0.4"
+      }
+    },
+    "node_modules/yallist": {
+      "version": "3.1.1",
+      "resolved": "https://registry.npmjs.org/yallist/-/yallist-3.1.1.tgz",
+      "integrity": "sha512-a4UGQaWPH59mOXUYnAG2ewncQS4i4F43Tv3JoAM+s2VDAmS9NsK8GpDMLrCHPksFT7h3K6TOoUNn2pb7RoXx4g==",
+      "dev": true
+    },
+    "node_modules/yocto-queue": {
+      "version": "0.1.0",
+      "resolved": "https://registry.npmjs.org/yocto-queue/-/yocto-queue-0.1.0.tgz",
+      "integrity": "sha512-rVksvsnNCdJ/ohGc6xgPwyN8eheCxsiLM8mxuE/t/mOVqJewPuO1miLpTHQiRgTKCLexL4MeAFVagts7HmNZ2Q==",
+      "dev": true,
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/zod": {
+      "version": "4.3.6",
+      "resolved": "https://registry.npmjs.org/zod/-/zod-4.3.6.tgz",
+      "integrity": "sha512-rftlrkhHZOcjDwkGlnUtZZkvaPHCsDATp4pGpuOOMDaTdDDXF91wuVDJoWoPsKX/3YPQ5fHuF3STjcYyKr+Qhg==",
+      "dev": true,
+      "funding": {
+        "url": "https://github.com/sponsors/colinhacks"
+      }
+    },
+    "node_modules/zod-validation-error": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/zod-validation-error/-/zod-validation-error-4.0.2.tgz",
+      "integrity": "sha512-Q6/nZLe6jxuU80qb/4uJ4t5v2VEZ44lzQjPDhYJNztRQ4wyWc6VF3D3Kb/fAuPetZQnhS3hnajCf9CsWesghLQ==",
+      "dev": true,
+      "engines": {
+        "node": ">=18.0.0"
+      },
+      "peerDependencies": {
+        "zod": "^3.25.0 || ^4.0.0"
+      }
+    },
+    "packages/db": {
+      "name": "@fiddy/db",
+      "version": "0.0.0",
+      "dependencies": {
+        "dotenv": "^16.4.5",
+        "pg": "^8.13.0"
+      }
+    },
+    "packages/shared": {
+      "name": "@fiddy/shared",
+      "version": "0.0.0"
+    }
+  }
+}
diff --git a/package.json b/package.json
new file mode 100644
index 0000000..25efe0a
--- /dev/null
+++ b/package.json
@@ -0,0 +1,18 @@
+{
+  "name": "fiddy",
+  "private": true,
+  "workspaces": [
+    "apps/*",
+    "packages/*"
+  ],
+  "scripts": {
+    "dev": "npm --workspace apps/web run dev",
+    "dev:web": "npm --workspace apps/web run dev",
+    "build": "npm --workspace apps/web run build",
+    "start": "npm --workspace apps/web run start",
+    "lint": "npm --workspace apps/web run lint",
+    "test": "npm --workspace apps/web run test",
+    "test:ui": "npm --workspace apps/web run test:ui",
+    "db:migrate": "npm --workspace packages/db run migrate"
+  }
+}
diff --git a/packages/db/migrations/001_init.sql b/packages/db/migrations/001_init.sql
new file mode 100644
index 0000000..9c2b54a
--- /dev/null
+++ b/packages/db/migrations/001_init.sql
@@ -0,0 +1,76 @@
+create type system_role as enum ('USER', 'SYS_ADMIN');
+create type group_role as enum ('MEMBER', 'GROUP_ADMIN');
+
+create table users(
+  id bigserial primary key,
+  email text not null unique,
+  display_name text,
+  password_hash text not null,
+  system_role system_role not null default 'USER',
+  created_at timestamptz not null default now()
+);
+
+create table sessions(
+  id bigserial primary key,
+  user_id bigint not null references users(id) on delete cascade,
+  token_hash text not null unique,
+  expires_at timestamptz not null,
+  created_at timestamptz not null default now()
+);
+
+create table groups(
+  id bigserial primary key,
+  name text not null,
+  invite_code text not null unique,
+  created_by bigint not null references users(id),
+  created_at timestamptz not null default now()
+);
+
+create table group_members(
+  group_id bigint not null references groups(id) on delete cascade,
+  user_id bigint not null references users(id) on delete cascade,
+  role group_role not null default 'MEMBER',
+  created_at timestamptz not null default now(),
+  primary key(group_id, user_id)
+);
+
+create type spending_necessity as enum ('NECESSARY', 'BOTH', 'UNNECESSARY');
+
+create table receipts(
+  id bigserial primary key,
+  content_type text not null,
+  bytes bytea not null,
+  created_by bigint not null references users(id),
+  created_at timestamptz not null default now()
+);
+
+create table spendings(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  created_by bigint not null references users(id),
+  amount_dollars numeric(12,2) not null check(amount_dollars >= 0),
+  occurred_at date not null,
+  necessity spending_necessity not null,
+  purchase_type text not null,
+  notes text,
+  receipt_id bigint references receipts(id) on delete set null,
+  created_at timestamptz not null default now()
+);
+
+create index idx_spendings_group_occurred on spendings(group_id, occurred_at desc);
+create index idx_spendings_receipt on spendings(receipt_id);
+
+create table user_settings(
+  user_id bigint primary key references users(id) on delete cascade,
+  data jsonb not null default '{}'::jsonb,
+  updated_at timestamptz not null default now()
+);
+
+create table reports(
+  id bigserial primary key,
+  created_by bigint not null references users(id),
+  title text not null,
+  body text not null,
+  status text not null default 'OPEN',
+  created_at timestamptz not null default now()
+);
diff --git a/packages/db/migrations/002_amount_dollars.sql b/packages/db/migrations/002_amount_dollars.sql
new file mode 100644
index 0000000..1135e7a
--- /dev/null
+++ b/packages/db/migrations/002_amount_dollars.sql
@@ -0,0 +1,6 @@
+alter table spendings
+  rename column amount_cents to amount_dollars;
+
+alter table spendings
+  alter column amount_dollars type numeric(12,2)
+  using (amount_dollars / 100.0);
diff --git a/packages/db/migrations/002_tags.sql b/packages/db/migrations/002_tags.sql
new file mode 100644
index 0000000..69168c3
--- /dev/null
+++ b/packages/db/migrations/002_tags.sql
@@ -0,0 +1,26 @@
+create table group_settings(
+  group_id bigint primary key references groups(id) on delete cascade,
+  allow_member_tag_manage boolean not null default false,
+  updated_at timestamptz not null default now()
+);
+
+create table tags(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  name text not null,
+  created_by bigint not null references users(id),
+  created_at timestamptz not null default now()
+);
+
+create unique index tags_group_name_unique on tags(group_id, lower(name));
+create index tags_group_id_idx on tags(group_id);
+
+create table spending_tags(
+  spending_id bigint not null references spendings(id) on delete cascade,
+  tag_id bigint not null references tags(id) on delete cascade,
+  created_at timestamptz not null default now(),
+  primary key (spending_id, tag_id)
+);
+
+create index spending_tags_spending_idx on spending_tags(spending_id);
+create index spending_tags_tag_idx on spending_tags(tag_id);
diff --git a/packages/db/migrations/003_group_settings_owner_invites.sql b/packages/db/migrations/003_group_settings_owner_invites.sql
new file mode 100644
index 0000000..86399bb
--- /dev/null
+++ b/packages/db/migrations/003_group_settings_owner_invites.sql
@@ -0,0 +1,88 @@
+create type group_role_v2 as enum ('MEMBER', 'GROUP_ADMIN', 'GROUP_OWNER');
+
+alter table group_members
+  alter column role type group_role_v2
+  using role::text::group_role_v2;
+
+drop type group_role;
+alter type group_role_v2 rename to group_role;
+
+with ranked_admins as (
+  select
+    group_id,
+    user_id,
+    row_number() over (partition by group_id order by created_at asc, user_id asc) as rn
+  from group_members
+  where role = 'GROUP_ADMIN'
+)
+update group_members gm
+set role = 'GROUP_OWNER'
+from ranked_admins ra
+where gm.group_id = ra.group_id
+  and gm.user_id = ra.user_id
+  and ra.rn = 1;
+
+create unique index group_members_owner_unique on group_members(group_id) where role = 'GROUP_OWNER';
+
+alter table users
+  add column last_login_at timestamptz;
+
+alter table group_members
+  add column last_active_at timestamptz;
+
+create type group_join_policy as enum ('NOT_ACCEPTING', 'AUTO_ACCEPT', 'APPROVAL_REQUIRED');
+
+alter table group_settings
+  add column join_policy group_join_policy not null default 'NOT_ACCEPTING';
+
+create type group_join_request_status as enum ('PENDING', 'APPROVED', 'DENIED', 'CANCELED');
+
+create table group_join_requests(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  user_id bigint not null references users(id) on delete cascade,
+  status group_join_request_status not null default 'PENDING',
+  decided_by bigint references users(id) on delete set null,
+  decided_at timestamptz,
+  created_at timestamptz not null default now(),
+  updated_at timestamptz not null default now()
+);
+
+create unique index group_join_requests_pending_unique
+  on group_join_requests(group_id, user_id)
+  where status = 'PENDING';
+
+create index group_join_requests_group_idx on group_join_requests(group_id);
+
+create table group_invite_links(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  created_by bigint not null references users(id) on delete cascade,
+  token text not null unique,
+  policy group_join_policy not null,
+  single_use boolean not null default false,
+  expires_at timestamptz not null,
+  used_at timestamptz,
+  revoked_at timestamptz,
+  created_at timestamptz not null default now()
+);
+
+create index group_invite_links_group_idx on group_invite_links(group_id);
+
+create table group_audit_log(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  actor_user_id bigint references users(id) on delete set null,
+  actor_role group_role,
+  event_type text not null,
+  request_id text not null,
+  ip inet,
+  user_agent text,
+  success boolean not null default true,
+  error_code text,
+  metadata jsonb not null default '{}'::jsonb,
+  created_at timestamptz not null default now()
+);
+
+create index group_audit_log_group_idx on group_audit_log(group_id, created_at desc);
+create index group_audit_log_request_idx on group_audit_log(request_id);
diff --git a/packages/db/migrations/004_entries_pivot.sql b/packages/db/migrations/004_entries_pivot.sql
new file mode 100644
index 0000000..2bcaf44
--- /dev/null
+++ b/packages/db/migrations/004_entries_pivot.sql
@@ -0,0 +1,27 @@
+create type entry_type as enum ('SPENDING', 'INCOME');
+create type recurring_frequency as enum ('DAILY', 'WEEKLY', 'BIWEEKLY', 'MONTHLY', 'QUARTERLY', 'YEARLY');
+create type recurring_end_condition as enum ('NEVER', 'AFTER_COUNT', 'BY_DATE');
+
+alter table spendings rename to entries;
+
+alter index idx_spendings_group_occurred rename to idx_entries_group_occurred;
+alter index idx_spendings_receipt rename to idx_entries_receipt;
+
+alter table entries
+    add column entry_type entry_type not null default 'SPENDING',
+    add column is_recurring boolean not null default false,
+    add column frequency recurring_frequency,
+    add column interval_count integer not null default 1,
+    add column end_condition recurring_end_condition,
+    add column end_count integer,
+    add column end_date date,
+    add column next_run_at date,
+    add column last_executed_at date;
+
+alter table spending_tags rename to entry_tags;
+alter table entry_tags rename column spending_id to entry_id;
+
+alter table entry_tags rename constraint spending_tags_pkey to entry_tags_pkey;
+
+alter index spending_tags_spending_idx rename to entry_tags_entry_idx;
+alter index spending_tags_tag_idx rename to entry_tags_tag_idx;
diff --git a/packages/db/migrations/005_buckets.sql b/packages/db/migrations/005_buckets.sql
new file mode 100644
index 0000000..898ac2e
--- /dev/null
+++ b/packages/db/migrations/005_buckets.sql
@@ -0,0 +1,23 @@
+create table buckets(
+  id bigserial primary key,
+  group_id bigint not null references groups(id) on delete cascade,
+  created_by bigint not null references users(id),
+  name text not null,
+  description text,
+  icon_key text,
+  budget_limit_dollars numeric(12,2),
+  position integer not null default 0,
+  created_at timestamptz not null default now()
+);
+
+create index buckets_group_id_idx on buckets(group_id);
+
+create table bucket_tags(
+  bucket_id bigint not null references buckets(id) on delete cascade,
+  tag_id bigint not null references tags(id) on delete cascade,
+  created_at timestamptz not null default now(),
+  primary key (bucket_id, tag_id)
+);
+
+create index bucket_tags_bucket_idx on bucket_tags(bucket_id);
+create index bucket_tags_tag_idx on bucket_tags(tag_id);
diff --git a/packages/db/migrations/006_bucket_usage.sql b/packages/db/migrations/006_bucket_usage.sql
new file mode 100644
index 0000000..a78977a
--- /dev/null
+++ b/packages/db/migrations/006_bucket_usage.sql
@@ -0,0 +1,11 @@
+alter type spending_necessity rename value 'INBETWEEN' to 'BOTH';
+
+alter table buckets add column necessity spending_necessity;
+update buckets set necessity = 'BOTH' where necessity is null;
+alter table buckets alter column necessity set not null;
+alter table buckets alter column necessity set default 'BOTH';
+
+alter table buckets add column window_days integer;
+update buckets set window_days = 30 where window_days is null;
+alter table buckets alter column window_days set not null;
+alter table buckets alter column window_days set default 30;
diff --git a/packages/db/package.json b/packages/db/package.json
new file mode 100644
index 0000000..a87297c
--- /dev/null
+++ b/packages/db/package.json
@@ -0,0 +1,16 @@
+{
+  "name": "@fiddy/db",
+  "private": true,
+  "type": "module",
+  "version": "0.0.0",
+  "scripts": {
+    "migrate": "node ./src/migrate.js",
+    "test": "node ./src/selftest.js",
+    "test:ui-seed": "node ./test-ui-seed/index.js"
+  },
+  "dependencies": {
+    "bcryptjs": "^2.4.3",
+    "dotenv": "^16.4.5",
+    "pg": "^8.13.0"
+  }
+}
diff --git a/packages/db/src/migrate.js b/packages/db/src/migrate.js
new file mode 100644
index 0000000..0968576
--- /dev/null
+++ b/packages/db/src/migrate.js
@@ -0,0 +1,102 @@
+import fs from "node:fs";
+import path from "node:path";
+import crypto from "node:crypto";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import pg from "pg";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+dotenv.config({ path: path.resolve(__dirname, "../../../apps/web/.env") });
+
+const { Pool } = pg;
+const migrationsDir = path.resolve(__dirname, "../migrations");
+
+const sha256 = s => crypto.createHash("sha256").update(s).digest("hex");
+
+function getDatabaseName(connectionString) {
+  try {
+    const url = new URL(connectionString);
+    const name = url.pathname.replace(/^\/+/, "");
+    return name ? decodeURIComponent(name) : "";
+  } catch {
+    return "";
+  }
+}
+
+function requireAllowedDatabase() {
+  if (!process.env.DATABASE_URL)
+    throw new Error("DATABASE_URL is required");
+  const allowedRaw = process.env.ALLOWED_DB_NAMES;
+  if (!allowedRaw)
+    throw new Error("ALLOWED_DB_NAMES is required");
+  const allowed = allowedRaw
+    .split(",")
+    .map(value => value.trim().toLowerCase())
+    .filter(Boolean);
+  if (!allowed.length)
+    throw new Error("ALLOWED_DB_NAMES must include at least one database name");
+  const dbName = getDatabaseName(process.env.DATABASE_URL);
+  if (!dbName)
+    throw new Error("DATABASE_URL must include a database name");
+  if (!allowed.includes(dbName.toLowerCase()))
+    throw new Error(`DATABASE_URL must target an allowed database. Found "${dbName}"`);
+}
+
+async function ensureMigrationsTable(client) {
+  await client.query(`
+    create table if not exists _migrations(
+      id text primary key,
+      hash text not null,
+      applied_at timestamptz not null default now()
+    );
+  `);
+}
+
+async function main() {
+  requireAllowedDatabase();
+
+  const pool = new Pool({
+    connectionString: process.env.DATABASE_URL,
+    ssl: process.env.DATABASE_SSL === "false" ? false : { rejectUnauthorized: false }
+  });
+
+  const client = await pool.connect();
+  try {
+    await client.query("begin");
+    await ensureMigrationsTable(client);
+
+    const files = fs.readdirSync(migrationsDir).filter(f => f.endsWith(".sql")).sort();
+
+    for (const f of files) {
+      const id = f;
+      const sql = fs.readFileSync(path.join(migrationsDir, f), "utf8");
+      const hash = sha256(sql);
+
+      const existing = await client.query(
+        "select 1 from _migrations where id=$1 and hash=$2",
+        [id, hash]
+      );
+      if (existing.rowCount) continue;
+
+      const already = await client.query("select hash from _migrations where id=$1", [id]);
+      if (already.rowCount && already.rows[0].hash !== hash)
+        throw new Error(`Migration changed after apply: ${id}`);
+
+      await client.query(sql);
+      await client.query("insert into _migrations(id, hash) values($1,$2)", [id, hash]);
+      console.log(`applied ${id}`);
+    }
+
+    await client.query("commit");
+  } catch (e) {
+    await client.query("rollback");
+    console.error(e);
+    process.exitCode = 1;
+  } finally {
+    client.release();
+    await pool.end();
+  }
+}
+
+main();
diff --git a/packages/db/src/selftest.js b/packages/db/src/selftest.js
new file mode 100644
index 0000000..6e4ecc0
--- /dev/null
+++ b/packages/db/src/selftest.js
@@ -0,0 +1,28 @@
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import pg from "pg";
+const { Pool } = pg;
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+dotenv.config({ path: path.resolve(__dirname, "../../../.env") });
+
+async function main() {
+  if (!process.env.DATABASE_URL) {
+    console.log("DATABASE_URL not set; skipping db selftest.");
+    return;
+  }
+  const pool = new Pool({
+    connectionString: process.env.DATABASE_URL,
+    ssl: process.env.DATABASE_SSL === "false" ? false : { rejectUnauthorized: false }
+  });
+  const { rows } = await pool.query("select 1 as ok");
+  console.log(rows[0]?.ok === 1 ? "db ok" : "db not ok");
+  await pool.end();
+}
+
+main().catch(e => {
+  console.error(e);
+  process.exitCode = 1;
+});
diff --git a/packages/db/test-ui-seed/index.js b/packages/db/test-ui-seed/index.js
new file mode 100644
index 0000000..b422c79
--- /dev/null
+++ b/packages/db/test-ui-seed/index.js
@@ -0,0 +1,110 @@
+import fs from "node:fs";
+import path from "node:path";
+import { fileURLToPath } from "node:url";
+import dotenv from "dotenv";
+import pg from "pg";
+import bcrypt from "bcryptjs";
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+dotenv.config({ path: path.resolve(__dirname, "../../../apps/web/.env") });
+
+const { Pool } = pg;
+
+function getDatabaseName(connectionString) {
+  try {
+    const url = new URL(connectionString);
+    const name = url.pathname.replace(/^\/+/, "");
+    return name ? decodeURIComponent(name) : "";
+  } catch {
+    return "";
+  }
+}
+
+function requireAllowedDatabase() {
+  if (!process.env.DATABASE_URL)
+    throw new Error("DATABASE_URL is required");
+  const allowedRaw = process.env.ALLOWED_DB_NAMES;
+  if (!allowedRaw)
+    throw new Error("ALLOWED_DB_NAMES is required");
+  const allowed = allowedRaw
+    .split(",")
+    .map(value => value.trim().toLowerCase())
+    .filter(Boolean);
+  if (!allowed.length)
+    throw new Error("ALLOWED_DB_NAMES must include at least one database name");
+  const dbName = getDatabaseName(process.env.DATABASE_URL);
+  if (!dbName)
+    throw new Error("DATABASE_URL must include a database name");
+  if (!allowed.includes(dbName.toLowerCase()))
+    throw new Error(`DATABASE_URL must target an allowed database. Found "${dbName}"`);
+}
+
+async function main() {
+  requireAllowedDatabase();
+
+  const sqlPath = path.resolve(__dirname, "../../../docs/seed-ui.sql");
+  let sql = fs.readFileSync(sqlPath, "utf8");
+  if (!sql.includes("__PASSWORD_HASH__"))
+    throw new Error("Seed SQL missing __PASSWORD_HASH__ placeholder");
+
+  const seedPassword = process.env.SEED_PASSWORD || "FiddyDev123!";
+  const passwordHash = await bcrypt.hash(seedPassword, 12);
+  sql = sql.replaceAll("__PASSWORD_HASH__", passwordHash);
+
+  const pool = new Pool({
+    connectionString: process.env.DATABASE_URL,
+    ssl: process.env.DATABASE_SSL === "false" ? false : { rejectUnauthorized: false }
+  });
+
+  const client = await pool.connect();
+  try {
+    await client.query("begin");
+    await client.query(sql);
+    await client.query("commit");
+
+    const tables = [
+      "users",
+      "groups",
+      "group_members",
+      "group_settings",
+      "group_join_requests",
+      "group_invite_links",
+      "group_audit_log",
+      "tags",
+      "entries",
+      "entry_tags",
+      "receipts"
+    ];
+
+    const counts = {};
+    for (const table of tables) {
+      const { rows } = await client.query(`select count(*)::int as count from ${table}`);
+      counts[table] = rows[0]?.count ?? 0;
+    }
+
+    const { rows: userRows } = await client.query("select email from users order by id");
+    const { rows: groupRows } = await client.query("select name from groups order by id");
+
+    console.log("UI seed complete.");
+    console.log("Counts:");
+    for (const [table, count] of Object.entries(counts))
+      console.log(`- ${table}: ${count}`);
+    console.log("Users:");
+    for (const row of userRows)
+      console.log(`- ${row.email}`);
+    console.log("Groups:");
+    for (const row of groupRows)
+      console.log(`- ${row.name}`);
+  } catch (error) {
+    await client.query("rollback");
+    console.error(error);
+    process.exitCode = 1;
+  } finally {
+    client.release();
+    await pool.end();
+  }
+}
+
+main();
diff --git a/packages/shared/package.json b/packages/shared/package.json
new file mode 100644
index 0000000..d917d4e
--- /dev/null
+++ b/packages/shared/package.json
@@ -0,0 +1,9 @@
+{
+  "name": "@fiddy/shared",
+  "private": true,
+  "type": "module",
+  "version": "0.0.0",
+  "exports": {
+    ".": "./src/index.ts"
+  }
+}
\ No newline at end of file
diff --git a/packages/shared/src/index.ts b/packages/shared/src/index.ts
new file mode 100644
index 0000000..0a8bd05
--- /dev/null
+++ b/packages/shared/src/index.ts
@@ -0,0 +1,4 @@
+export type SystemRole = "USER" | "SYS_ADMIN";
+export type GroupRole = "MEMBER" | "GROUP_ADMIN";
+export type EntryNecessity = "NECESSARY" | "BOTH" | "UNNECESSARY";
+export type MoneyCents = number;
diff --git a/scripts/dev-rebuild.sh b/scripts/dev-rebuild.sh
new file mode 100644
index 0000000..f74c144
--- /dev/null
+++ b/scripts/dev-rebuild.sh
@@ -0,0 +1,6 @@
+#!/bin/bash
+echo "Stopping containers and removing volumes..."
+docker compose -f docker-compose.dev.yml down -v
+
+echo "Rebuilding and starting containers..."
+docker compose -f docker-compose.dev.yml up --build