Debounce search filter updates to improve input handling and performance

Add validateProfileFields for LLM profile field normalization and filtering
Add type="button" to theme toggle for accessibility compliance
2026-04-04 14:53:33 -04:00 · 2026-04-04 16:27:41 +02:00 · 2026-04-04 16:10:17 +02:00 · 2026-04-04 14:37:55 +02:00 · 2026-04-04 14:34:50 +02:00 · 2026-04-04 14:21:40 +02:00
899 changed files with 61012 additions and 21322 deletions
--- a/.aiassistant/rules/guidelines.md
+++ b/.aiassistant/rules/guidelines.md
@@ -0,0 +1,300 @@
 ---
 apply: by model decision
 ---
 ---
 trigger: always_on
 description:
 globs:
 ---
 ## Project Structure
 Compass (compassmeet.com) is a transparent dating platform for forming deep, authentic 1-on-1 connections.
 - **Next.js React frontend** `/web`
  - Pages, components, hooks, lib
 - **Express Node API server** `/backend/api`
 - **Shared backend utilities** `/backend/shared`
 - **Email functions** `/backend/email`
 - **Database schema** `/backend/supabase`
  - Supabase-generated types in `/backend/supabase/schema.ts`
 - **Files shared between frontend and backend** `/common`
  - Types (User, Profile, etc.) and utilities
  - Try not to add package dependencies to common
 - **Android app** `/android`
 ## Deployment
 - Both dev and prod environments
 - Backend on GCP (Google Cloud Platform)
 - Frontend on Vercel
 - Database on Supabase (PostgreSQL)
 - Firebase for authentication and storage
 ## Code Guidelines
 ### Component Example
 ```tsx
 import clsx from 'clsx'
 import Link from 'next/link'
 import {User} from 'common/user'
 import {ProfileRow} from 'common/profiles/profile'
 import {useUser} from 'web/hooks/use-user'
 import {useT} from 'web/lib/locale'
 interface ProfileCardProps {
  user: User
  profile: ProfileRow
 }
 export function ProfileCard({user, profile}: ProfileCardProps) {
  const t = useT()
  return (
    <div className={clsx('bg-canvas-50 rounded-lg p-4')}>
      <img src={user.avatarUrl} alt={user.name} />
      <h3>{user.name}</h3>
      <p>{profile.bio}</p>
    </div>
  )
 }
 ```
 We prefer many smaller components that each represent one logical unit, rather than one large component.
 Export the main component at the top of the file. Name the component the same as the file (e.g., `profile-card.tsx` →
 `ProfileCard`).
 ### API Calls
 **Server-side (getStaticProps):**
 ```typescript
 import {api} from 'web/lib/api'
 export async function getStaticProps() {
  const profiles = await api('get-profiles', {})
  return {
    props: {profiles},
    revalidate: 30 * 60, // 30 minutes
  }
 }
 ```
 **Client-side - use hooks:**
 ```typescript
 import {useAPIGetter} from 'web/hooks/use-api-getter'
 function ProfileList() {
    const {data, refresh} = useAPIGetter('get-profiles', {})
    if (!data) return <Loading / >
    return (
        <div>
            {
                data.profiles.map((profile) => (
                    <ProfileCard key = {profile.id} user = {profile.user} profile = {profile}
    />
 ))
 }
    <button onClick = {refresh} > Refresh < /button>
        < /div>
 )
 }
 ```
 ### Database Access
 **Backend (pg-promise):**
 ```typescript
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const pg = createSupabaseDirectClient()
 const user = await pg.oneOrNone<User>('SELECT * FROM users WHERE username = $1', [username])
 ```
 **Frontend (Supabase client):**
 ```typescript
 import {db} from 'web/lib/supabase/db'
 const {data} = await db.from('profiles').select('*').eq('user_id', userId)
 ```
 ### Translation
 ```typescript
 import {useT} from 'web/lib/locale'
 function MyComponent() {
    const t = useT()
    return <h1>{t('welcome', 'Welcome to Compass'
 )
 }
    </h1>
 }
 ```
 Translation files are in `common/messages/` (en.json, fr.json, de.json).
 ### Backend Endpoints
 1. Define schema in `common/src/api/schema.ts`:
 ```typescript
 'get-user-and-profile'
 :
 {
    method: 'GET',
        authed
 :
    false,
        rateLimited
 :
    true,
        props
 :
    z.object({
        username: z.string().min(1),
    }),
        returns
 :
    {
    }
    as
    {
        user: User;
        profile: ProfileRow | null
    }
 ,
    summary: 'Get user and profile data by username',
        tag
 :
    'Users',
 }
 ,
 ```
 2. Create handler in `backend/api/src/`:
 ```typescript
 import {APIErrors, APIHandler} from './helpers/endpoint'
 export const getUserAndProfile: APIHandler<'get-user-and-profile'> = async ({username}, _auth) => {
  const user = await getUserByUsername(username)
  if (!user) {
    throw APIErrors.notFound('User not found')
  }
  return {user, profile}
 }
 ```
 3. Register in `backend/api/src/app.ts`:
 ```typescript
 import {getUserAndProfile} from './get-user-and-profile'
 const handlers = {
  'get-user-and-profile': getUserAndProfile,
  // ...
 }
 ```
 ### Profile Options (Interests, Causes, Work)
 Options are stored in separate tables with many-to-many relationships:
 - `interests`, `causes`, `work` - option values
 - `profile_interests`, `profile_causes`, `profile_work` - junction tables
 Fetch in parallel:
 ```typescript
 const [interestsRes, causesRes, workRes] = await Promise.all([
  db.from('profile_interests').select('interests(name, id)').eq('profile_id', profile.id),
  db.from('profile_causes').select('causes(name, id)').eq('profile_id', profile.id),
  db.from('profile_work').select('work(name, id)').eq('profile_id', profile.id),
 ])
 ```
 ## Testing
 ### Running Tests
 ```bash
 # Jest (unit + integration)
 yarn test
 # Playwright (E2E)
 yarn test:e2e
 ```
 ### Test Structure
 - Unit tests: `*.unit.test.ts` in `tests/unit/`
 - Integration tests: `*.integration.test.ts` in `tests/integration/`
 - E2E tests: `*.e2e.spec.ts` in `tests/e2e/`
 ### Mocking Example
 ```typescript
 jest.mock('shared/supabase/init')
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const mockPg = {
  oneOrNone: jest.fn(),
  tx: jest.fn(async (cb) => cb(mockTx)),
 }
 ;(createSupabaseDirectClient as jest.Mock).mockReturnValue(mockPg)
 ```
 ## Important Patterns
 ### User Registration
 - Create user + profile + options in single database transaction
 - Return full profile data from creation API
 - Don't use sleep() hacks - rely on transactional integrity
 ### API Errors
 ```typescript
 import {APIErrors} from './helpers/endpoint'
 throw APIErrors.notFound('User not found')
 throw APIErrors.badRequest('Invalid input', {field: 'email'})
 ```
 ### Logging
 - Use `debug()` from `common/logger` for development
 - Use `log` from `shared/utils` for production
 ## Things to Avoid
 - Don't use string concatenation for SQL queries
 - Don't add sleep() delays for "eventual consistency"
 - Don't create separate API calls when data can be batched in one transaction
 - Don't use console.log - use `debug()` or `log()`
 ## Key Dependencies
 - Node.js 20+
 - React 19
 - Next.js 16
 - Supabase (PostgreSQL)
 - Firebase (Auth, Storage)
 - Tailwind CSS
 - Jest (testing)
 - Playwright (E2E testing)
--- a/.coderabbit.yaml
+++ b/.coderabbit.yaml
@@ -0,0 +1,120 @@
 # Enables IDE autocompletion for this config file
 # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json
 # Language for CodeRabbit's review comments
 language: en
 # Enable experimental features (currently not using any specific early_access features)
 early_access: true
 chat:
  # CodeRabbit will automatically respond to @coderabbitai mentions in PR comments
  auto_reply: true
 reviews:
  auto_review:
    # Automatically trigger reviews when PRs are opened or updated
    enabled: true
    # Skip auto-review if PR title contains these keywords
    ignore_title_keywords:
      - "WIP"
    # Don't auto-review draft PRs
    drafts: false
    # Only auto-review PRs targeting these branches
    base_branches:
      - main
      - develop
  # Include a high-level summary at the start of each review
  high_level_summary: true
  # Generate sequence diagrams for complex code flows
  sequence_diagrams: true
  # Don't include poems in reviews (fun feature, but keeping it professional)
  poem: false
  # Show review completion status
  review_status: true
  # Keep the walkthrough section expanded by default
  collapse_walkthrough: false
  # Include summary of all changed files
  changed_files_summary: true
  # Don't automatically request changes on the PR (just leave comments)
  request_changes_workflow: false
  # Pre-merge checks to enforce before merging PRs
  pre_merge_checks:
    description:
      # Validate that PR has a proper description
      mode: warning # Options: off, warning, error
    docstrings:
      # Disable docstring coverage checks (let's assume we don't need them)
      mode: off
  # Exclude these paths from reviews (build artifacts and dependencies)
  path_filters:
    - "!**/node_modules/**" # npm dependencies
    - "!**/android/**" # Native Android build files
    - "!**/ios/**" # Native iOS build files
    - "!**/.expo/**" # Expo build cache
    - "!**/.expo-shared/**" # Expo shared config
    - "!**/dist/**" # Build output
  # Custom review instructions for specific file patterns
  path_instructions:
    # TypeScript/JavaScript files - main app code
    - path: "**/*.{ts,tsx,js,jsx}"
      instructions: |
        General practices:
        - Summarize the changes clearly. 
        - Format the summary with bullet points.
        - Highlight any potential breaking changes for users.
        - We use early returns to avoid deep nesting.
        - Ensure all public functions have docstrings.
        - Flag any hardcoded strings; they should be in the constants file.
        - Check for edge cases like null values or empty arrays.
        - Suggest performance optimizations where appropriate.
        Mobile best practices:
        - Proper use of hooks (useRouter, useFonts, useAssets)
        - Accessibility: touch targets min 44x44, screen reader support
        - Safe area handling and platform-specific code (iOS vs Android)
        - Memory leaks in useEffect and event listeners
        Performance:
        - Use FlatList/SectionList for lists (never ScrollView with .map)
        - React.memo, useMemo, useCallback where appropriate
        TypeScript:
        - Avoid 'any', use explicit types
        - Prefer 'import type' for type imports
        Security:
        - No exposed API keys or sensitive data
        - Use expo-secure-store for sensitive storage
        - Validate deep linking configurations
        Internationalization:
        - User-visible strings should be externalized to JSON resource files in common/messages via
          ```
          const t = useT()
          const message = t('key', 'english string')
          ```
    - path: "tests/e2e/**/*.ts"
      instructions: |
        Playwright E2E test guidelines for this repo:
        - Page objects live in `tests/e2e/web/pages/`. Each class wraps one page/route, holds only `private readonly` Locators, and exposes action methods.
        - All tests must use the `app` fixture (type `App`) from `tests/e2e/web/fixtures/base.ts`. Never instantiate page objects directly in a test.
        - Cross-page flows (actions spanning multiple pages) belong as methods on the `App` class, not as standalone helper functions.
        - Action methods in page objects must assert `expect(locator).toBeVisible()` before interacting.
        - Never use `page.waitForTimeout()`. Use Playwright's built-in auto-waiting or `waitForURL` / `waitForSelector`.
        - No hardcoded credentials in spec files; use `SPEC_CONFIG.ts` or account fixtures.
        - Test account cleanup must be done in fixture teardown (after `await use(...)`), not in `afterEach` hooks.
        - File and class names must use PascalCase (e.g., `CompatibilityPage.ts` / `class CompatibilityPage`).
        - No DB or Firebase calls inside page object classes; those belong in `tests/e2e/utils/`.
        - Flag any new page object not yet registered in `App`.
--- a/.coderabbitignore
+++ b/.coderabbitignore
@@ -0,0 +1,5 @@
 **/*.md
 package-lock.json
 yarn.lock
 dist/**
 test/mocks/**
--- a/.env.example
+++ b/.env.example
@@ -1,9 +1,3 @@
 # use firebase emulator for running e2e tests
 NEXT_PUBLIC_FIREBASE_EMULATOR=false
 FIREBASE_AUTH_EMULATOR_HOST=127.0.0.1:9099
 FIREBASE_STORAGE_EMULATOR_HOST=127.0.0.1:9199
 # You already have access to basic local functionality (UI, authentication, database read access).
 # openssl enc -aes-256-cbc -salt -pbkdf2 -iter 100000 -in backend/shared/src/googleApplicationCredentials-dev.json -out secrets/googleApplicationCredentials-dev.json.enc
--- a/.env.test
+++ b/.env.test
@@ -0,0 +1,19 @@
 # Database
 #DATABASE_URL=postgresql://test_user:test_password@localhost:5433/test_db
 #DIRECT_URL=postgresql://test_user:test_password@localhost:5433/test_db
 # Firebase
 FIREBASE_AUTH_EMULATOR_HOST=127.0.0.1:9099
 FIREBASE_STORAGE_EMULATOR_HOST=127.0.0.1:9199
 FIRESTORE_EMULATOR_HOST=127.0.0.1:8080
 # Next.js
 NEXT_PUBLIC_API_URL=http://localhost:8088
 NEXT_PUBLIC_FIREBASE_ENV=TEST
 NEXT_PUBLIC_FIREBASE_EMULATOR=true
 # API
 NODE_ENV=test
 PORT=8088
 ENVIRONMENT=DEV
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -1,38 +0,0 @@
 ---
 name: Bug report
 about: Create a report to help us improve
 title: ''
 labels: ''
 assignees: ''
 ---
 **Describe the bug**
 A clear and concise description of what the bug is.
 **To Reproduce**
 Steps to reproduce the behavior:
 1. Go to '...'
 2. Click on '....'
 3. Scroll down to '....'
 4. See error
 **Expected behavior**
 A clear and concise description of what you expected to happen.
 **Screenshots**
 If applicable, add screenshots to help explain your problem.
 **Desktop (please complete the following information):**
 - OS: [e.g. iOS]
 - Browser [e.g. chrome, safari]
 - Version [e.g. 22]
 **Smartphone (please complete the following information):**
 - Device: [e.g. iPhone6]
 - OS: [e.g. iOS8.1]
 - Browser [e.g. stock browser, safari]
 - Version [e.g. 22]
 **Additional context**
 Add any other context about the problem here.
--- a/.github/ISSUE_TEMPLATE/bug_report.yml
+++ b/.github/ISSUE_TEMPLATE/bug_report.yml
@@ -0,0 +1,63 @@
 name: Bug report
 description: Create a report to help us improve
 body:
  - type: textarea
    attributes:
      label: Bug description
      description: |
        A clear and concise description of what the bug is.
    validations:
      required: true
  - type: textarea
    attributes:
      label: Steps to reproduce
      description: |
        Steps to reproduce the behavior:
        1. Go to '...'
        2. Click on '...'
        3. Scroll down to '...'
        4. See error
    validations:
      required: true
  - type: textarea
    attributes:
      label: Expected behavior
      description: |
        A clear and concise description of what you expected to happen.
    validations:
      required: true
  - type: textarea
    attributes:
      label: Screenshots
      description: |
        If applicable, add screenshots to help explain your problem.
    validations:
      required: false
  - type: textarea
    attributes:
      label: Info
      description: |
        - Browser: [e.g. chrome, safari]
        - Device (if mobile): [e.g. iPhone6]
        - Build info
      placeholder: |
        Build info from `Settings` -> `About`
    validations:
      required: true
  - type: textarea
    attributes:
      label: Additional context
      description: |
        Add any other context about the problem here.
    validations:
      required: false
  - type: markdown
    attributes:
      value: |
        Thanks for contributing!
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -1,20 +0,0 @@
 ---
 name: Feature request
 about: Suggest an idea for this project
 title: ''
 labels: ''
 assignees: ''
 ---
 **Is your feature request related to a problem? Please describe.**
 A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
 **Describe the solution you'd like**
 A clear and concise description of what you want to happen.
 **Describe alternatives you've considered**
 A clear and concise description of any alternative solutions or features you've considered.
 **Additional context**
 Add any other context or screenshots about the feature request here.
--- a/.github/ISSUE_TEMPLATE/feature_request.yml
+++ b/.github/ISSUE_TEMPLATE/feature_request.yml
@@ -0,0 +1,40 @@
 name: Feature request
 description: Suggest an idea or improvement for this project
 body:
  - type: textarea
    attributes:
      label: Problem
      description: |
        A clear and concise description of what the problem is.
      placeholder: I'm always frustrated when [...]
    validations:
      required: true
  - type: textarea
    attributes:
      label: Solution
      description: |
        A clear and concise description of what you want to happen.
    validations:
      required: true
  - type: textarea
    attributes:
      label: Alternatives
      description: |
        A clear and concise description of any alternative solutions or features you've considered.
    validations:
      required: false
  - type: textarea
    attributes:
      label: Additional context
      description: |
        Add any other context or screenshots about the feature request here.
    validations:
      required: false
  - type: markdown
    attributes:
      value: |
        Thanks for contributing!
--- a/.github/ISSUE_TEMPLATE/other.yml
+++ b/.github/ISSUE_TEMPLATE/other.yml
@@ -1,15 +1,25 @@
 name: Other
-description: Any other question or issue
+description: Use this only if no other issue type fits.
 body:
- type: textarea
+  - type: textarea
-  attributes:
+    attributes:
-    label: Issue
+      label: Issue
-    description: >
+      description: |
-      A clear and concise description of the question or issue
+        A clear and concise description of the question or issue
-  validations:
+    validations:
-    required: true
+      required: true
- type: markdown
+  - type: textarea
-  attributes:
+    attributes:
-    value: >
+      label: Info
-      Thanks for contributing!
+      description: |
        - Browser: [e.g. chrome, safari]
        - Device (if mobile): [e.g. iPhone6]
        - Build info
      placeholder: |
        Build info from `Settings` -> `About`
    validations:
      required: false
  - type: markdown
    attributes:
      value: |
        Thanks for contributing!
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@@ -4,5 +4,5 @@
 - [ ] Tests added and passed if fixing a bug or adding a new feature.
 ### Description
 <!-- Describe your changes in detail -->
 <!-- Describe your changes in detail -->
--- a/.github/actions/setup/action.yml
+++ b/.github/actions/setup/action.yml
@@ -0,0 +1,33 @@
 name: Setup
 description: Checkout, cache and install dependencies
 runs:
  using: composite
  steps:
    - name: Cache node_modules
      id: cache-node-modules
      uses: actions/cache@v4
      with:
        path: |
          node_modules
          web/node_modules
          backend/api/node_modules
          backend/shared/node_modules
          backend/email/node_modules
          common/node_modules
        key: node-modules-${{ hashFiles('**/yarn.lock') }}
    - name: Setup Node.js
      uses: actions/setup-node@v4
      with:
        node-version: '22'
    - name: Install dependencies
      if: steps.cache-node-modules.outputs.cache-hit != 'true'
      run: yarn install --frozen-lockfile
      shell: bash
    - name: Post-install
      if: steps.cache-node-modules.outputs.cache-hit == 'true'
      run: yarn postinstall
      shell: bash
--- a/.github/copilot-instructions.md
+++ b/.github/copilot-instructions.md
@@ -0,0 +1,271 @@
 ---
 trigger: always_on
 description:
 globs:
 ---
 ## Project Structure
 Compass (compassmeet.com) is a transparent dating platform for forming deep, authentic 1-on-1 connections.
 - **Next.js React frontend** `/web`
  - Pages, components, hooks, lib
 - **Express Node API server** `/backend/api`
 - **Shared backend utilities** `/backend/shared`
 - **Email functions** `/backend/email`
 - **Database schema** `/backend/supabase`
  - Supabase-generated types in `/backend/supabase/schema.ts`
 - **Files shared between frontend and backend** `/common`
  - Types (User, Profile, etc.) and utilities
  - Try not to add package dependencies to common
 - **Android app** `/android`
 ## Deployment
 - Both dev and prod environments
 - Backend on GCP (Google Cloud Platform)
 - Frontend on Vercel
 - Database on Supabase (PostgreSQL)
 - Firebase for authentication and storage
 ## Code Guidelines
 ### Component Example
 ```tsx
 import clsx from 'clsx'
 import Link from 'next/link'
 import {User} from 'common/user'
 import {ProfileRow} from 'common/profiles/profile'
 import {useUser} from 'web/hooks/use-user'
 import {useT} from 'web/lib/locale'
 interface ProfileCardProps {
  user: User
  profile: ProfileRow
 }
 export function ProfileCard({user, profile}: ProfileCardProps) {
  const t = useT()
  return (
    <div className={clsx('bg-canvas-50 rounded-lg p-4')}>
      <img src={user.avatarUrl} alt={user.name} />
      <h3>{user.name}</h3>
      <p>{profile.bio}</p>
    </div>
  )
 }
 ```
 We prefer many smaller components that each represent one logical unit, rather than one large component.
 Export the main component at the top of the file. Name the component the same as the file (e.g., `profile-card.tsx` →
 `ProfileCard`).
 ### API Calls
 **Server-side (getStaticProps):**
 ```typescript
 import {api} from 'web/lib/api'
 export async function getStaticProps() {
  const profiles = await api('get-profiles', {})
  return {
    props: {profiles},
    revalidate: 30 * 60, // 30 minutes
  }
 }
 ```
 **Client-side - use hooks:**
 ```typescript
 import {useAPIGetter} from 'web/hooks/use-api-getter'
 function ProfileList() {
    const {data, refresh} = useAPIGetter('get-profiles', {})
    if (!data) return <CompassLoadingIndicator / >
    return (
        <div>
            {
                data.profiles.map((profile) => (
                    <ProfileCard key = {profile.id} user = {profile.user} profile = {profile}
    />
 ))
 }
    <button onClick = {refresh} > Refresh < /button>
        < /div>
 )
 }
 ```
 ### Database Access
 **Backend (pg-promise):**
 ```typescript
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const pg = createSupabaseDirectClient()
 const user = await pg.oneOrNone<User>('SELECT * FROM users WHERE username = $1', [username])
 ```
 **Frontend (Supabase client):**
 ```typescript
 import {db} from 'web/lib/supabase/db'
 const {data} = await db.from('profiles').select('*').eq('user_id', userId)
 ```
 ### Translation
 ```typescript
 import {useT} from 'web/lib/locale'
 function MyComponent() {
  const t = useT()
  return <h1>{t('welcome', 'Welcome to Compass')}</h1>
 }
 ```
 Translation files are in `common/messages/` (en.json, fr.json, de.json).
 ### Backend Endpoints
 1. Define schema in `common/src/api/schema.ts`:
 ```typescript
 'get-user-and-profile': {
  method: 'GET',
  authed: false,
  rateLimited: true,
  props: z.object({
    username: z.string().min(1),
  }),
  returns: {} as {user: User; profile: ProfileRow | null},
  summary: 'Get user and profile data by username',
  tag: 'Users',
 },
 ```
 2. Create handler in `backend/api/src/`:
 ```typescript
 import {APIError, APIHandler} from './helpers/endpoint'
 export const getUserAndProfile: APIHandler<'get-user-and-profile'> = async ({username}, _auth) => {
  const user = await getUserByUsername(username)
  if (!user) {
    throw APIErrors.notFound('User not found')
  }
  return {user, profile}
 }
 ```
 3. Register in `backend/api/src/app.ts`:
 ```typescript
 import {getUserAndProfile} from './get-user-and-profile'
 const handlers = {
  'get-user-and-profile': getUserAndProfile,
  // ...
 }
 ```
 ### Profile Options (Interests, Causes, Work)
 Options are stored in separate tables with many-to-many relationships:
 - `interests`, `causes`, `work` - option values
 - `profile_interests`, `profile_causes`, `profile_work` - junction tables
 Fetch in parallel:
 ```typescript
 const [interestsRes, causesRes, workRes] = await Promise.all([
  db.from('profile_interests').select('interests(name, id)').eq('profile_id', profile.id),
  db.from('profile_causes').select('causes(name, id)').eq('profile_id', profile.id),
  db.from('profile_work').select('work(name, id)').eq('profile_id', profile.id),
 ])
 ```
 ## Testing
 ### Running Tests
 ```bash
 # Jest (unit + integration)
 yarn test
 # Playwright (E2E)
 yarn test:e2e
 ```
 ### Test Structure
 - Unit tests: `*.unit.test.ts` in `tests/unit/`
 - Integration tests: `*.integration.test.ts` in `tests/integration/`
 - E2E tests: `*.e2e.spec.ts` in `tests/e2e/`
 ### Mocking Example
 ```typescript
 jest.mock('shared/supabase/init')
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const mockPg = {
  oneOrNone: jest.fn(),
  tx: jest.fn(async (cb) => cb(mockTx)),
 }
 ;(createSupabaseDirectClient as jest.Mock).mockReturnValue(mockPg)
 ```
 ## Important Patterns
 ### User Registration
 - Create user + profile + options in single database transaction
 - Return full profile data from creation API
 - Don't use sleep() hacks - rely on transactional integrity
 ### API Errors
 ```typescript
 import {APIError} from './helpers/endpoint'
 throw APIErrors.notFound('User not found')
 throw APIErrors.badRequest('Invalid input', {field: 'email'})
 ```
 ### Logging
 - Use `debug()` from `common/logger` for development
 - Use `log` from `shared/utils` for production
 ## Things to Avoid
 - Don't use string concatenation for SQL queries
 - Don't add sleep() delays for "eventual consistency"
 - Don't create separate API calls when data can be batched in one transaction
 - Don't use console.log - use `debug()` or `log()`
 ## Key Dependencies
 - Node.js 20+
 - React 19
 - Next.js 16
 - Supabase (PostgreSQL)
 - Firebase (Auth, Storage)
 - Tailwind CSS
 - Jest (testing)
 - Playwright (E2E testing)
--- a/.github/workflows/cd-android-live-update.yml
+++ b/.github/workflows/cd-android-live-update.yml
@@ -0,0 +1,67 @@
 name: CD Android Live Update
 on:
  push:
    branches: [main, master]
    paths:
      - 'android/capawesome.json'
      - '.github/workflows/cd-android-live-update.yml'
 jobs:
  check-version:
    name: Check Version
    runs-on: ubuntu-latest
    outputs:
      changed: ${{ steps.check.outputs.changed }}
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          fetch-depth: 2
      - name: Read current version
        id: current
        run: |
          current=$(jq -r '.version' android/capawesome.json)
          echo "version=$current" >> $GITHUB_OUTPUT
      - name: Read previous version
        id: previous
        run: |
          if git show HEAD^:android/capawesome.json >/dev/null 2>&1; then
            previous=$(git show HEAD^:android/capawesome.json | jq -r '.version')
          else
            previous="none"
          fi
          echo "version=$previous" >> $GITHUB_OUTPUT
      - name: Compare versions
        id: check
        run: |
          echo "current=${{ steps.current.outputs.version }}"
          echo "previous=${{ steps.previous.outputs.version }}"
          if [ "${{ steps.current.outputs.version }}" = "${{ steps.previous.outputs.version }}" ]; then
            echo "Version unchanged. Skipping deploy."
            echo "changed=false" >> $GITHUB_OUTPUT
          else
            echo "changed=true" >> $GITHUB_OUTPUT
          fi
  deploy:
    name: Deploy
    runs-on: ubuntu-latest
    needs: check-version
    if: needs.check-version.outputs.changed == 'true'
    steps:
      - uses: actions/checkout@v4
      - uses: ./.github/actions/setup
      - name: Deploy Live Update
        env:
          NEXT_PUBLIC_FIREBASE_API_KEY: ${{ secrets.NEXT_PUBLIC_FIREBASE_API_KEY }}
          NEXT_PUBLIC_SUPABASE_KEY: ${{ secrets.NEXT_PUBLIC_SUPABASE_KEY }}
          CAPAWESOME_TOKEN: ${{ secrets.CAPAWESOME_TOKEN }}
          commitRef: ${{ github.head_ref || github.ref_name }}
          commitSha: ${{ github.sha }}
        run: yarn android-live-update
--- a/.github/workflows/cd-android.yml
+++ b/.github/workflows/cd-android.yml
@@ -0,0 +1,88 @@
 name: Android Release
 on:
  push:
    branches:
      - main
    paths:
      - 'android/app/build.gradle'
      - '.github/workflows/cd-android.yml'
 jobs:
  check-version:
    runs-on: ubuntu-latest
    outputs:
      should_build: ${{ steps.version_check.outputs.should_build }}
    steps:
      - name: Checkout repository
        uses: actions/checkout@v4
        with:
          fetch-depth: 2
      - name: Get previous versionCode
        id: prev_version
        run: |
          git checkout HEAD^
          PREV=$(grep versionCode android/app/build.gradle | awk '{print $2}')
          echo "prev_version=$PREV" >> $GITHUB_OUTPUT
          git checkout -
      - name: Get current versionCode
        id: curr_version
        run: |
          CURR=$(grep versionCode android/app/build.gradle | awk '{print $2}')
          echo "curr_version=$CURR" >> $GITHUB_OUTPUT
      - name: Compare versionCodes
        id: version_check
        run: |
          if [ "${{ steps.curr_version.outputs.curr_version }}" -gt "${{ steps.prev_version.outputs.prev_version }}" ]; then
            echo "should_build=true" >> $GITHUB_OUTPUT
          else
            echo "versionCode not increased. Skipping build."
            echo "should_build=false" >> $GITHUB_OUTPUT
          fi
  build-and-release:
    runs-on: ubuntu-latest
    needs: check-version
    if: needs.check-version.outputs.should_build == 'true'
    steps:
      - uses: actions/checkout@v4
      - uses: ./.github/actions/setup
      - name: Set up JDK
        uses: actions/setup-java@v4
        with:
          distribution: temurin
          java-version: 21
          cache: gradle
      - name: Compile Web App into Android assets
        env:
          NEXT_PUBLIC_FIREBASE_API_KEY: ${{ secrets.NEXT_PUBLIC_FIREBASE_API_KEY }}
          NEXT_PUBLIC_SUPABASE_KEY: ${{ secrets.NEXT_PUBLIC_SUPABASE_KEY }}
        run: yarn build-sync-android
      - name: Build AAB
        run: |
          cd android
          echo "${{ secrets.ANDROID_GOOGLE_SERVICES_JSON }}" | base64 -d > app/google-services.json
          echo "${{ secrets.ANDROID_KEYSTORE_BASE64 }}" | base64 -d > release.keystore
          cp release.keystore app/release.keystore
          chmod +x gradlew
          ./gradlew bundleRelease \
            -Pandroid.injected.signing.store.file=release.keystore \
            -Pandroid.injected.signing.store.password=${{ secrets.ANDROID_KEYSTORE_PASSWORD }} \
            -Pandroid.injected.signing.key.alias=compass \
            -Pandroid.injected.signing.key.password=${{ secrets.ANDROID_KEY_PASSWORD }}
      - name: Upload to Play Store (Internal Track)
        uses: r0adkll/upload-google-play@v1
        with:
          serviceAccountJsonPlainText: ${{ secrets.PLAY_SERVICE_ACCOUNT_JSON }}
          packageName: com.compassconnections.app
          releaseFiles: android/app/build/outputs/bundle/release/app-release.aab
          track: internal
--- a/.github/workflows/cd-api.yml
+++ b/.github/workflows/cd-api.yml
@@ -1,24 +1,23 @@
-name: CD API
+name: API Release
 on:
  push:
-    branches: [ main, master ]
+    branches: [main, master]
    paths:
-      - "backend/api/package.json"
+      - 'backend/api/package.json'
-      - ".github/workflows/cd-api.yml"
+      - '.github/workflows/cd-api.yml'
 jobs:
-  deploy:
+  check-version:
-    name: Deploy
+    name: Check Version
    runs-on: ubuntu-latest
    outputs:
      changed: ${{ steps.check.outputs.changed }}
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
-          fetch-depth: 0    # we need full history for git log
+          fetch-depth: 2
      - name: Install jq
        run: sudo apt-get install -y jq
      - name: Read current version
        id: current
@@ -29,7 +28,6 @@ jobs:
      - name: Read previous version
        id: previous
        run: |
          # Get previous commit’s package.json (if it existed)
          if git show HEAD^:backend/api/package.json >/dev/null 2>&1; then
            previous=$(git show HEAD^:backend/api/package.json | jq -r '.version')
          else
@@ -37,60 +35,53 @@ jobs:
          fi
          echo "version=$previous" >> $GITHUB_OUTPUT
-      - name: Check version change
+      - name: Compare versions
        id: check
        run: |
          echo "current=${{ steps.current.outputs.version }}"
          echo "previous=${{ steps.previous.outputs.version }}"
          if [ "${{ steps.current.outputs.version }}" = "${{ steps.previous.outputs.version }}" ]; then
            echo "Version unchanged. Skipping deploy."
            echo "changed=false" >> $GITHUB_OUTPUT
          else
            echo "changed=true" >> $GITHUB_OUTPUT
          fi
-      - name: Setup Node.js
+  deploy:
-        if: steps.check.outputs.changed == 'true'
+    name: Deploy
-        uses: actions/setup-node@v4
+    runs-on: ubuntu-latest
-        with:
+    needs: check-version
-          node-version: '22'
+    if: needs.check-version.outputs.changed == 'true'
-      - name: Install dependencies
+    steps:
-        if: steps.check.outputs.changed == 'true'
+      - uses: actions/checkout@v4
-        run: yarn install
+      - uses: ./.github/actions/setup
      - name: Authenticate to GCP
        if: steps.check.outputs.changed == 'true'
        uses: google-github-actions/auth@v2
        with:
          credentials_json: ${{ secrets.GCP_SA_KEY }}
      - name: Install gcloud CLI
        if: steps.check.outputs.changed == 'true'
        uses: google-github-actions/setup-gcloud@v2
        with:
          project_id: compass-130ba
      - name: Configure Docker for Artifact Registry
-        if: steps.check.outputs.changed == 'true'
+        run: gcloud auth configure-docker us-west1-docker.pkg.dev --quiet
        run: |
          gcloud auth configure-docker us-west1-docker.pkg.dev --quiet
      - name: Install Tofu (Terraform)
        if: steps.check.outputs.changed == 'true'
        run: |
          sudo apt-get update
          sudo apt-get install -y wget unzip
          LATEST=https://github.com/opentofu/opentofu/releases/download/v1.10.5/tofu_1.10.5_linux_amd64.zip
          curl -LO "$LATEST"
          unzip -o tofu_*_linux_amd64.zip
          sudo mv tofu /usr/local/bin/
          rm tofu_*_linux_amd64.zip
          echo "OpenTofu version: $(tofu version)"
-          cd backend/api || exit 1
+          cd backend/api
          tofu init
      - name: Run deploy script
        if: steps.check.outputs.changed == 'true'
        run: |
          chmod +x backend/api/deploy-api.sh
          backend/api/deploy-api.sh
--- a/.github/workflows/cd.yml
+++ b/.github/workflows/cd.yml
@@ -1,14 +1,13 @@
-name: CD
+name: GitHub Release
 # Must select "Read and write permissions" in GitHub → Repo → Settings → Actions → General → Workflow permissions
 on:
  push:
-    branches: [ main, master ]
+    branches: [main, master]
    paths:
-      - "package.json"
+      - 'package.json'
-      - ".github/workflows/cd.yml"
+      - '.github/workflows/cd.yml'
 jobs:
  release:
@@ -18,7 +17,7 @@ jobs:
      - name: Checkout repo
        uses: actions/checkout@master
        with:
-          fetch-depth: 0  # To fetch all history for tags
+          fetch-depth: 0 # To fetch all history for tags
      - name: Setup Node.js
        uses: actions/setup-node@v4
@@ -32,4 +31,4 @@ jobs:
          git config --global user.name "github-actions[bot]"
          git config --global user.email "github-actions[bot]@users.noreply.github.com"
          git remote set-url origin https://x-access-token:${{ secrets.GITHUB_TOKEN }}@github.com/${{ github.repository }}
-          ./scripts/release.sh
+          ./scripts/release.sh
--- a/.github/workflows/ci-e2e.yml
+++ b/.github/workflows/ci-e2e.yml
@@ -0,0 +1,68 @@
 name: E2E Tests
 on:
  push:
    branches: [main]
  pull_request:
    branches: [main]
 jobs:
  e2e:
    name: E2E Tests
    runs-on: ubuntu-latest
    timeout-minutes: 15
    steps:
      - uses: actions/checkout@v4
      - uses: ./.github/actions/setup
      - name: Cache Firebase emulators
        uses: actions/cache@v4
        with:
          path: ~/.cache/firebase/emulators
          key: firebase-emulators-${{ hashFiles('firebase.json') }}
          restore-keys: firebase-emulators-
      - name: Cache Playwright browsers
        uses: actions/cache@v4
        with:
          path: ~/.cache/ms-playwright
          key: playwright-${{ hashFiles('package.json') }}
      - name: Install Java (for Firebase emulators)
        uses: actions/setup-java@v4
        with:
          distribution: 'temurin'
          java-version: '21' # Required for firebase-tools@15+
      - name: Install Playwright browsers
        run: npx playwright install chromium --with-deps
      # Docker load from cache is actually slower than pulling the images every time with supabase start
      - name: Start Supabase
        run: ./scripts/supabase_start.sh
      - name: Run E2E tests
        env:
          SKIP_DB_CLEANUP: true # Don't try to stop Docker in CI
          FIREBASE_TOKEN: 'dummy' # Suppresses auth warning
        # or
        run: |
          yarn test:e2e
      - name: Upload Playwright report
        if: always()
        uses: actions/upload-artifact@v4
        with:
          name: playwright-report
          path: tests/reports/playwright-report/
          retention-days: 7
      - name: Upload test results
        if: always()
        uses: actions/upload-artifact@v4
        with:
          name: test-results
          path: test-results/
          retention-days: 7
          if-no-files-found: ignore
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -2,64 +2,44 @@ name: CI
 on:
  push:
-    branches:
+    branches: [main]
      - main
  pull_request:
-    branches:
+    branches: [main]
      - main
 jobs:
-  ci:
+  lint:
-    name: Tests
+    name: Lint & Typecheck
    runs-on: ubuntu-latest
    timeout-minutes: 5
    steps:
-      - name: Checkout repository
+      - uses: actions/checkout@v4
-        uses: actions/checkout@v4
+      - uses: ./.github/actions/setup
      - name: Setup Node.js
        uses: actions/setup-node@v4
        with:
          node-version: '22'
      - name: Install dependencies
        run: yarn install
      - name: Type check
        run: echo skipping #npx tsc --noEmit
      - name: Lint
-        run: npm run lint
+        run: yarn lint
      - name: Typecheck
        run: yarn typecheck
  test:
    name: Jest Tests
    runs-on: ubuntu-latest
    timeout-minutes: 5
    steps:
      - uses: actions/checkout@v4
      - uses: ./.github/actions/setup
      - name: Run Jest tests
        env:
          NEXT_PUBLIC_FIREBASE_ENV: DEV
        run: |
          yarn test:coverage
 #          npm install -g lcov-result-merger
 #          mkdir coverage
 #          lcov-result-merger \
 #          "backend/api/coverage/lcov.info" \
 #          "backend/shared/coverage/lcov.info" \
 #          "backend/email/coverage/lcov.info" \
 #          "common/coverage/lcov.info" \
 #          "web/coverage/lcov.info" \
 #          > coverage/lcov.info
      # Optional: Playwright E2E tests
      - name: Install Playwright deps
        run: |
          npx playwright install chromium
 #          npx playwright install --with-deps
 #          npm install @playwright/test
      - name: Run E2E tests
        run: |
          chmod +x scripts/e2e.sh
          ./scripts/e2e.sh
      - name: Upload coverage to Codecov
        uses: codecov/codecov-action@v5
        if: success()
        with:
          token: ${{ secrets.CODECOV_TOKEN }}
          files: |
@@ -71,5 +51,3 @@ jobs:
          flags: unit
          fail_ci_if_error: true
          slug: CompassConnections/Compass
        env:
          CI: true
--- a/.gitignore
+++ b/.gitignore
@@ -39,7 +39,6 @@ yarn-error.log*
 .env.local
 .env.*
 .envrc
 supabase/*
 # vercel
 .vercel
@@ -101,3 +100,7 @@ test-results
 /.nyc_output/
 **/coverage
 *my-release-key.keystore
 .vscode/settings.json
--- a/.husky/pre-commit
+++ b/.husky/pre-commit
@@ -0,0 +1 @@
 npx lint-staged
--- a/.junie/guidelines.md
+++ b/.junie/guidelines.md
--- a/.lintstagedrc.mjs
+++ b/.lintstagedrc.mjs
@@ -0,0 +1,28 @@
 export default {
  'web/**/*.{ts,tsx,js,jsx}': (files) => [
    `prettier --write ${files.join(' ')}`,
    `eslint --config web/eslint.config.mjs --fix ${files.join(' ')}`,
    `eslint --config web/eslint.config.mjs --max-warnings 0 ${files.join(' ')}`,
  ],
  'common/**/*.{ts,tsx,js,jsx}': (files) => [
    `prettier --write ${files.join(' ')}`,
    `eslint --config common/eslint.config.mjs --fix ${files.join(' ')}`,
    `eslint --config common/eslint.config.mjs --max-warnings 0 ${files.join(' ')}`,
  ],
  'backend/api/**/*.{ts,tsx,js,jsx}': (files) => [
    `prettier --write ${files.join(' ')}`,
    `eslint --config backend/api/eslint.config.mjs --fix ${files.join(' ')}`,
    `eslint --config backend/api/eslint.config.mjs --max-warnings 0 ${files.join(' ')}`,
  ],
  'backend/shared/**/*.{ts,tsx,js,jsx}': (files) => [
    `prettier --write ${files.join(' ')}`,
    `eslint --config backend/shared/eslint.config.mjs --fix ${files.join(' ')}`,
    `eslint --config backend/shared/eslint.config.mjs --max-warnings 0 ${files.join(' ')}`,
  ],
  'backend/email/**/*.{ts,tsx,js,jsx}': (files) => [
    `prettier --write ${files.join(' ')}`,
    `eslint --config backend/email/eslint.config.mjs --fix ${files.join(' ')}`,
    `eslint --config backend/email/eslint.config.mjs --max-warnings 0 ${files.join(' ')}`,
  ],
  '**/*.{json,css,scss,md}': (files) => [`prettier --write ${files.join(' ')}`],
 }
--- a/.npmrc
+++ b/.npmrc
@@ -0,0 +1 @@
 loglevel=error
--- a/.prettierignore
+++ b/.prettierignore
@@ -0,0 +1,35 @@
 # Dependencies
 node_modules
 .yarn
 # Build outputs
 dist
 build
 .next
 out
 lib
 # Generated files
 coverage
 *.min.js
 *.min.css
 # Database / migrations
 **/*.sql
 # Config / lock files
 yarn.lock
 package-lock.json
 pnpm-lock.yaml
 # Android / iOS
 android
 ios
 capacitor.config.ts
 # Playwright
 tests/reports
 playwright-report
 coverage
 .vscode
--- a/.prettierrc
+++ b/.prettierrc
@@ -2,9 +2,12 @@
  "tabWidth": 2,
  "useTabs": false,
  "semi": false,
  "trailingComma": "es5",
  "singleQuote": true,
-  "plugins": ["prettier-plugin-sql"],
+  "singleAttributePerLine": false,
  "bracketSpacing": false,
  "printWidth": 100,
  "trailingComma": "all",
  "plugins": ["prettier-plugin-sql", "prettier-plugin-packagejson"],
  "overrides": [
    {
      "files": "*.sql",
--- a/.vscode/launch.json
+++ b/.vscode/launch.json
@@ -5,12 +5,13 @@
    "version": "0.2.0",
    "configurations": [
        {
-        "name": "Debug Jest Tests",
+        "name": "Debug Current Test",
        "type": "node",
        "request": "launch",
        "runtimeArgs": [
            "--inspect-brk",
            "${workspaceRoot}/node_modules/.bin/jest",
            "${fileBasename}",
            "--runInBand"
        ],
        "console": "integratedTerminal",
--- a/.windsurf/rules/compass.md
+++ b/.windsurf/rules/compass.md
@@ -1,422 +1,295 @@
 ---
 trigger: always_on
-description: 
+description:
-globs: 
+globs:
 ---
 ## Project Structure
- next.js react tailwind frontend `/web`
+Compass (compassmeet.com) is a transparent dating platform for forming deep, authentic 1-on-1 connections.
-  - broken down into pages, components, hooks, lib
+
- express node api server `/backend/api`
+- **Next.js React frontend** `/web`
- one off scripts, like migrations `/backend/scripts`
+  - Pages, components, hooks, lib
- supabase postgres. schema in `/backend/supabase`
+- **Express Node API server** `/backend/api`
-  - supabase-generated types in `/backend/supabase/schema.ts`
+- **Shared backend utilities** `/backend/shared`
- files shared between backend directories `/backend/shared`
+- **Email functions** `/backend/email`
-  - anything in `/backend` can import from `shared`, but not vice versa
+- **Database schema** `/backend/supabase`
- files shared between the frontend and backend in `/common`
+  - Supabase-generated types in `/backend/supabase/schema.ts`
-  - `/common` has lots of type definitions for our data structures, like User. It also contains many useful utility functions. We try not to add package dependencies to common. `/web` and `/backend` are allowed to import from `/common`, but not vice versa.
+- **Files shared between frontend and backend** `/common`
  - Types (User, Profile, etc.) and utilities
  - Try not to add package dependencies to common
 - **Android app** `/android`
 ## Deployment
- The project has both dev and prod environments.
+- Both dev and prod environments
- Backend is on GCP (Google Cloud Platform). Deployment handled by terraform.
+- Backend on GCP (Google Cloud Platform)
- Project ID is `compass-130ba`.
+- Frontend on Vercel
 - Database on Supabase (PostgreSQL)
 - Firebase for authentication and storage
 ## Code Guidelines
---
+### Component Example
 Here's an example component from web in our style:
 ```tsx
 import clsx from 'clsx'
 import Link from 'next/link'
-import { isAdminId, isModId } from 'common/envs/constants'
+import {User} from 'common/user'
-import { type Headline } from 'common/news'
+import {ProfileRow} from 'common/profiles/profile'
-import { EditNewsButton } from 'web/components/news/edit-news-button'
+import {useUser} from 'web/hooks/use-user'
-import { Carousel } from 'web/components/widgets/carousel'
+import {useT} from 'web/lib/locale'
 import { useUser } from 'web/hooks/use-user'
 import { track } from 'web/lib/service/analytics'
 import { DashboardEndpoints } from 'web/components/dashboard/dashboard-page'
 import { removeEmojis } from 'common/util/string'
-export function HeadlineTabs(props: {
+interface ProfileCardProps {
-  headlines: Headline[]
+  user: User
-  currentSlug: string
+  profile: ProfileRow
-  endpoint: DashboardEndpoints
+}
-  hideEmoji?: boolean
+
-  notSticky?: boolean
+export function ProfileCard({user, profile}: ProfileCardProps) {
-  className?: string
+  const t = useT()
 }) {
  const { headlines, endpoint, currentSlug, hideEmoji, notSticky, className } =
    props
  const user = useUser()
  return (
-    <div
+    <div className={clsx('bg-canvas-50 rounded-lg p-4')}>
-      className={clsx(
+      <img src={user.avatarUrl} alt={user.name} />
-        className,
+      <h3>{user.name}</h3>
-        'bg-canvas-50 w-full',
+      <p>{profile.bio}</p>
        !notSticky && 'sticky top-0 z-50'
      )}
    >
      <Carousel labelsParentClassName="gap-px">
        {headlines.map(({ id, slug, title }) => (
          <Tab
            key={id}
            label={hideEmoji ? removeEmojis(title) : title}
            href={`/${endpoint}/${slug}`}
            active={slug === currentSlug}
          />
        ))}
        {user && <Tab label="More" href="/dashboard" />}
        {user && (isAdminId(user.id) || isModId(user.id)) && (
          <EditNewsButton endpoint={endpoint} defaultDashboards={headlines} />
        )}
      </Carousel>
    </div>
  )
 }
 ```
---
+We prefer many smaller components that each represent one logical unit, rather than one large component.
-We prefer to have many smaller components that each represent one logical unit, rather than one very large component that does everything. Then we compose and reuse the components.
+Export the main component at the top of the file. Name the component the same as the file (e.g., `profile-card.tsx` →
 `ProfileCard`).
-It's best to export the main component at the top of the file. We also try to name the component the same as the file name (headline-tabs.tsx) so that it's easy to find.
+### API Calls
-Here's another example in `home.tsx` that calls our api. We have an endpoint called 'headlines', which is being cached by NextJS:
+**Server-side (getStaticProps):**
 ```ts
 import { api } from 'web/lib/api/api'
 // More imports...
 export async function getStaticProps() {
  try {
    const headlines = await api('headlines', {})
    return {
      props: {
        headlines,
        revalidate: 30 * 60, // 30 minutes
      },
    }
  } catch (err) {
    return { props: { headlines: [] }, revalidate: 60 }
  }
 }
 export default function Home(props: { headlines: Headline[] }) { ... }
 ```
 ---
 If we are calling the API on the client, prefer using the `useAPIGetter` hook:
 ```ts
 export const YourTopicsSection = (props: {
  user: User
  className?: string
 }) => {
  const { user, className } = props
  const { data, refresh } = useAPIGetter('get-followed-groups', {
    userId: user.id,
  })
  const followedGroups = data?.groups ?? []
  ...
 ```
 This stores the result in memory, and allows you to call refresh() to get an updated version.
 ---
 We frequently use `usePersistentInMemoryState` or `usePersistentLocalState` as an alternative to `useState`. These cache data. Most of the time you want in-memory caching so that navigating back to a page will preserve the same state and appear to load instantly.
 Here's the definition of usePersistentInMemoryState:
 ```ts
 export const usePersistentInMemoryState = <T>(initialValue: T, key: string) => {
  const [state, setState] = useStateCheckEquality<T>(
    safeJsonParse(store[key]) ?? initialValue
  )
  useEffect(() => {
    const storedValue = safeJsonParse(store[key]) ?? initialValue
    setState(storedValue as T)
  }, [key])
  const saveState = useEvent((newState: T | ((prevState: T) => T)) => {
    setState((prevState) => {
      const updatedState = isFunction(newState) ? newState(prevState) : newState
      store[key] = JSON.stringify(updatedState)
      return updatedState
    })
  })
  return [state, saveState] as const
 }
 ```
 ---
 For live updates, we use websockets. In `use-api-subscription.ts`, we have this hook:
 ```ts
 export function useApiSubscription(opts: SubscriptionOptions) {
  useEffect(() => {
    const ws = client
    if (ws != null) {
      if (opts.enabled ?? true) {
        ws.subscribe(opts.topics, opts.onBroadcast).catch(opts.onError)
        return () => {
          ws.unsubscribe(opts.topics, opts.onBroadcast).catch(opts.onError)
        }
      }
    }
  }, [opts.enabled, JSON.stringify(opts.topics)])
 }
 ```
 In `use-bets`, we have this hook to get live updates with useApiSubscription:
 ```ts
 export const useContractBets = (
  contractId: string,
  opts?: APIParams<'bets'> & { enabled?: boolean }
 ) => {
  const { enabled = true, ...apiOptions } = {
    contractId,
    ...opts,
  }
  const optionsKey = JSON.stringify(apiOptions)
  const [newBets, setNewBets] = usePersistentInMemoryState<Bet[]>(
    [],
    `${optionsKey}-bets`
  )
  const addBets = (bets: Bet[]) => {
    setNewBets((currentBets) => {
      const uniqueBets = sortBy(
        uniqBy([...currentBets, ...bets], 'id'),
        'createdTime'
      )
      return uniqueBets.filter((b) => !betShouldBeFiltered(b, apiOptions))
    })
  }
  const isPageVisible = useIsPageVisible()
  useEffect(() => {
    if (isPageVisible && enabled) {
      api('bets', apiOptions).then(addBets)
    }
  }, [optionsKey, enabled, isPageVisible])
  useApiSubscription({
    topics: [`contract/${contractId}/new-bet`],
    onBroadcast: (msg) => {
      addBets(msg.data.bets as Bet[])
    },
    enabled,
  })
  return newBets
 }
 ```
 ---
 Here are all the topics we broadcast, from `backend/shared/src/websockets/helpers.ts`
 ```ts
 export function broadcastUpdatedPrivateUser(userId: string) {
  // don't send private user info because it's private and anyone can listen
  broadcast(`private-user/${userId}`, {})
 }
 export function broadcastUpdatedUser(user: Partial<User> & { id: string }) {
  broadcast(`user/${user.id}`, { user })
 }
 export function broadcastUpdatedComment(comment: Comment) {
  broadcast(`user/${comment.onUserId}/comment`, { comment })
 }
 ```
 ---
 We have our scripts in the directory `/backend/scripts`.
 To write a script, run it inside the helper function called `runScript` that automatically fetches any secret keys and loads them into process.env.
 Example from `/backend/scripts/manicode.ts`
 ```ts
 import { runScript } from 'run-script'
 runScript(async ({ pg }) => {
  const userPrompt = process.argv[2]
  await pg.none(...)
 })
 ```
 Generally scripts should be run by me, especially if they modify backend state or schema.
 But if you need to run a script, you can use `bun`. For example:
 ```sh
 bun run manicode.ts "Generate a page called cowp, which has cows that make noises!"
 ```
 if that doesn't work, try
 ```sh
 bun x ts-node manicode.ts "Generate a page called cowp, which has cows that make noises!"
 ```
 ---
 Our backend is mostly a set of endpoints. We create new endpoints by adding to the schema in `/common/src/api/schema.ts`.
 E.g. Here is a hypothetical bet schema:
 ```ts
  bet: {
    method: 'POST',
    authed: true,
    returns: {} as CandidateBet & { betId: string },
    props: z
      .object({
        contractId: z.string(),
        amount: z.number().gte(1),
        replyToCommentId: z.string().optional(),
        limitProb: z.number().gte(0.01).lte(0.99).optional(),
        expiresAt: z.number().optional(),
        // Used for binary and new multiple choice contracts (cpmm-multi-1).
        outcome: z.enum(['YES', 'NO']).default('YES'),
        //Multi
        answerId: z.string().optional(),
        dryRun: z.boolean().optional(),
      })
      .strict(),
  }
 ```
 Then, we define the bet endpoint in `backend/api/src/place-bet.ts`
 ```ts
 export const placeBet: APIHandler<'bet'> = async (props, auth) => {
  const isApi = auth.creds.kind === 'key'
  return await betsQueue.enqueueFn(
    () => placeBetMain(props, auth.uid, isApi),
    [props.contractId, auth.uid]
  )
 }
 ```
 And finally, you need to register the handler in `backend/api/src/routes.ts`
 ```ts
 import { placeBet } from './place-bet'
 ...
 const handlers = {
  bet: placeBet,
  ...
 }
 ```
 ---
 We have two ways to access our postgres database.
 ```ts
 import { db } from 'web/lib/supabase/db'
 db.from('profiles').select('*').eq('user_id', userId)
 ```
 and
 ```ts
 import { createSupabaseDirectClient } from 'shared/supabase/init'
 const pg = createSupabaseDirectClient()
 pg.oneOrNone<Row<'profiles'>>('select * from profiles where user_id = $1', [userId])
 ```
 The supabase client just uses the supabase client library, which is a wrapper around postgREST. It allows us to query and update the database directly from the frontend.
 `createSupabaseDirectClient` is used on the backend. it lets us specify sql strings to run directly on our database, using the pg-promise library. The client (code in web) does not have permission to do this.
 Another example using the direct client:
 ```ts
 export const getUniqueBettorIds = async (
  contractId: string,
  pg: SupabaseDirectClient
 ) => {
  const res = await pg.manyOrNone(
    'select distinct user_id from contract_bets where contract_id = $1',
    [contractId]
  )
  return res.map((r) => r.user_id as string)
 }
 ```
 (you may notice we write sql in lowercase)
 We have a few helper functions for updating and inserting data into the database.
 ```ts
 import {
  buikInsert,
  bulkUpdate,
  bulkUpdateData,
  bulkUpsert,
  insert,
  update,
  updateData,
 } from 'shared/supabase/utils'
 ...
 const pg = createSupabaseDirectClient()
 // you are encouraged to use tryCatch for these
 const { data, error } = await tryCatch(
  insert(pg, 'profiles', { user_id: auth.uid, ...body })
 )
 if (error) throw APIError(500, 'Error creating profile: ' + error.message)
 await update(pg, 'profiles', 'user_id', { user_id: auth.uid, age: 99 })
 await updateData(pg, 'private_users', { id: userId, notifications: { ... } })
 ```
 The sqlBuilder from `shared/supabase/sql-builder.ts` can be used to construct SQL queries with re-useable parts. All it does is sanitize and output sql query strings. It has several helper functions including:
 - `select`: Specifies the columns to select
 - `from`: Specifies the table to query
 - `where`: Adds WHERE clauses
 - `orderBy`: Specifies the order of results
 - `limit`: Limits the number of results
 - `renderSql`: Combines all parts into a final SQL string
 Example usage:
 ```typescript
-const query = renderSql(
+import {api} from 'web/lib/api'
  select('distinct user_id'),
  from('contract_bets'),
  where('contract_id = ${id}', { id }),
  orderBy('created_time desc'),
  limitValue != null && limit(limitValue)
 )
-const res = await pg.manyOrNone(query)
+export async function getStaticProps() {
  const profiles = await api('get-profiles', {})
  return {
    props: {profiles},
    revalidate: 30 * 60, // 30 minutes
  }
 }
 ```
-Use these functions instead of string concatenation.
+**Client-side - use hooks:**
 ```typescript
 import {useAPIGetter} from 'web/hooks/use-api-getter'
 function ProfileList() {
    const {data, refresh} = useAPIGetter('get-profiles', {})
    if (!data) return <Loading / >
    return (
        <div>
            {
                data.profiles.map((profile) => (
                    <ProfileCard key = {profile.id} user = {profile.user} profile = {profile}
    />
 ))
 }
    <button onClick = {refresh} > Refresh < /button>
        < /div>
 )
 }
 ```
 ### Database Access
 **Backend (pg-promise):**
 ```typescript
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const pg = createSupabaseDirectClient()
 const user = await pg.oneOrNone<User>('SELECT * FROM users WHERE username = $1', [username])
 ```
 **Frontend (Supabase client):**
 ```typescript
 import {db} from 'web/lib/supabase/db'
 const {data} = await db.from('profiles').select('*').eq('user_id', userId)
 ```
 ### Translation
 ```typescript
 import {useT} from 'web/lib/locale'
 function MyComponent() {
    const t = useT()
    return <h1>{t('welcome', 'Welcome to Compass'
 )
 }
    </h1>
 }
 ```
 Translation files are in `common/messages/` (en.json, fr.json, de.json).
 ### Backend Endpoints
 1. Define schema in `common/src/api/schema.ts`:
 ```typescript
 'get-user-and-profile'
 :
 {
    method: 'GET',
        authed
 :
    false,
        rateLimited
 :
    true,
        props
 :
    z.object({
        username: z.string().min(1),
    }),
        returns
 :
    {
    }
    as
    {
        user: User;
        profile: ProfileRow | null
    }
 ,
    summary: 'Get user and profile data by username',
        tag
 :
    'Users',
 }
 ,
 ```
 2. Create handler in `backend/api/src/`:
 ```typescript
 import {APIError, APIHandler} from './helpers/endpoint'
 export const getUserAndProfile: APIHandler<'get-user-and-profile'> = async ({username}, _auth) => {
  const user = await getUserByUsername(username)
  if (!user) {
    throw APIErrors.notFound('User not found')
  }
  return {user, profile}
 }
 ```
 3. Register in `backend/api/src/app.ts`:
 ```typescript
 import {getUserAndProfile} from './get-user-and-profile'
 const handlers = {
  'get-user-and-profile': getUserAndProfile,
  // ...
 }
 ```
 ### Profile Options (Interests, Causes, Work)
 Options are stored in separate tables with many-to-many relationships:
 - `interests`, `causes`, `work` - option values
 - `profile_interests`, `profile_causes`, `profile_work` - junction tables
 Fetch in parallel:
 ```typescript
 const [interestsRes, causesRes, workRes] = await Promise.all([
  db.from('profile_interests').select('interests(name, id)').eq('profile_id', profile.id),
  db.from('profile_causes').select('causes(name, id)').eq('profile_id', profile.id),
  db.from('profile_work').select('work(name, id)').eq('profile_id', profile.id),
 ])
 ```
 ### API Errors
 ```typescript
 import {APIError} from './helpers/endpoint'
 throw APIErrors.notFound('User not found')
 throw APIErrors.badRequest('Invalid input', {field: 'email'})
 ```
 ### Logging
 - Use `debug()` from `common/logger` for development
 - Use `log` from `shared/utils` for production
 ## Testing
 ### Running Tests
 ```bash
 # Jest (unit + integration)
 yarn test
 # Playwright (E2E)
 yarn test:e2e
 ```
 ### Test Structure
 - Unit tests: `*.unit.test.ts` in `tests/unit/`
 - Integration tests: `*.integration.test.ts` in `tests/integration/`
 - E2E tests: `*.e2e.spec.ts` in `tests/e2e/`
 ### Mocking Example
 ```typescript
 jest.mock('shared/supabase/init')
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const mockPg = {
  oneOrNone: jest.fn(),
  tx: jest.fn(async (cb) => cb(mockTx)),
 }
 ;(createSupabaseDirectClient as jest.Mock).mockReturnValue(mockPg)
 ```
 ## Important Patterns
 ### User Registration
 - Create user + profile + options in single database transaction
 - Return full profile data from creation API
 - Don't use sleep() hacks - rely on transactional integrity
 ## Things to Avoid
 - Don't use string concatenation for SQL queries
 - Don't add sleep() delays for "eventual consistency"
 - Don't create separate API calls when data can be batched in one transaction
 - Don't use console.log - use `debug()` or `log()`
 - Don't remove commented code
 ## Key Dependencies
 - Node.js 20+
 - React 19
 - Next.js 16
 - Supabase (PostgreSQL)
 - Firebase (Auth, Storage)
 - Tailwind CSS
 - Jest (testing)
 - Playwright (E2E testing)
--- a/.windsurf/rules/next.md
+++ b/.windsurf/rules/next.md
@@ -0,0 +1,42 @@
 ---
 trigger: manual
 description:
 globs:
 ---
 ### Translations
 ```typescript
 import {useT} from 'web/lib/locale'
 const t = useT()
 t('common.key', 'English translations')
 ```
 Translations should go to the JSON files in `web/messages` (`de.json` and `fr.json`, as of now).
 ### Misc coding tips
 We have many useful hooks that should be reused rather than rewriting them again.
 ---
 We prefer using lodash functions instead of reimplementing them with for loops:
 ```ts
 import {keyBy, uniq} from 'lodash'
 const betsByUserId = keyBy(bets, 'userId')
 const betIds = uniq(bets, (b) => b.id)
 ```
 ---
 Instead of Sets, consider using lodash's uniq function:
 ```ts
 const betIds = uniq([])
 for (const id of betIds) {
 ...
 }
 ```
--- a/.windsurf/workflows/translate.md
+++ b/.windsurf/workflows/translate.md
@@ -0,0 +1,288 @@
 ---
 description: Adding Translations to an Existing File (using useT)
 ---
 ## AI Assistant Workflow — Adding Translations to an Existing File (using `useT`)
 This is **not** about adding a new language.
 This is about correctly adding new translation keys to a feature or component that already exists.
 Follow this strictly.
 ---
 ### 1️⃣ Identify All User-Facing Strings
 Scan the file and list every:
 - Button label
 - Title
 - Placeholder
 - Tooltip
 - Toast message
 - Modal text
 - Validation error
 - SEO metadata
 - Empty state message
 If a string is visible to users, it must be translated.
 Do **not** leave inline English in JSX.
 Bad:
 ```tsx
 <button>Delete account</button>
 ```
 Correct:
 ```tsx
 <button>{t('settings.delete_account', 'Delete account')}</button>
 ```
 ---
 ### 2️⃣ Import and Initialize `useT`
 At the top of the file:
 ```tsx
 import {useT} from 'web/lib/locale'
 ```
 Inside the component:
 ```tsx
 const t = useT()
 ```
 No exceptions.
 Do not manually access locale files.
 For the backend, use
 ```tsx
 import {createT} from 'shared/locale'
 const t = createT(locale)
 ```
 ---
 ### 3️⃣ Replace Hardcoded Strings
 Wrap every string in:
 ```tsx
 t('namespace.key', 'Default English text')
 ```
 Example:
 ```tsx
 t('news.seo.description_general', 'All news and code updates for Compass')
 ```
 Rules:
 - First argument = stable translation key
 - Second argument = default English fallback
 - The English text must exactly match what you want displayed
 ---
 ### 4️⃣ Naming Convention for Keys
 Use structured namespaces.
 Good:
 ```
 profile.delete.confirm_title
 profile.delete.confirm_body
 settings.notifications.email_label
 events.create.submit_button
 ```
 Bad:
 ```
 delete1
 buttonText
 labelNew
 ```
 Keys must be:
 - Hierarchical
 - Feature-scoped
 - Predictable
 - Stable (never rename casually)
 ---
 ### 5️⃣ Add the Keys to All Existing Locale Files
 After updating the component:
 1. Open:
   ```
   common/src/messages/fr.json
   common/src/messages/de.json
   ...
   ```
 2. Add the new keys to **every language file**
 Keys must be identical across all files.
 Example:
 ```json
 {
  "confirm_title": "Delete account?",
  "confirm_body": "This action cannot be undone."
 }
 ```
 Then translate values for non-English files.
 ---
 ### 6️⃣ Use an LLM for Draft Translation (Correctly)
 When translating large additions:
 - Copy only the new JSON section
 - Ask:
 ```
 Translate the values of the JSON below to French.
 Keep all keys unchanged.
 Return valid JSON only.
 ```
 Never let the model modify keys.
 Then manually review.
 LLMs make mistakes:
 - Wrong tone
 - Cultural mismatch
 - Broken JSON
 - Overly long mobile labels
 You must verify.
 ---
 ### 7️⃣ Respect Mobile Constraints
 Certain keys must stay short (< 10 characters):
 ```
 nav.home
 nav.messages
 nav.more
 nav.notifs
 nav.people
 ```
 If you add navigation items, enforce brevity.
 ---
 ### 8️⃣ Handle Variables Properly
 For dynamic values:
 ```tsx
 t('events.count', '{count} events', {count})
 ```
 Make sure placeholders match across all languages.
 Do not concatenate strings manually.
 Bad:
 ```tsx
 'Events: ' + count
 ```
 Correct:
 ```tsx
 t('events.count', '{count} events', {count})
 ```
 ---
 ### 9️⃣ SEO & Metadata
 Even SEO descriptions must use translations:
 ```tsx
 <meta
  name="description"
  content={t('profile.seo.description', 'View user profiles and connect with like-minded people.')}
 />
 ```
 Do not hardcode metadata.
 ---
 ### 10️⃣ Final Verification Checklist
 Before committing:
 - No visible English strings left
 - All new keys added to all locale files
 - No missing translations warnings
 - JSON is valid
 - Mobile nav labels are short
 - Variables work in all languages
 - No duplicate keys
 - Namespaces are consistent
 ---
 ### Example — Full Pattern
 ```tsx
 import {useT} from 'web/lib/locale'
 export default function DeleteModal() {
  const t = useT()
  return (
    <>
      <h2>{t('profile.delete.confirm_title', 'Delete account?')}</h2>
      <p>{t('profile.delete.confirm_body', 'This action cannot be undone.')}</p>
      <button>{t('profile.delete.confirm_button', 'Delete')}</button>
    </>
  )
 }
 ```
 ---
 ### Summary
 When adding translations to a file:
 1. Replace every user-visible string
 2. Use `useT()`
 3. Create structured keys
 4. Add keys to every locale file
 5. Translate values carefully
 6. Validate JSON
 7. Test UI in multiple languages
 If you skip any of these steps, you create future maintenance debt.
 There is no shortcut.
--- a/.yarnrc
+++ b/.yarnrc
@@ -1 +1,2 @@
-save-exact true
+save-exact true
 ignore-engines true
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -0,0 +1,114 @@
 # AGENTS.md - AI Assistant Guidelines for Compass
 This file provides guidance for AI assistants working on the Compass codebase.
 ## Project Overview
 Compass (compassmeet.com) is a transparent dating platform for forming deep, authentic 1-on-1 connections. Built with Next.js, React, Supabase, Firebase, and Google Cloud.
 ## Project Structure
 ```
 /web                    # Next.js frontend (React, Tailwind CSS)
 /backend/api           # Express.js REST API
 /backend/shared        # Shared backend utilities
 /backend/email        # Email functions
 /common               # Shared types and utilities between frontend/backend
 /supabase             # Database schema and migrations
 /android              # Android mobile app
 ```
 ## Key Conventions
 ### Database Access
 - Use `createSupabaseDirectClient()` for backend SQL queries (pg-promise)
 - Use Supabase JS client (`db.from('table')`) for frontend queries
 - Never use string concatenation for SQL - use parameterized queries
 ### API Development
 1. Add endpoint schema to `common/src/api/schema.ts`
 2. Create handler in `backend/api/src/`
 3. Register in `backend/api/src/app.ts`
 ### Component Patterns
 - Export main component at top of file
 - Name component same as file (e.g., `profile-card.tsx` → `ProfileCard`)
 - Use smaller, composable components over large ones
 ### Internationalization
 - Translation files in `common/messages/` (en.json, fr.json, de.json)
 - Use `useT()` hook: `t('key', 'fallback')`
 ### Testing
 - Unit tests: `*.unit.test.ts` in package `tests/unit/`
 - Mock external dependencies (DB, APIs, time)
 - Use `jest.mock()` at top of test files
 ### Profile System
 - Profile fields stored in `profiles` table
 - Options (interests, causes, work) stored in separate tables with many-to-many relationship
 - Always fetch profile options in parallel using Promise.all
 ### User Registration Flow
 1. Create user + profile + options in single transaction
 2. Never use sleep() hacks - rely on transactional integrity
 3. Return full profile data from creation API
 ### Important Patterns
 #### Frontend API calls (server-side):
 ```typescript
 const result = await api('endpoint-name', {props})
 ```
 #### Frontend API calls (client-side):
 ```typescript
 const {data} = useAPIGetter('endpoint-name', {props})
 ```
 #### Translation:
 ```typescript
 const t = useT()
 return <div>{t('key', 'Default text')}</div>
 ```
 ## Common Tasks
 ### Adding a profile field
 1. Add column to `profiles` table via migration
 2. Add to schema in `common/src/api/schema.ts`
 3. Update frontend forms/components
 ### Adding translations
 1. Add key to `common/messages/en.json`
 2. Add translations to `fr.json`, `de.json`, etc.
 ## Things to Avoid
 - Don't use string concatenation for SQL queries
 - Don't add sleep() delays for "eventual consistency" - fix at DB level
 - Don't create separate API calls when data can be batched in one transaction
 - Don't use console.log - use `debug()` from `common/logger`
 ## Key Dependencies
 - Node.js 20+
 - React 19
 - Next.js 16
 - Supabase (PostgreSQL)
 - Firebase (Auth, Storage)
 - Tailwind CSS
 - Jest (testing)
 - Playwright (E2E testing)
--- a/CODE_OF_CONDUCT.md
+++ b/CODE_OF_CONDUCT.md
@@ -17,23 +17,23 @@ diverse, inclusive, and healthy community.
 Examples of behavior that contributes to a positive environment for our
 community include:
-* Demonstrating empathy and kindness toward other people
+- Demonstrating empathy and kindness toward other people
-* Being respectful of differing opinions, viewpoints, and experiences
+- Being respectful of differing opinions, viewpoints, and experiences
-* Giving and gracefully accepting constructive feedback
+- Giving and gracefully accepting constructive feedback
-* Accepting responsibility and apologizing to those affected by our mistakes,
+- Accepting responsibility and apologizing to those affected by our mistakes,
  and learning from the experience
-* Focusing on what is best not just for us as individuals, but for the
+- Focusing on what is best not just for us as individuals, but for the
  overall community
 Examples of unacceptable behavior include:
-* The use of sexualized language or imagery, and sexual attention or
+- The use of sexualized language or imagery, and sexual attention or
  advances of any kind
-* Trolling, insulting or derogatory comments, and personal or political attacks
+- Trolling, insulting or derogatory comments, and personal or political attacks
-* Public or private harassment
+- Public or private harassment
-* Publishing others' private information, such as a physical or email
+- Publishing others' private information, such as a physical or email
  address, without their explicit permission
-* Other conduct which could reasonably be considered inappropriate in a
+- Other conduct which could reasonably be considered inappropriate in a
  professional setting
 ## Enforcement Responsibilities
@@ -106,7 +106,7 @@ Violating these terms may lead to a permanent ban.
 ### 4. Permanent Ban
 **Community Impact**: Demonstrating a pattern of violation of community
-standards, including sustained inappropriate behavior,  harassment of an
+standards, including sustained inappropriate behavior, harassment of an
 individual, or aggression toward or disparagement of classes of individuals.
 **Consequence**: A permanent ban from any sort of public interaction within
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -1,125 +1,493 @@
-# Contributing to This Repository
+# Contributing to Compass
-We welcome pull requests, but only if they meet the project's quality and design standards. Follow the process below precisely to avoid wasting time—yours or ours.
+Thank you for your interest in contributing to Compass! This document provides comprehensive guidelines for contributing
 to this open-source project.
-## Prerequisites
+## Table of Contents
- Familiarity with Git and GitHub (basic commands, branching, forking, etc.)
+- [Code of Conduct](#code-of-conduct)
- A functioning development environment
+- [Getting Started](#getting-started)
- Node.js, Python, or other relevant runtime/tools installed (check the `README.md`)
+- [Development Environment](#development-environment)
 - [Project Structure](#project-structure)
 - [Coding Standards](#coding-standards)
 - [Making Changes](#making-changes)
 - [Testing](#testing)
 - [Pull Request Guidelines](#pull-request-guidelines)
 - [Commit Message Guidelines](#commit-message-guidelines)
 - [Documentation](#documentation)
 - [Questions and Support](#questions-and-support)
-## Fork & Clone
+## Code of Conduct
-1. **Fork the repository** using the GitHub UI.
+Please read and follow our [Code of Conduct](./CODE_OF_CONDUCT.md). We are committed to providing a welcoming and
-2. **Clone your fork** locally:
+inclusive environment for all contributors.
 ## Getting Started
 ### Prerequisites
 Before contributing, ensure you have the following installed:
 - **Node.js** 20.x or later
 - **Yarn** 1.x (classic)
 - **Git**
 - **Docker** (optional, for isolated development)
 ### Fork and Clone
 1. Fork the [repository](https://github.com/CompassConnections/Compass) on GitHub
 2. Clone your fork:
   ```bash
-   git clone https://github.com/your-username/Compass.git
+   git clone https://github.com/<your-username>/Compass.git
-   cd your-fork
+   cd Compass
-
+   ```
-3. **Add the upstream remote**:
+3. Add the upstream remote:
   ```bash
   git remote add upstream https://github.com/CompassConnections/Compass.git
   ```
-## Create a New Branch
+### Install Dependencies
 Never work on `main` or `master`.
 ```bash
-git checkout -b fix/brief-but-specific-description
+yarn install --frozen-lockfile
 ```
-Use a clear, descriptive branch name. Avoid vague names like `patch-1`.
+## Development Environment
-## Stay Updated
+### Running the Development Server
 Before you start, make sure your fork is up to date:
 ```bash
-git fetch upstream
+yarn dev
 git checkout main
 git merge upstream/main
 ```
-Then rebase your feature branch if needed:
+Visit http://localhost:3000 to see the application.
 ### Isolated Development (Recommended)
 For full isolation with local Supabase and Firebase emulators:
 ```bash
-git checkout fix/your-feature
+yarn dev:isolated
 git rebase main
 ```
-## Make Atomic Commits
+Benefits:
-Each commit should represent a single logical change. Follow this format:
+- No conflicts with other contributors
 - Works offline
 - Faster database queries
 - Free to reset and reseed data
-```text
+Requirements:
 type(scope): concise description
-body explaining what and why, if necessary
+- Docker (~500MB)
 - Supabase CLI
 - Java 21+ (for Firebase emulators)
 - Firebase CLI
 See the [README](./README.md) for detailed setup instructions.
 ### Running Tests
 ```bash
 # Run all tests
 yarn test
 # Run tests with coverage
 yarn test:coverage
 # Run tests in watch mode
 yarn test:watch
 # Run E2E tests
 yarn test:e2e
 ```
 ### Linting and Type Checking
 ```bash
 # Lint all packages
 yarn lint
 # Fix linting issues
 yarn lint-fix
 # Type check all packages
 yarn typecheck
 ```
 ## Project Structure
 This is a Yarn workspaces monorepo with the following packages:
 ```
 Compass/
 ├── web/                    # Next.js web application
 │   ├── components/         # React components
 │   ├── hooks/              # Custom React hooks
 │   ├── lib/                # Utilities and services
 │   ├── pages/              # Next.js pages
 │   └── messages/           # Internationalization files
 ├── backend/
 │   ├── api/                # Express API server
 │   ├── shared/             # Shared backend utilities
 │   ├── email/              # React email templates
 │   └── scripts/            # Database migration scripts
 ├── common/                 # Shared TypeScript types and utilities
 ├── supabase/               # Database migrations and config
 ├── android/                # Capacitor Android app
 └── docs/                   # Project documentation
 ```
 ### Key Technologies
 | Layer    | Technology                       |
 | -------- | -------------------------------- |
 | Frontend | Next.js 16, React 19, TypeScript |
 | Styling  | Tailwind CSS                     |
 | Backend  | Express.js, Node.js              |
 | Database | PostgreSQL (Supabase)            |
 | Auth     | Firebase Auth                    |
 | Storage  | Firebase Storage                 |
 | Mobile   | Capacitor (Android)              |
 | Testing  | Jest, Playwright                 |
 ## Coding Standards
 ### TypeScript
 - Use strict TypeScript typing
 - Avoid `any` type; use `unknown` when necessary
 - Prefer interfaces over types for object shapes
 - Use `const` assertions where appropriate
 ### React Components
 - Use functional components with hooks
 - Name components after their file name
 - Export primary component at the top of the file
 - Use composition over inheritance
 - Keep components small and focused
 Example component structure:
 ```tsx
 import clsx from 'clsx'
 import {useState} from 'react'
 interface ProfileCardProps {
  name: string
  age: number
  onSelect?: (id: string) => void
  className?: string
 }
 export function ProfileCard({name, age, onSelect, className}: ProfileCardProps) {
  const [selected, setSelected] = useState(false)
  const handleClick = () => {
    setSelected(!selected)
    onSelect?.(name)
  }
  return (
    <div className={clsx('card', selected && 'selected', className)}>
      <h3>
        {name}, {age}
      </h3>
      <button onClick={handleClick}>Select</button>
    </div>
  )
 }
 ```
 ### Naming Conventions
 - **Files**: kebab-case (`profile-card.tsx`)
 - **Components**: PascalCase (`ProfileCard`)
 - **Hooks**: camelCase with `use` prefix (`useUserProfile`)
 - **Constants**: SCREAMING_SNAKE_CASE
 - **Types/Interfaces**: PascalCase
 ### Import Order
 Run `yarn lint-fix` to automatically sort imports:
 1. External libraries (React, Next.js, etc.)
 2. Internal packages (`common/`, `shared/`)
 3. Relative imports (`../`, `./`)
 4. Type imports
 ### Error Handling
 - Use try-catch for async operations
 - Create custom error types for API errors
 - Implement error boundaries for React components
 - Log errors with appropriate context
 Example:
 ```typescript
 import {APIError} from './errors'
 try {
  const result = await api('endpoint', params)
  return result
 } catch (err) {
  if (err instanceof APIError) {
    logger.error('API error', {status: err.status, message: err.message})
  } else {
    logger.error('Unexpected error', err)
  }
  throw err
 }
 ```
 ### Accessibility
 - Use semantic HTML elements
 - Include ARIA labels where appropriate
 - Ensure keyboard navigation works
 - Use the `SkipLink` component for main content
 - Announce dynamic content changes with `useLiveRegion`
 ```tsx
 import {useLiveRegion} from 'web/components/live-region'
 function MyComponent() {
  const {announce} = useLiveRegion()
  const handleAction = () => {
    // Action completed
    announce('Action successful', 'polite')
  }
 }
 ```
 ## Making Changes
 ### Creating a Branch
 Never work directly on `main`. Create a new branch:
 ```bash
 git checkout -b type/short-description
 ```
 Branch types:
 - `feat/` - New features
 - `fix/` - Bug fixes
 - `docs/` - Documentation
 - `refactor/` - Code refactoring
 - `test/` - Adding/updating tests
 - `chore/` - Maintenance tasks
 ### Making Commits
 Keep commits atomic and descriptive:
 ```bash
 git add .
 git commit -m "feat(profiles): add compatibility score display
 - Added compatibility score calculation
 - Display score on profile cards
 - Added tests for scoring algorithm"
 ```
 See [Commit Message Guidelines](#commit-message-guidelines) for details.
 ### Keeping Your Fork Updated
 ```bash
 # Fetch latest from upstream
 git fetch upstream
 # Update main branch
 git checkout main
 git merge upstream/main
 # Rebase your feature branch
 git checkout feat/your-feature
 git rebase main
 ```
 ## Testing
 ### Writing Tests
 #### Unit Tests
 Place tests in `tests/unit/` within each package:
 ```typescript
 // web/tests/unit/my-function.test.ts
 import {myFunction} from '../my-function'
 describe('myFunction', () => {
  it('should return correct output', () => {
    expect(myFunction('input')).toBe('expected')
  })
 })
 ```
 #### Integration Tests
 Place in `tests/integration/`:
 ```typescript
 // web/tests/integration/api.test.ts
 import {render, screen} from '@testing-library/react'
 import {MyComponent} from '../MyComponent'
 describe('MyComponent', () => {
    it('renders correctly', () => {
        render(<MyComponent / >)
        expect(screen.getByText('Hello')).toBeInTheDocument()
    })
 })
 ```
 #### E2E Tests
 Place in `tests/e2e/` at the root:
 ```typescript
 // tests/e2e/web/specs/onboarding.spec.ts
 import {test, expect} from '@playwright/test'
 test('onboarding flow', async ({page}) => {
  await page.goto('/signup')
  await page.fill('[name="email"]', 'test@example.com')
  await page.click('button[type="submit"]')
  await expect(page).toHaveURL('/onboarding')
 })
 ```
 ### Running Specific Tests
 ```bash
 # Run unit tests for web
 yarn workspace web test
 # Run tests matching pattern
 yarn test --testPathPattern="profile"
 # Run E2E tests
 yarn test:e2e
 ```
 ### Test Coverage
 Aim for meaningful test coverage. Focus on:
 - Business logic
 - User interactions
 - Error handling
 - Edge cases
 ## Pull Request Guidelines
 ### Before Submitting
 1. **Run all tests**: `yarn test`
 2. **Run linter**: `yarn lint`
 3. **Run type check**: `yarn typecheck`
 4. **Update documentation** if needed
 5. **Rebase on main** if necessary
 ### Pull Request Format
 **Title**: Clear, descriptive title
 **Description**:
 ```markdown
 ## Summary
 Brief description of changes
 ## Changes
 - Added compatibility score to profile cards
 - Updated search algorithm for better results
 ## Testing
 - Added unit tests for scoring algorithm
 - Tested manually with synthetic data
 ## Screenshots (if UI changes)
 ```
 ### PR Checklist
 - [ ] Code follows style guidelines
 - [ ] Tests added/updated and passing
 - [ ] Documentation updated
 - [ ] No console.log statements (except debugging)
 - [ ] No debug code left behind
 ### Review Process
 1. Maintainers review within 48 hours
 2. Address feedback promptly
 3. Do not open new PRs for changes - update existing one
 4. Squash commits before merging
 ## Commit Message Guidelines
 Follow [Conventional Commits](https://www.conventionalcommits.org/):
 ```
 <type>(<scope>): <description>
 [optional body]
 [optional footer]
 ```
 ### Types
 - `feat`: New feature
 - `fix`: Bug fix
 - `docs`: Documentation
 - `style`: Formatting
 - `refactor`: Code restructuring
 - `test`: Tests
 - `chore`: Maintenance
 ### Examples
 ```text
-fix(api): handle 500 error on invalid payload
+feat(profiles): add compatibility scoring algorithm
 fix(api): handle rate limiting gracefully
 docs(readme): update installation instructions
 refactor(auth): simplify token refresh logic
 test(profiles): add unit tests for scoring
 ```
-Types include: `feat`, `fix`, `docs`, `refactor`, `test`, `chore`.
+## Documentation
-## Test Everything
+### Updating Documentation
-If the project has tests, run them. If it doesn’t, write some. Do **not** submit code that hasn't been tested.
+- Update relevant README files
 - Add JSDoc comments to complex functions
 - Update the `/docs` folder for architectural changes
-```bash
+### API Documentation
 # Example for Node.js
 npm test
 ```
-No exceptions. If you don't validate your changes, your PR will be closed.
+API docs are auto-generated and available at:
-## Lint & Format
+- Production: https://api.compassmeet.com
 - Local: http://localhost:8088 (when running locally)
-Ensure code matches the project style. If the repo uses a linter or formatter, run them:
+## Questions and Support
-```bash
+- **Discord**: https://discord.gg/8Vd7jzqjun
-npm run lint
+- **Email**: hello@compassmeet.com
-npm run format
+- **GitHub Issues**: For bug reports and feature requests
 ```
-Or whatever command is defined in the repo.
+---
 ## Write a Good Pull Request
 When opening a pull request:
 * **Title**: Describe what the PR does, clearly and specifically.
 * **Description**: Explain the context. Link related issues (use `Fixes #123` if applicable).
 * **Checklist**:
  * [ ] My code is clean and follows the style guide
  * [ ] I’ve added or updated tests
  * [ ] I’ve run all tests and they pass
  * [ ] I’ve documented my changes (if necessary)
 ## Code Review Process
 * PRs are reviewed by maintainers or core contributors.
 * If feedback is given, respond and push updates. Do **not** open new PRs for changes to an existing one.
 * PRs that are incomplete, sloppy, or violate the above will be closed.
 ## Don't Do This
 * Don’t commit directly to `main`
 * Don’t submit multiple unrelated changes in a single PR
 * Don’t ignore CI/test failures
 * Don’t expect hand-holding—read the docs and the source first
 ## Security Issues
 Do **not** open public issues for security vulnerabilities. Email the development team instead.
 ## License
 By contributing, you agree that your code will be licensed under the same license as the rest of the project.
 Thank you for contributing to Compass! Together we're building a platform for meaningful connections.
--- a/README.md
+++ b/README.md
@@ -1,14 +1,16 @@
 ![Vercel](https://deploy-badge.vercel.app/vercel/compass)
 [![CD](https://github.com/CompassConnections/Compass/actions/workflows/cd.yml/badge.svg)](https://github.com/CompassConnections/Compass/actions/workflows/cd.yml)
 [![CD API](https://github.com/CompassConnections/Compass/actions/workflows/cd-api.yml/badge.svg)](https://github.com/CompassConnections/Compass/actions/workflows/cd-api.yml)
 [![CD Android](https://github.com/CompassConnections/Compass/actions/workflows/cd-android.yml/badge.svg)](https://github.com/CompassConnections/Compass/actions/workflows/cd-android.yml)
 [![CI](https://github.com/CompassConnections/Compass/actions/workflows/ci.yml/badge.svg)](https://github.com/CompassConnections/Compass/actions/workflows/ci.yml)
 [![CI E2E](https://github.com/CompassConnections/Compass/actions/workflows/ci-e2e.yml/badge.svg)](https://github.com/CompassConnections/Compass/actions/workflows/ci-e2e.yml)
 [![codecov](https://codecov.io/gh/CompassConnections/Compass/branch/main/graph/badge.svg)](https://codecov.io/gh/CompassConnections/Compass)
-[![Users](https://img.shields.io/badge/Users-300%2B-blue?logo=myspace)](https://www.compassmeet.com/stats)
+[![Users](https://img.shields.io/badge/Users-500%2B-blue?logo=myspace)](https://www.compassmeet.com/stats)
 # Compass
-This repository contains the source code for [Compass](https://compassmeet.com) — a transparent platform for forming deep, authentic 1-on-1 connections with clarity and efficiency.
+This repository contains the source code for [Compass](https://compassmeet.com) — a transparent platform for forming
 deep, authentic 1-on-1 connections with clarity and efficiency.
 ## Features
@@ -16,34 +18,50 @@ This repository contains the source code for [Compass](https://compassmeet.com)
 - Radically transparent: user base fully searchable
 - Free, ad-free, not for profit (supported by donations)
 - Created, hosted, maintained, and moderated by volunteers
- Open source
+- Open-source
 - Democratically governed
-You can find a lot of interesting info in the [About page](https://www.compassmeet.com/about) and the [FAQ](https://www.compassmeet.com/faq) as well.
+You can find a lot of interesting info in the [About page](https://www.compassmeet.com/about) and
-A detailed description of the early vision is also available in this [blog post](https://martinbraquet.com/meeting-rational) (you can disregard the parts about rationality, as Compass shifted to a more general audience).
+the [FAQ](https://www.compassmeet.com/faq) as well.
 A detailed description of the early vision is also available in
 this [blog post](https://martinbraquet.com/meeting-rational) (you can disregard the parts about rationality, as Compass
 shifted to a more general audience).
-**We can’t do this alone.** Whatever your skills—coding, design, writing, moderation, marketing, or even small donations—you can make a real difference. [Contribute](https://www.compassmeet.com/support) in any way you can and help our community thrive!
+**We can’t do this alone.** Whatever your skills—coding, design, writing, moderation, marketing, or even small
 donations—you can make a real difference. [Contribute](https://www.compassmeet.com/support) in any way you can and help
 our community thrive!
 ![Demo](https://raw.githubusercontent.com/CompassConnections/assets/refs/heads/main/assets/demo-2x.gif)
 ## To Do
-No contribution is too small—whether it’s changing a color, resizing a button, tweaking a font, or improving wording. Bigger contributions like adding new profile fields, building modules, or improving onboarding are equally welcome. The goal is to make the platform better step by step, and every improvement counts. If you see something that could be clearer, smoother, or more engaging, **please jump in**!
+No contribution is too small—whether it’s changing a color, resizing a button, tweaking a font, or improving wording.
 Bigger contributions like adding new profile fields, building modules, or improving onboarding are equally welcome. The
 goal is to make the platform better step by step, and every improvement counts. If you see something that could be
 clearer, smoother, or more engaging, **please jump in**!
-The complete, official list of tasks is available [here on ClickUp](https://sharing.clickup.com/90181043445/l/h/6-901810339879-1/bbfd32f4f4bf64b). If you are working on one task, just assign it to yourself and move its status to "in progress". If there is also a GitHub issue for that task, assign it to yourself as well.
+The complete, official list of tasks is
 available [here on ClickUp](https://sharing.clickup.com/90181043445/l/h/6-901810339879-1/bbfd32f4f4bf64b). If you are
 working on one task, just assign it to yourself and move its status to "in progress". If there is also a GitHub issue
 for that task, assign it to yourself as well.
 To have edit access to the ClickUp workspace, you need an admin to manually give you permission (one time thing). To do
 so, use your preferred option:
 To have edit access to the ClickUp workspace, you need an admin to manually give you permission (one time thing). To do so, use your preferred option:
 - Ask or DM an admin on [Discord](https://discord.gg/8Vd7jzqjun)
 - Email hello@compassmeet.com
 - Raise an issue on GitHub
 If you want to add tasks without creating an account, you can simply email
 ```
 a.t.901810339879.u-276866260.b847aba1-2709-4f17-b4dc-565a6967c234@tasks.clickup.com
 ```
 Put the task title in the email subject and the task description in the email content.
-Here is a tailored selection of things that would be very useful. If you want to help but don’t know where to start, just ask us on [Discord](https://discord.gg/8Vd7jzqjun).
+Here is a tailored selection of things that would be very useful. If you want to help but don’t know where to start,
 just ask us on [Discord](https://discord.gg/8Vd7jzqjun).
 - [x] Authentication (user/password and Google Sign In)
 - [x] Set up PostgreSQL in Production with supabase
@@ -57,21 +75,23 @@ Here is a tailored selection of things that would be very useful. If you want to
 - [ ] Cover more than 90% with tests (unit, integration, e2e)
 - [x] Add Android mobile app
 - [ ] Add iOS mobile app
- [ ] Add better onboarding (tooltips, modals, etc.)
+- [x] Add better onboarding (tooltips, modals, etc.)
 - [ ] Add modules to learn more about each other (personality test, conflict style, love languages, etc.)
 - [ ] Add modules to improve interpersonal skills (active listening, nonviolent communication, etc.)
 - [ ] Add calendar integration and scheduling
- [ ] Add events (group calls, in-person meetups, etc.)
+- [x] Add events (group calls, in-person meetups, etc.)
 #### Secondary To Do
-Everything is open to anyone for collaboration, but the following ones are particularly easy to do for first-time contributors.
+Everything is open to anyone for collaboration, but the following ones are particularly easy to do for first-time
 contributors.
 - [x] Clean up learn more page
 - [x] Add dark theme
 - [x] Add profile fields (intellectual interests, cause areas, personality type, etc.)
 - [ ] Add profile fields: conflict style
 - [ ] Add profile fields: timezone
 - [ ] Add translations: Italian, Dutch, Hindi, Chinese, etc.
 - [x] Add filters to search through remaining profile fields (politics, religion, education level, etc.)
 - [ ] Make the app more user-friendly and appealing (UI/UX)
 - [ ] Clean up terms and conditions (convert to Markdown)
@@ -98,65 +118,167 @@ The web app is coded in Typescript using React as front-end. It includes:
 ## Development
-Below are the steps to contribute. If you have any trouble or questions, please don't hesitate to open an issue or contact us on [Discord](https://discord.gg/8Vd7jzqjun)! We're responsive and happy to help.
+Below are the steps to contribute. If you have any trouble or questions, please don't hesitate to open an issue or
 contact us on [Discord](https://discord.gg/8Vd7jzqjun)! We're responsive and happy to help.
 ### Installation
-Fork the [repo](https://github.com/CompassConnections/Compass) on GitHub (button in top right). Then, clone your repo and navigating into it:
+Fork the [repo](https://github.com/CompassConnections/Compass) on GitHub (button in top right). Then, clone your repo
 and navigating into it:
 ```bash
 git clone https://github.com/<your-username>/Compass.git
 cd Compass
 ```
 Install `yarn` (if not already installed):
 ```bash
 npm install --global yarn
 ```
 Then, install the dependencies for this project:
 ```bash
-yarn install
+yarn install --frozen-lockfile
 ```
 ### Tests
-Make sure the tests pass:
+Make sure the Jest tests pass:
 ```bash
 yarn test
 ```
 If they don't and you can't find out why, simply raise an issue! Sometimes it's something on our end that we overlooked.
 ### Running the Development Server
 Start the development server:
 ```bash
 yarn dev
 ```
-Once the server is running, visit http://localhost:3000 to start using the app. You can sign up and visit the profiles; you should see a few synthetic profiles.
+Once the server is running, visit http://localhost:3000 to start using the app. You can sign up and visit the profiles;
 you should see a few synthetic profiles.
-Note: it's normal if page loading locally is much slower than the deployed version. It can take up to 10 seconds, it would be great to improve that though!
+Note: it's normal if page loading locally is much slower than the deployed version. It can take up to 10 seconds, it
 would be great to improve that though!
 #### Full isolation
 Running `yarn dev:isolated` spins up a local Supabase and Firebase emulator instead of pointing at the shared remote
 database. This is strongly recommended for day-to-day development:
 - **Freedom** — Reset, wipe, and reseed your local database as many times as you want without affecting other
  contributors.
 - **No conflicts** — Multiple contributors can work simultaneously without stepping on each other's data or schema.
 - **Works offline** — No internet required once services are started locally.
 - **Faster** — No network latency on every database query.
 However, running in full isolation requires installing several heavy dependencies:
 - **Docker** (~500MB) — runs the Supabase Postgres container
 - **Supabase CLI** — manages the local Supabase stack (10+ Docker containers, ~1-2GB RAM when running)
 - **Java 21+** (~300MB) — required by Firebase emulators
 - **Firebase CLI** — manages the local Firebase emulators
 First startup is slow (30-60s) and the stack uses significant memory. If your machine has less than 8GB RAM, you may
 notice slowdowns.
 If this feels like too much, you can skip isolation entirely — `yarn dev` works out of the box against the shared remote
 and is perfectly fine for most contributions, especially UI changes, wording fixes, or anything that doesn't touch the
 database or authentication.
 ###### Setup instructions
 As always, don't hesitate to raise an issue if you run into any problems!
 Docker
 ```bash
 # Ubuntu/Debian (native - recommended over snap)
 curl -fsSL https://get.docker.com | sudo sh
 sudo usermod -aG docker $USER
 # Log out and back in for group changes to take effect
 # macOS
 brew install --cask docker
 # Or download from https://www.docker.com/products/docker-desktop
 # Verify
 docker --version
 ```
 Supabase CLI
 ```bash
 # Verify it got installed from `yarn install`
 npx supabase --version
 ```
 Java 21+
 ```bash
 # Ubuntu/Debian
 sudo apt install openjdk-21-jdk
 # macOS
 brew install openjdk@21
 # Verify (must be 21+)
 java -version
 ```
 Firebase CLI
 ```bash
 npm install -g firebase-tools
 # Verify
 firebase --version
 ```
 Run in isolation
 ```bash
 yarn dev:isolated
 ```
 Visit `http://localhost:3000` as usual. Your local database comes preloaded with synthetic test profiles so the app
 looks and feels like the real thing.
 ### Contributing
 Now you can start contributing by making changes and submitting pull requests!
-We recommend using a good code editor (VSCode, WebStorm, Cursor, etc.) with Typescript support and a good AI assistant (GitHub Copilot, etc.) to make your life easier. To debug, you can use the browser developer tools (F12), specifically:
+We recommend using a good code editor (VSCode, WebStorm, Cursor, etc.) with Typescript support and a good AI assistant (
- Components tab to see the React component tree and props (you need to install the [React Developer Tools](https://react.dev/learn/react-developer-tools) extension)
+GitHub Copilot, etc.) to make your life easier. To debug, you can use the browser developer tools (F12), specifically:
 - Components tab to see the React component tree and props (you need to install
  the [React Developer Tools](https://react.dev/learn/react-developer-tools) extension)
 - Console tab for errors and logs
 - Network tab to see the requests and responses
 - Storage tab to see cookies and local storage
 You can also add `console.log()` statements in the code.
-If you are new to Typescript or the open-source space, you could start with small changes, such as tweaking some web components or improving wording in some pages. You can find those files in `web/public/md/`.
+If you are new to Typescript or the open-source space, you could start with small changes, such as tweaking some web
 components or improving wording in some pages. You can find those files in `web/public/md/`.
 ##### Resources
-There is a lof of documentation in the [docs](docs) folder and across the repo, namely:
+There is a lot of documentation in the [docs](docs) folder and across the repo, namely:
 - [Next.js.md](docs/Next.js.md) for core fundamentals about our web / page-rendering framework.
 - [knowledge.md](docs/knowledge.md) for general information about the project structure.
- [development.md](docs/development.md) for additional instructions, such as adding new profile fields.
+- [development.md](docs/development.md) for additional instructions, such as adding new profile fields or languages.
 - [TESTING.md](docs/TESTING.md) for how to write tests.
 - [PERFORMANCE_OPTIMIZATION.md](docs/PERFORMANCE_OPTIMIZATION.md) for frontend, backend, and database performance best practices.
 - [DATABASE_CONNECTION_POOLING.md](docs/DATABASE_CONNECTION_POOLING.md) for database connection management and troubleshooting.
 - [TROUBLESHOOTING.md](docs/TROUBLESHOOTING.md) for resolving common development issues.
 - [web](web) for the web.
 - [backend/api](backend/api) for the backend API.
 - [android](android) for the Android app.
@@ -166,22 +288,26 @@ There are a lot of useful scripts you can use in the [scripts](scripts) folder.
 ### Submission
 Add the original repo as upstream for syncing:
 ```bash
 git remote add upstream https://github.com/CompassConnections/Compass.git
 ```
 Create a new branch for your changes:
 ```bash
 git checkout -b <branch-name>
 ```
 Make changes, then stage and commit:
 ```bash
 git add .
 git commit -m "Describe your changes"
 ```
 Push branch to your fork:
 ```bash
 git push origin <branch-name>
 ```
@@ -190,17 +316,28 @@ Finally, open a Pull Request on GitHub from your `fork/<branch-name>` → `Compa
 ### Environment Variables
-Almost all the features will work out of the box, so you can skip this step and come back later if you need to test the following services: email, geolocation.
+Almost all the features will work out of the box, so you can skip this step and come back later if you need to test the
 following services: email, geolocation.
 We can't make the following information public, for security and privacy reasons:
 - Database, otherwise anyone could access all the user data (including private messages)
 - Firebase, otherwise anyone could remove users or modify the media files
- Email, analytics, and location services, otherwise anyone could use the service plans Compass paid for and run up the bill.
+- Email, analytics, and location services, otherwise anyone could use the service plans Compass paid for and run up the
  bill.
-That's why we separate all those services between production and development environments, so that you can code freely without impacting the functioning of the deployed platform.
+That's why we separate all those services between production and development environments, so that you can code freely
-Contributors should use the default keys for local development. Production uses a separate environment with stricter rules and private keys that are not shared.
+without impacting the functioning of the deployed platform.
 Contributors should use the default keys for local development. Production uses a separate environment with stricter
 rules and private keys that are not shared.
-If you do need one of the few remaining services, you need to set them up and store your own secrets as environment variables. To do so, simply open `.env` and fill in the variables according to the instructions in the file.
+If you do need one of the few remaining services, you need to set them up and store your own secrets as environment
 variables. To do so, simply open `.env` and fill in the variables according to the instructions in the file.
 ## Acknowledgements
-This project is built on top of [manifold.love](https://github.com/sipec/polylove), an open-source dating platform licensed under the MIT License. We greatly appreciate their work and contributions to open-source, which have significantly aided in the development of some core features such as direct messaging, prompts, and email notifications. We invite the community to explore and contribute to other open-source projects like manifold.love as well, especially if you're interested in functionalities that deviate from Compass' ideals of deep, intentional connections.
+
 This project is built on top of [manifold.love](https://github.com/sipec/polylove), an open-source dating platform
 licensed under the MIT License. We greatly appreciate their work and contributions to open-source, which have
 significantly aided in the development of some core features such as direct messaging, prompts, and email notifications.
 We invite the community to explore and contribute to other open-source projects like manifold.love as well, especially
 if you're interested in functionalities that deviate from Compass' ideals of deep, intentional connections.
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -4,9 +4,121 @@
 | Version | Supported          |
 | ------- | ------------------ |
-| 1.0.0   | :white_check_mark: |
+| 1.10.x  | :white_check_mark: |
 | 1.9.x   | :white_check_mark: |
 | < 1.9.0 | :x:                |
 ## Reporting a Vulnerability
-Contact the development team at hello@compassmeet.com to report a vulnerability. You should receive updates within a week.
+If you discover a security vulnerability within Compass, please send an email to hello@compassmeet.com. All security vulnerabilities will be promptly addressed.
 Please do not publicly disclose the vulnerability until it has been resolved.
 ## Security Practices
 Compass takes security seriously and implements several best practices to protect user data and ensure application integrity.
 ### Authentication & Authorization
 - **Firebase Authentication**: User authentication is handled by Firebase Auth, which provides industry-standard security for user credentials
 - **JWT Tokens**: Secure token-based authentication for API access
 - **Role-Based Access Control**: Different permission levels for users, moderators, and administrators
 - **Session Management**: Secure session handling with automatic timeout
 ### Data Protection
 - **Encryption at Rest**: Sensitive data is encrypted in the database
 - **Encryption in Transit**: All communications use HTTPS/TLS encryption
 - **Environment Variables**: Secrets are managed through secure environment variable configuration
 - **Data Minimization**: Only necessary data is collected and stored
 ### Input Validation
 - **Zod Validation**: Strong type checking and validation for all API inputs
 - **Sanitization**: Input sanitization to prevent injection attacks
 - **Rate Limiting**: Protection against brute force and denial of service attacks
 ### API Security
 - **CORS Configuration**: Restricted cross-origin resource sharing policies
 - **Rate Limiting**: Per-endpoint rate limiting to prevent abuse
 - **Authentication Middleware**: All protected endpoints require valid authentication
 - **Input Validation**: Comprehensive validation of all API inputs
 ### Database Security
 - **Row Level Security**: Fine-grained access control at the database level
 - **Parameterized Queries**: Prevention of SQL injection attacks
 - **Audit Logging**: Tracking of database access and modifications
 - **Regular Backups**: Automated database backups for disaster recovery
 ### Third-Party Services
 - **Firebase Security Rules**: Strict security rules for Firestore and Storage
 - **Supabase RLS**: Row-level security policies for PostgreSQL
 - **Secrets Management**: Secure storage of API keys and credentials
 ### Development Practices
 - **Code Reviews**: All changes reviewed by multiple developers
 - **Automated Testing**: Security-focused tests integrated into CI/CD pipeline
 - **Dependency Management**: Regular updates and security scanning of dependencies
 - **Security Audits**: Periodic security assessments and penetration testing
 ## Common Security Issues and Resolutions
 ### XSS Prevention
 - **Content Security Policy**: Strict CSP headers to prevent cross-site scripting
 - **Input Sanitization**: All user-generated content is sanitized before display
 - **Output Encoding**: Proper encoding of user data in HTML contexts
 ### CSRF Protection
 - **SameSite Cookies**: CSRF protection through SameSite cookie attributes
 - **Anti-Forgery Tokens**: Token-based protection for state-changing operations
 ### Injection Attacks
 - **SQL Injection**: Parameterized queries and prepared statements
 - **Command Injection**: Input validation and sanitization
 - **Script Injection**: Content Security Policy and input filtering
 ## Incident Response
 In the event of a security incident:
 1. **Immediate Containment**: Isolate affected systems
 2. **Investigation**: Determine scope and impact of breach
 3. **Remediation**: Apply fixes and security patches
 4. **Notification**: Inform affected users and stakeholders
 5. **Review**: Post-incident analysis and process improvement
 ## Compliance
 Compass aims to comply with relevant data protection regulations:
 - **GDPR**: General Data Protection Regulation compliance
 - **CCPA**: California Consumer Privacy Act compliance
 - **Data Retention**: Clear policies for data retention and deletion
 ## Third-Party Security
 We regularly audit third-party services for:
 - Security certifications and compliance
 - Regular security updates and patches
 - Data handling and privacy practices
 - Incident response procedures
 ## Security Contact
 For security-related inquiries, contact:
 - Email: hello@compassmeet.com
 - Response Time: Within 24 hours for critical issues
 - Disclosure Policy: Coordinated disclosure with 90-day timeline
 ---
 _Last Updated: March 2026_
--- a/android/README.md
+++ b/android/README.md
@@ -1,12 +1,14 @@
 # Compass Android WebView App
 This folder contains the source code for the Android application of Compass.
-A hybrid mobile app built with **Next.js (TypeScript)** frontend, **Firebase backend**, and wrapped as a **Capacitor WebView** for Android. In the future it may contain native code as well.
+A hybrid mobile app built with **Next.js (TypeScript)** frontend, **Firebase backend**, and wrapped as a **Capacitor
 WebView** for Android. In the future it may contain native code as well.
 This document describes how to:
-1. Build and run the web frontend and backend locally  
+
-2. Sync and build the Android WebView wrapper  
+1. Build and run the web frontend and backend locally
-3. Debug, sign, and publish the APK  
+2. Sync and build the Android WebView wrapper
 3. Debug, sign, and publish the APK
 4. Enable Google Sign-In and push notifications
 ---
@@ -15,7 +17,8 @@ This document describes how to:
 The app is a Capacitor Android project that loads the local Next.js assets inside a WebView.
-During development, it can instead load the local frontend (`http://10.0.2.2:3000`) and backend (`http://10.0.2.2:8088`).
+During development, it can instead load the local frontend (`http://10.0.2.2:3000`) and backend (
 `http://10.0.2.2:8088`).
 Firebase handles authentication and push notifications.
 Google Sign-In is supported natively in the WebView via the Capacitor Social Login plugin.
@@ -29,29 +32,36 @@ Project Structure
 - `AndroidManifest.xml`: The manifest file that describes essential information about the application.
 ### **Why Local Is the Default**
 - **Performance:** Local assets load instantly, without network latency.
 - **Reliability:** Works offline or in poor connectivity environments.
- **App Store policy compliance:** Apple and Google generally prefer that the main experience doesn’t depend on a remote site (for security, review, and performance reasons).
+- **App Store policy compliance:** Apple and Google generally prefer that the main experience doesn’t depend on a remote
  site (for security, review, and performance reasons).
 - **Version consistency:** The web bundle is versioned with the app, ensuring no breaking updates outside your control.
 When Remote (No Local Assets) Is sometimes Used
 Loading from a **remote URL** (e.g. `https://compassmeet.com`) is **less common**, but seen in a few cases:
 - **Internal enterprise apps** where the WebView just wraps an existing web portal.
- **Dynamic content** or **frequent updates** where pushing a new web build every time through app stores would be too slow.
+- **Dynamic content** or **frequent updates** where pushing a new web build every time through app stores would be too
  slow.
 - To leverage the low latency of ISR and SSR.
-However, this approach requires:
+  However, this approach requires:
 - Careful handling of **CORS**, **SSL**, and **login/session** persistence.
- Compliance with **Google Play policies** (they may reject apps that are “just a webview of a website” unless there’s meaningful native integration).
+- Compliance with **Google Play policies** (they may reject apps that are “just a webview of a website” unless there’s
  meaningful native integration).
 **A middle ground we use:**
 - The app ships with **local assets** for core functionality.
 - The app **fetches remote content or updates** (e.g., via Capacitor Live Updates, Ionic Appflow).
 ## 2. Prerequisites
 ### Required Software
 | Tool           | Version | Purpose                            |
-| -------------- | ------- | ---------------------------------- |
+|----------------|---------|------------------------------------|
 | Node.js        | 22+     | For building frontend/backend      |
 | yarn           | latest  | Package manager                    |
 | Java           | 21      | Required for Android Gradle plugin |
@@ -60,6 +70,7 @@ However, this approach requires:
 | OpenJDK        | 21      | JDK for Gradle                     |
 ### Environment Setup
 ```bash
 sudo apt install openjdk-21-jdk
 sudo update-alternatives --config java
@@ -84,6 +95,7 @@ yarn build-web-view
 If you want the webview to load from your local web version of Compass, run the web app.
 In root directory:
 ```bash
 export NEXT_PUBLIC_LOCAL_ANDROID=1
 yarn dev # or prod
@@ -94,7 +106,8 @@ yarn dev # or prod
 ### Deployed mode
-If you want the webview to load from the deployed web version of Compass (like at www.compassmeet.com), no web app to run.
+If you want the webview to load from the deployed web version of Compass (like at compassmeet.com), no web app to
 run.
 ---
@@ -108,6 +121,7 @@ cd android
 ```
 Sync web files and native plugins with Android, for offline fallback. In root:
 ``` 
 export NEXT_PUBLIC_LOCAL_ANDROID=1 # if running your local web Compass
 yarn build-web-view # if you made changes to web app
@@ -116,20 +130,28 @@ npx cap sync android
 ### Load from site
-During local development, open Android Studio project and run the app on an emulator or your physical device. 
+During local development, open Android Studio project and run the app on an emulator or your physical device.
 To use an emulator:
 ```
 npx cap open android
 ```
-To use a physical device for the local web version, you need your mobile and computer to be on the same network / Wi-Fi and point the URL (`LOCAL_BACKEND_DOMAIN` in the code) to your computer IP address (for example, `192.168.1.3:3000`). You also need to set
+To use a physical device for the local web version, you need your mobile and computer to be on the same network / Wi-Fi
 and point the URL (`LOCAL_BACKEND_DOMAIN` in the code) to your computer IP address (for example, `192.168.1.3:3000`).
 You also need to set
 ```
 export NEXT_PUBLIC_WEBVIEW_DEV_PHONE=1
 ```
-Then adb install the app your phone (or simply run it from Android Studio on your phone) and the app should be loading content directly from the local code on your computer. You can make changes in the code and it will refresh instantly on the phone.
+
 Then adb install the app your phone (or simply run it from Android Studio on your phone) and the app should be loading
 content directly from the local code on your computer. You can make changes in the code and it will refresh instantly on
 the phone.
 Building the Application:
 1. Open Android Studio.
 2. Click on "Open an existing Android Studio project".
 3. Navigate to the `android` folder in this repository and select it.
@@ -145,7 +167,8 @@ Building the Application:
 ### From Android Studio
- If you want to generate a signed APK for release, go to "Build" > "Generate Signed Bundle / APK..." and follow the prompts.
+- If you want to generate a signed APK for release, go to "Build" > "Generate Signed Bundle / APK..." and follow the
  prompts.
 - Make sure to test the application thoroughly on different devices and Android versions to ensure compatibility.
 ### Debug build
@@ -184,19 +207,26 @@ adb install -r app/build/outputs/apk/debug/app-debug.apk
 ### Release on App Stores
-To release on the app stores, you need to submit the .aab files, which are not signed, instead of APK. Google or Apple will then sign it with their own key.
+To release on the app stores, you need to submit the .aab files, which are not signed, instead of APK. Google or Apple
 will then sign it with their own key.
 However, it's recommended to use the GitHub Action for better version control and automation. See section below:
 `Deploy to Play Store`.
 ---
 ## 9. Debugging
-Client logs from the emulator on Chrome can be accessed at:  
+Client logs from the emulator on Chrome can be accessed at:
 ```  
 chrome://inspect/#devices  
 ```  
-  
+
-Backend logs can be accessed from the output of `yarn prod / dev` like in the web application.  
+Backend logs can be accessed from the output of `yarn prod / dev` like in the web application.
-  
+
-Java/Kotlin logs can be accessed via Android Studio's Logcat.  
+Java/Kotlin logs can be accessed via Android Studio's Logcat.
 ```  
 adb logcat | grep CompassApp
 adb logcat | grep com.compassconnections.app
@@ -219,22 +249,29 @@ webView.setWebChromeClient(new WebChromeClient() {
 ## 10. Deploy to Play Store
 The best way to deploy to the Play Store is to use the GitHub Action defined
 in [cd-android.yml](../.github/workflows/cd-android.yml). You
 increase the version in `android/app/build.gradle`, commit to the main branch and it will automatically build the
 release APK and upload it to the Play Store.
 To deploy manually, follow these steps:
 1. Sign the release APK or AAB.
 2. Verify package name matches Firebase settings (`com.compassconnections.app`).
 3. Upload to Google Play Console.
-4. Add Privacy Policy and content rating.
+4. Add Privacy Policy and content rating (one time).
-5. Submit for review.
+5. Submit for review. It takes around an hour for it to be approved and appear in the store.
 ---
 ## 11. Common Issues
-| Problem                                | Cause                                  | Fix                                                                 |
+| Problem                              | Cause                                  | Fix                                                                 |
-| -------------------------------------- | -------------------------------------- | ------------------------------------------------------------------- |
+|--------------------------------------|----------------------------------------|---------------------------------------------------------------------|
-| `INSTALL_FAILED_UPDATE_INCOMPATIBLE`   | Old APK signed with different key      | Uninstall old app first                                             |
+| `INSTALL_FAILED_UPDATE_INCOMPATIBLE` | Old APK signed with different key      | Uninstall old app first                                             |
-| `Account reauth failed [16]`           | Missing or incorrect SHA-1 in Firebase | Re-add SHA-1 of keystore                                            |
+| `Account reauth failed [16]`         | Missing or incorrect SHA-1 in Firebase | Re-add SHA-1 of keystore                                            |
-| App opens in Firefox                   | Missing `WebViewClient` override       | Fix `shouldOverrideUrlLoading`                                      |
+| App opens in Firefox                 | Missing `WebViewClient` override       | Fix `shouldOverrideUrlLoading`                                      |
-| APK > 1 GB                             | Cached webpack artifacts included      | Add `.next/` and `/public/cache` to `.gitignore` and build excludes |
+| APK > 1 GB                           | Cached webpack artifacts included      | Add `.next/` and `/public/cache` to `.gitignore` and build excludes |
 ---
@@ -256,6 +293,8 @@ npx cap sync android
 ## 14. Deployment Workflow
 To deploy manually:
 ```bash
 # Build web app for production and Sync assets to Android
 yarn build-sync-android
@@ -263,27 +302,38 @@ yarn build-sync-android
 # Build signed release APK in Android Studio
 ```
 But prefer using the GitHub Action, see `Deploy to Play Store`.
 ---
 ## Live Updates
-To avoid releasing to the app stores after every code update in the web pages, we build the new bundle and store it in Capawesome Cloud (an alternative to Ionic). 
+Note: As of early 2026, we don't use the live update anymore because the free plan is too limited for our use case. To
 update the android app, we need to stick to the normal release process on the app stores.
 To avoid releasing to the app stores after every code update in the web pages, we build the new bundle and store it in
 Capawesome Cloud (an alternative to Ionic). To add a new update, increment the version number
 in [capawesome.json](capawesome.json) and push to main (or make a PR to main). A GitHub Action will automatically build
 the new bundle and push it to Capawesome.
 You can also do so locally if you have admin access. First, you need to do this one-time setup:
 First, you need to do this one-time setup:
 ```
 npm install -g @capawesome/cli@latest
 npx @capawesome/cli login
 ```
-Then, run this to build your local assets and push them to Capawesome. Once done, each mobile app user will receive a notice that there is a new update available, which they can approve to download.
+Then, run this to build your local assets and push them to Capawesome. Once done, each mobile app user will receive a
 notice that there is a new update available, which they can approve to download.
 ```
-yarn build-web-view
+yarn android:live-update
 npx @capawesome/cli apps:bundles:create --path web/out
 ```
-That's all. So you should run the lines above every time you want your web updates pushed to main (which essentially updates the web app) to update the mobile app as well.
+That's all. So you should run the lines above every time you want your web updates pushed to main (which essentially
-Maybe we should add it to our CD. For example we set a file with `{liveUpdateVersion: 1}` and run the live update each time a push to main increments that counter.
+updates the web app) to update the mobile app as well.
-There is a limit of 100 monthly active user per month, though. So we may need to pay or create our custom limit as we scale. Next plan is $9 / month and allows 1000 MAUs.
+There is a limit of 100 monthly active user per month, though. So we may need to pay or create our custom limit as we
 scale. Next plan is $9 / month and allows 1000 MAUs.
 - ∞ Live Updates
 - 100 Monthly Active Users
@@ -299,7 +349,6 @@ There is a limit of 100 monthly active user per month, though. So we may need to
 * [FCM HTTP API](https://firebase.google.com/docs/cloud-messaging/send-message)
 * [Next.js Deployment](https://nextjs.org/docs/deployment)
 # Useful Commands
 - To build the project: `./gradlew assembleDebug`
@@ -320,6 +369,7 @@ There is a limit of 100 monthly active user per month, though. So we may need to
 # One time setups
 Was already done for Compass, so you only need to do the steps below if you create a project separated from Compass.
 ## Configure Firebase
 ### In Firebase Console
@@ -347,7 +397,6 @@ keytool -list -v \
 Add both SHA-1 and SHA-256 to Firebase.
 ## 7. Google Sign-In (Web + Native)
 In Firebase Console:
@@ -359,10 +408,9 @@ In Firebase Console:
 In your code:
 ```ts
-import { googleNativeLogin } from 'web/lib/service/android-push'
+import {googleNativeLogin} from 'web/lib/service/android-push'
 ```
 ## 8. Push Notifications (FCM)
 ### Setup FCM
@@ -383,17 +431,17 @@ import { googleNativeLogin } from 'web/lib/service/android-push'
 ### Test notification
 ```ts
-const message = {  
+const message = {
-  notification: {  
+    notification: {
-    title: "Test Notification",  
+        title: "Test Notification",
-    body: "Hello from Firebase Admin SDK"  
+        body: "Hello from Firebase Admin SDK"
-  },  
+    },
-  token: "..."  
+    token: "..."
-};  
+};
-initAdmin()  
+initAdmin()
-await admin.messaging().send(message)  
+await admin.messaging().send(message)
-  .then(response => console.log("Successfully sent message:", response))  
+    .then(response => console.log("Successfully sent message:", response))
-  .catch(error => console.error("Error sending message:", error));
+    .catch(error => console.error("Error sending message:", error));
 ```
 ---
@@ -407,7 +455,77 @@ Example:
 com.compassconnections.app://auth
 ```
-
+When Android (or iOS) sees a redirect to one of these URLs, it **launches your app** and passes it the URL data. It's
-When Android (or iOS) sees a redirect to one of these URLs, it **launches your app** and passes it the URL data. It's useful to open links in the app instead of the browser. For example, if there's a link to Compass on Discord and we click on it on a mobile device that has the app, we want the link to open in the app instead of the browser.
+useful to open links in the app instead of the browser. For example, if there's a link to Compass on Discord and we
 click on it on a mobile device that has the app, we want the link to open in the app instead of the browser.
 You register this scheme in your `AndroidManifest.xml` so Android knows which app handles it.
 ## Automatic Workflow for App Release
 Below is a **minimal, production-ready GitHub Actions setup** that:
 * Builds on push to `main`
 * Checks if `versionCode` increased
 * Only builds if it did
 * Signs the AAB
 * Uploads to Google Play (internal track)
 #### A. Create Play Console API access
 1. Go to google cloud console. Create service account without selecting any specific permission or roles. Just copy
   paste the email address and generate a JSON key.
 2. Go to **Google Play Console**
 3. Invite user, enter the service account email address.
 5. Give it:
    * Release Manager role
 You will store the JSON key in GitHub Secrets.
 ---
 #### B. Prepare Keystore
 If you already sign locally, you have a `.jks` or `.keystore` file.
 Base64 encode it:
 ```bash
 base64 my-release-key.keystore
 ```
 Copy the output.
 ---
 #### C. GitHub Secrets
 In your GitHub repo:
 Settings → Secrets and variables → Actions → New repository secret
 Add:
 ```
 ANDROID_KEYSTORE_BASE64
 ANDROID_KEYSTORE_PASSWORD
 ANDROID_KEY_PASSWORD
 PLAY_SERVICE_ACCOUNT_JSON
 ```
 For the JSON:
 * Paste full raw JSON (not base64)
 #### GitHub Actions YAML
 We compare:
 * `versionCode` in current commit
 * `versionCode` in previous commit
 If not increased → skip build.
 We extract from `app/build.gradle` using grep.
 See `.github/workflows/android-release.yml` for all details.
--- a/android/app/build.gradle
+++ b/android/app/build.gradle
@@ -1,15 +1,18 @@
 apply plugin: 'com.android.application'
 apply plugin: 'com.google.gms.google-services'
 android {
    namespace "com.compassconnections.app"
    compileSdk 36
    compileOptions {
        sourceCompatibility JavaVersion.VERSION_21
        targetCompatibility JavaVersion.VERSION_21
    }
    defaultConfig {
        applicationId "com.compassconnections.app"
        minSdkVersion rootProject.ext.minSdkVersion
        targetSdkVersion rootProject.ext.targetSdkVersion
-        versionCode 14
+        versionCode 84
-        versionName "1.1.3"
+        versionName "1.17.0"
        testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
        aaptOptions {
             // Files and dirs to omit from the packaged assets dir, modified to accommodate modern web apps.
@@ -17,10 +20,17 @@ android {
            ignoreAssetsPattern '!.svn:!.git:!.ds_store:!*.scc:.*:!CVS:!thumbs.db:!picasa.ini:!*~'
        }
    }
    buildFeatures {
        buildConfig = true
    }
    buildTypes {
        release {
            minifyEnabled false
            proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro'
            buildConfigField "boolean", "ENABLE_WEBVIEW_DEBUG", "false"
        }
        debug {
            buildConfigField "boolean", "ENABLE_WEBVIEW_DEBUG", "true"
        }
    }
 }
@@ -50,8 +60,11 @@ dependencies {
    // Add the dependencies for any other desired Firebase products
    // https://firebase.google.com/docs/android/setup#available-libraries
-    implementation 'com.google.android.gms:play-services-auth:21.4.0'
+    implementation 'com.google.android.gms:play-services-auth:21.5.1'
    implementation 'com.google.firebase:firebase-auth:24.0.1'
    implementation 'com.google.android.play:app-update:2.1.0'
    implementation 'com.google.android.play:app-update-ktx:2.1.0'
 }
 apply from: 'capacitor.build.gradle'
--- a/android/app/capacitor.build.gradle
+++ b/android/app/capacitor.build.gradle
@@ -2,8 +2,8 @@
 android {
  compileOptions {
-      sourceCompatibility JavaVersion.VERSION_21
+      sourceCompatibility JavaVersion.VERSION_17
-      targetCompatibility JavaVersion.VERSION_21
+      targetCompatibility JavaVersion.VERSION_17
  }
 }
--- a/android/app/src/main/AndroidManifest.xml
+++ b/android/app/src/main/AndroidManifest.xml
@@ -8,8 +8,8 @@
        android:supportsRtl="true"
        android:usesCleartextTraffic="true"
        android:fitsSystemWindows="true"
        android:requestLegacyExternalStorage="true"
        android:theme="@style/AppTheme">
        <activity
            android:configChanges="orientation|keyboardHidden|keyboard|screenSize|locale|smallestScreenSize|screenLayout|uiMode|navigation"
            android:name=".MainActivity"
@@ -17,19 +17,28 @@
            android:theme="@style/AppTheme.NoActionBarLaunch"
            android:launchMode="singleTask"
            android:exported="true">
            <intent-filter>
                <action android:name="android.intent.action.MAIN" />
                <category android:name="android.intent.category.LAUNCHER" />
            </intent-filter>
-<!--            <intent-filter>-->
+            <intent-filter android:autoVerify="true">
-<!--                <action android:name="openapp" />-->
+                <action android:name="android.intent.action.VIEW" />
-<!--                <category android:name="android.intent.category.DEFAULT" />-->
+                <category android:name="android.intent.category.DEFAULT" />
-<!--                <category android:name="android.intent.category.BROWSABLE" />-->
+                <category android:name="android.intent.category.BROWSABLE" />
                <data android:scheme="https" />
                <data android:host="compassmeet.com" />
                <data android:scheme="https" />
                <data android:host="www.compassmeet.com" />
            </intent-filter>
-<!--                <data android:scheme="com.compassconnections.app" android:host="details"/>-->
+            <!--            <intent-filter>-->
-<!--            </intent-filter>-->
+            <!--                <action android:name="openapp" />-->
            <!--                <category android:name="android.intent.category.DEFAULT" />-->
            <!--                <category android:name="android.intent.category.BROWSABLE" />-->
            <!--                <data android:scheme="com.compassconnections.app" android:host="details"/>-->
            <!--            </intent-filter>-->
            <!--            <intent-filter android:autoVerify="true">-->
            <!--                <action android:name="android.intent.action.VIEW" />-->
@@ -39,16 +48,16 @@
            <!--            </intent-filter>-->
        </activity>
-<!--        <service-->
+        <!--        <service-->
-<!--            android:name=".MyMessagingService"-->
+        <!--            android:name=".MyMessagingService"-->
-<!--            android:exported="false">-->
+        <!--            android:exported="false">-->
-<!--            <intent-filter>-->
+        <!--            <intent-filter>-->
-<!--                <action android:name="com.google.firebase.MESSAGING_EVENT" />-->
+        <!--                <action android:name="com.google.firebase.MESSAGING_EVENT" />-->
-<!--            </intent-filter>-->
+        <!--            </intent-filter>-->
-<!--&lt;!&ndash;            <meta-data&ndash;&gt;-->
+        <!--&lt;!&ndash;            <meta-data&ndash;&gt;-->
-<!--&lt;!&ndash;                android:name="com.google.firebase.messaging.default_notification_channel_id"&ndash;&gt;-->
+        <!--&lt;!&ndash;                android:name="com.google.firebase.messaging.default_notification_channel_id"&ndash;&gt;-->
-<!--&lt;!&ndash;                android:value="@string/default_notification_channel_id" />&ndash;&gt;-->
+        <!--&lt;!&ndash;                android:value="@string/default_notification_channel_id" />&ndash;&gt;-->
-<!--        </service>-->
+        <!--        </service>-->
        <provider
            android:name="androidx.core.content.FileProvider"
@@ -65,6 +74,7 @@
    <uses-permission android:name="android.permission.POST_NOTIFICATIONS" />
    <uses-permission android:name="android.permission.VIBRATE" />
    <uses-permission android:name="android.permission.RECEIVE_BOOT_COMPLETED" />
    <uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" />
    <uses-permission android:name="com.google.android.gms.permission.AD_ID" tools:node="remove" />
--- a/android/app/src/main/java/com/compassconnections/app/MainActivity.java
+++ b/android/app/src/main/java/com/compassconnections/app/MainActivity.java
@@ -1,17 +1,26 @@
 package com.compassconnections.app;
 import android.Manifest;
 import android.content.ContentResolver;
 import android.content.ContentValues;
 import android.content.Context;
 import android.content.Intent;
 import android.content.pm.PackageManager;
 import android.media.MediaScannerConnection;
 import android.net.Uri;
 import android.os.Build;
 import android.os.Bundle;
 import android.os.Environment;
 import android.provider.MediaStore;
 import android.util.Log;
 import android.webkit.JavascriptInterface;
 import android.webkit.WebSettings;
 import android.webkit.WebView;
 import android.widget.Toast;
 import androidx.activity.result.ActivityResultLauncher;
 import androidx.activity.result.contract.ActivityResultContracts;
 import androidx.annotation.RequiresApi;
 import androidx.core.content.ContextCompat;
 import com.capacitorjs.plugins.pushnotifications.PushNotificationsPlugin;
@@ -19,56 +28,31 @@ import com.getcapacitor.BridgeActivity;
 import com.getcapacitor.BridgeWebViewClient;
 import com.getcapacitor.Plugin;
 import com.getcapacitor.PluginHandle;
 import com.google.android.play.core.appupdate.AppUpdateInfo;
 import com.google.android.play.core.appupdate.AppUpdateManager;
 import com.google.android.play.core.appupdate.AppUpdateManagerFactory;
 import com.google.android.play.core.appupdate.AppUpdateOptions;
 import com.google.android.play.core.install.model.AppUpdateType;
 import com.google.android.play.core.install.model.UpdateAvailability;
 import org.json.JSONException;
 import org.json.JSONObject;
 import java.io.File;
 import java.io.FileOutputStream;
 import java.io.IOException;
 import java.io.OutputStream;
 import java.net.URL;
 import java.nio.charset.StandardCharsets;
 import ee.forgr.capacitor.social.login.GoogleProvider;
 import ee.forgr.capacitor.social.login.ModifiedMainActivityForSocialLoginPlugin;
 import ee.forgr.capacitor.social.login.SocialLoginPlugin;
 //import android.app.NotificationChannel;
 //import android.app.NotificationManager;
 //import android.os.Build;
 //import com.google.firebase.messaging.RemoteMessage;
 //import com.capacitorjs.plugins.pushnotifications.MessagingService;
 //public class MyMessagingService extends MessagingService {
 //
 //    @Override
 //    public void onMessageReceived(RemoteMessage remoteMessage) {
 //        // TODO(developer): Handle FCM messages here.
 //        // Not getting messages here? See why this may be: https://goo.gl/39bRNJ
 //        Log.d(TAG, "From: " + remoteMessage.getFrom());
 //
 //        // Check if message contains a data payload.
 //        if (remoteMessage.getData().size() > 0) {
 //            Log.d(TAG, "Message data payload: " + remoteMessage.getData());
 //
 //            if (/* Check if data needs to be processed by long running job */ true) {
 //                // For long-running tasks (10 seconds or more) use WorkManager.
 //                scheduleJob();
 //            } else {
 //                // Handle message within 10 seconds
 //                handleNow();
 //            }
 //
 //        }
 //
 //        // Check if message contains a notification payload.
 //        if (remoteMessage.getNotification() != null) {
 //            Log.d(TAG, "Message Notification Body: " + remoteMessage.getNotification().getBody());
 //        }
 //
 //        // Also if you intend on generating your own notifications as a result of a received FCM
 //        // message, here is where that should be initiated. See sendNotification method below.
 //    }
 //}
 public class MainActivity extends BridgeActivity implements ModifiedMainActivityForSocialLoginPlugin {
    private String pendingDeepLink = null;
    // Declare this at class level
    private final ActivityResultLauncher<String> requestPermissionLauncher =
            registerForActivityResult(new ActivityResultContracts.RequestPermission(), isGranted -> {
@@ -91,31 +75,136 @@ public class MainActivity extends BridgeActivity implements ModifiedMainActivity
        }
    }
-    public static class NativeBridge {
+    public class WebAppInterface {
-        @JavascriptInterface
+        private final Context context;
-        public boolean isNativeApp() {
+
-            return true;
+        public WebAppInterface(Context context) {
            this.context = context;
        }
        @JavascriptInterface
        public String getPendingDeepLink() {
            String link = pendingDeepLink;
            pendingDeepLink = null; // consume it
            return link;
        }
        @JavascriptInterface
        public void downloadFile(String filename, String content) {
            try {
                if (Build.VERSION.SDK_INT >= Build.VERSION_CODES.Q) {
                    // Android 10+ (API 29+) - Use MediaStore
                    downloadFileModern(filename, content);
                } else {
                    // Android 9 and below - Use legacy method
                    downloadFileLegacy(filename, content);
                }
                // Show success message
                runOnUiThread(() ->
                        Toast.makeText(MainActivity.this, "File downloaded: " + filename, Toast.LENGTH_SHORT).show()
                );
            } catch (IOException e) {
                Log.e("CompassApp", "Failed to download file", e);
                runOnUiThread(() ->
                        Toast.makeText(MainActivity.this, "Download failed: " + e.getMessage(), Toast.LENGTH_SHORT).show()
                );
            }
        }
        // For Android 10+ (Scoped Storage)
        @RequiresApi(api = Build.VERSION_CODES.Q)
        private void downloadFileModern(String filename, String content) throws IOException {
            ContentResolver resolver = getContentResolver();
            ContentValues contentValues = new ContentValues();
            contentValues.put(MediaStore.MediaColumns.DISPLAY_NAME, filename);
            contentValues.put(MediaStore.MediaColumns.MIME_TYPE, getMimeType(filename));
            contentValues.put(MediaStore.MediaColumns.RELATIVE_PATH, Environment.DIRECTORY_DOWNLOADS);
            Uri uri = resolver.insert(MediaStore.Downloads.EXTERNAL_CONTENT_URI, contentValues);
            if (uri != null) {
                try (OutputStream outputStream = resolver.openOutputStream(uri)) {
                    if (outputStream != null) {
                        outputStream.write(content.getBytes(StandardCharsets.UTF_8));
                    }
                }
            }
        }
        // For Android 9 and below
        private void downloadFileLegacy(String filename, String content) throws IOException {
            File downloadsDir = Environment.getExternalStoragePublicDirectory(Environment.DIRECTORY_DOWNLOADS);
            if (!downloadsDir.exists()) {
                downloadsDir.mkdirs();
            }
            File file = getUniqueFile(downloadsDir, filename);
            try (FileOutputStream fos = new FileOutputStream(file)) {
                fos.write(content.getBytes(StandardCharsets.UTF_8));
            }
            MediaScannerConnection.scanFile(context, new String[]{file.getAbsolutePath()}, null, null);
        }
        private File getUniqueFile(File directory, String filename) {
            File file = new File(directory, filename);
            if (!file.exists()) {
                return file;
            }
            // Add number suffix if file exists
            String name = filename.substring(0, filename.lastIndexOf("."));
            String extension = filename.substring(filename.lastIndexOf("."));
            int counter = 1;
            while (file.exists()) {
                file = new File(directory, name + "(" + counter + ")" + extension);
                counter++;
            }
            return file;
        }
        // Helper method to determine MIME type
        private String getMimeType(String filename) {
            String extension = filename.substring(filename.lastIndexOf(".") + 1).toLowerCase();
            return switch (extension) {
                case "txt" -> "text/plain";
                case "pdf" -> "application/pdf";
                case "json" -> "application/json";
                case "csv" -> "text/csv";
                case "html" -> "text/html";
                case "jpg", "jpeg" -> "image/jpeg";
                case "png" -> "image/png";
                default -> "application/octet-stream";
            };
        }
    }
    @Override
    protected void onNewIntent(Intent intent) {
        super.onNewIntent(intent);
 //        String data = intent.getDataString();
        String endpoint = intent.getStringExtra("endpoint");
        Log.i("CompassApp", "onNewIntent called with endpoint: " + endpoint);
        if (endpoint != null) {
            Log.i("CompassApp", "redirecting to endpoint: " + endpoint);
            try {
                String payload = new JSONObject().put("endpoint", endpoint).toString();
-                Log.i("CompassApp", "Payload: " + payload);
+                Log.i("CompassApp", "Handling notif click: " + payload);
-                bridge.getWebView().post(() -> bridge.getWebView().evaluateJavascript("bridgeRedirect(" + payload + ");", null));
+                bridge.getWebView().post(() -> bridge.getWebView().evaluateJavascript("handleAppLink(" + payload + ");", null));
            } catch (JSONException e) {
                Log.i("CompassApp", "Failed to encode JSON payload", e);
            }
        } else {
-            Log.i("CompassApp", "No relevant data");
+            Uri data = intent.getData();
            if (data != null) {
                handleDeepLink(data.toString());
            } else {
                Log.i("CompassApp", "No relevant data");
            }
        }
    }
@@ -127,14 +216,15 @@ public class MainActivity extends BridgeActivity implements ModifiedMainActivity
        WebView webView = this.bridge.getWebView();
        webView.setWebViewClient(new BridgeWebViewClient(this.bridge));
-        WebView.setWebContentsDebuggingEnabled(true);
+       if (BuildConfig.ENABLE_WEBVIEW_DEBUG) {
-
+            WebView.setWebContentsDebuggingEnabled(true);
       }
        // Set a recognizable User-Agent (always reliable)
        WebSettings settings = webView.getSettings();
        settings.setUserAgentString(settings.getUserAgentString() + " CompassAppWebView");
        settings.setJavaScriptEnabled(true);
-        webView.addJavascriptInterface(new NativeBridge(), "AndroidBridge");
+        webView.addJavascriptInterface(new WebAppInterface(this), "AndroidBridge");
        registerPlugin(PushNotificationsPlugin.class);
        // Initialize the Bridge with Push Notifications plugin
@@ -143,6 +233,32 @@ public class MainActivity extends BridgeActivity implements ModifiedMainActivity
 //       }});
        askNotificationPermission();
        appUpdateManager = AppUpdateManagerFactory.create(this);
        checkForUpdates();
        Uri data = getIntent().getData();
        if (data != null) {
            pendingDeepLink = data.toString();
        } else {
            // Check for notification endpoint when app is opened from cold start via notification click
            String endpoint = getIntent().getStringExtra("endpoint");
            if (endpoint != null) {
                Log.i("CompassApp", "onCreate found endpoint from notification: " + endpoint);
                pendingDeepLink = endpoint;
            }
        }
    }
    private void handleDeepLink(String url) {
        try {
            String path = new URL(url).getPath();
            String payload = new JSONObject().put("url", url).put("endpoint", path).toString();
            Log.i("CompassApp", "Handling deep link: " + url);
            bridge.getWebView().post(() -> bridge.getWebView().evaluateJavascript("handleAppLink(" + payload + ");", null));
        } catch (Exception e) {
            Log.e("CompassApp", "Failed to handle deep link for " + url, e);
        }
    }
    @Override
@@ -169,5 +285,69 @@ public class MainActivity extends BridgeActivity implements ModifiedMainActivity
    @Override
    public void IHaveModifiedTheMainActivityForTheUseWithSocialLoginPlugin() {
    }
    private static final int UPDATE_REQUEST_CODE = 500;
    private AppUpdateManager appUpdateManager;
    private static final String TAG = "MainActivity";
    private void checkForUpdates() {
        appUpdateManager.getAppUpdateInfo()
                .addOnSuccessListener(appUpdateInfo -> {
                    if (appUpdateInfo.updateAvailability() == UpdateAvailability.UPDATE_AVAILABLE) {
                        if (appUpdateInfo.isUpdateTypeAllowed(AppUpdateType.IMMEDIATE)) {
                            startImmediateUpdate(appUpdateInfo);
                        } else if (appUpdateInfo.isUpdateTypeAllowed(AppUpdateType.FLEXIBLE)) {
                            startFlexibleUpdate(appUpdateInfo);
                        }
                    }
                })
                .addOnFailureListener(exception -> {
                    // Handle error - log it
                    Log.e(TAG, "Failed to check For Updates", exception);
                });
    }
    private void startImmediateUpdate(AppUpdateInfo appUpdateInfo) {
        AppUpdateOptions options = AppUpdateOptions.newBuilder(AppUpdateType.IMMEDIATE).build();
        appUpdateManager.startUpdateFlow(appUpdateInfo, this, options)
                .addOnSuccessListener(result -> {
                    Log.i(TAG, "Immediate update started successfully");
                })
                .addOnFailureListener(exception -> {
                    Log.e(TAG, "Failed to start immediate update", exception);
                });
    }
    private void startFlexibleUpdate(AppUpdateInfo appUpdateInfo) {
        AppUpdateOptions options = AppUpdateOptions.newBuilder(AppUpdateType.FLEXIBLE).build();
        appUpdateManager.startUpdateFlow(appUpdateInfo, this, options)
                .addOnSuccessListener(result -> {
                    Log.i(TAG, "Flexible update started successfully");
                })
                .addOnFailureListener(exception -> {
                    Log.e(TAG, "Failed to start flexible update", exception);
                });
    }
    @Override
    public void onResume() {
        super.onResume();
        // Check if an immediate update was interrupted
        appUpdateManager.getAppUpdateInfo().addOnSuccessListener(appUpdateInfo -> {
            if (appUpdateInfo.updateAvailability() == UpdateAvailability.DEVELOPER_TRIGGERED_UPDATE_IN_PROGRESS) {
                startImmediateUpdate(appUpdateInfo);
            }
        });
    }
    @Override
    public void onDestroy() {
        super.onDestroy();
        appUpdateManager = null;
    }
 }
--- a/android/capawesome.json
+++ b/android/capawesome.json
@@ -0,0 +1,3 @@
 {
  "version": 24
 }
--- a/assets/icon.png
+++ b/assets/icon.png
--- a/backend/api/.prettierignore
+++ b/backend/api/.prettierignore
@@ -0,0 +1,34 @@
 # Dependencies
 node_modules
 .yarn
 # Build outputs
 dist
 build
 .next
 out
 lib
 # Generated files
 coverage
 *.min.js
 *.min.css
 # Database / migrations
 **/*.sql
 # Config / lock files
 yarn.lock
 package-lock.json
 pnpm-lock.yaml
 # Android / iOS
 android
 ios
 capacitor.config.ts
 # Playwright
 tests/reports
 playwright-report
 coverage
--- a/backend/api/Dockerfile
+++ b/backend/api/Dockerfile
@@ -14,6 +14,9 @@ RUN yarn install --frozen-lockfile --production && \
    yarn cache clean --force && \
    rm -rf /usr/local/share/.cache/yarn
 # Show installed packages
 RUN npm list || true
 # Copy over typescript payload
 COPY dist ./
--- a/backend/api/README.md
+++ b/backend/api/README.md
@@ -1,11 +1,67 @@
 # Backend API
-This is the code for the API running at https://api.compassmeet.com.
+Express.js REST API for Compass, running at https://api.compassmeet.com.
 It runs in a docker inside a Google Cloud virtual machine.
-### Requirements
+## Overview
-You must have the `gcloud` CLI.
+The API handles:
 - User authentication and management
 - Profile CRUD operations
 - Search and filtering
 - Messaging
 - Notifications
 - Compatibility scoring
 - Events management
 - WebSocket connections for real-time features
 ## Tech Stack
 - **Runtime**: Node.js 20+
 - **Framework**: Express.js 5.0
 - **Language**: TypeScript
 - **Database**: PostgreSQL (via Supabase)
 - **ORM**: pg-promise
 - **Validation**: Zod
 - **WebSocket**: ws library
 - **API Docs**: Swagger/OpenAPI
 ## Project Structure
 ```
 backend/api/
 ├── src/
 │   ├── app.ts             # Express app setup
 │   ├── routes.ts          # Route definitions
 │   ├── test.ts            # Test utilities
 │   ├── get-*.ts           # GET endpoints
 │   ├── create-*.ts        # POST endpoints
 │   ├── update-*.ts        # PUT/PATCH endpoints
 │   ├── delete-*.ts        # DELETE endpoints
 │   └── helpers/           # Shared utilities
 ├── tests/
 │   └── unit/              # Unit tests
 ├── package.json
 ├── tsconfig.json
 └── README.md
 ```
 ## Getting Started
 ### Prerequisites
 - Node.js 20.x or later
 - Yarn
 - Access to Supabase project (for database)
 ### Installation
 ```bash
 # From root directory
 yarn install
 ```
 You must also have the `gcloud` CLI.
 On macOS:
@@ -28,11 +84,362 @@ gcloud config set project YOUR_PROJECT_ID
 ```
 You also need `opentofu` and `docker`. Try running this (from root) on Linux or macOS for a faster install:
 ```bash
 ./script/setup.sh
 ```
 If it doesn't work, you can install them manually (google how to install `opentofu` and `docker` for your OS).
 ### Running Locally
 ```bash
 # Run all services (web + API)
 yarn dev
 # Run API only (from backend/api)
 cd backend/api
 yarn serve
 ```
 The API runs on http://localhost:8088 when running locally with the full stack.
 ### Testing
 ```bash
 # Run unit tests
 yarn test
 # Run with coverage
 yarn test --coverage
 ```
 ### Linting
 ```bash
 # Check lint
 yarn lint
 # Fix issues
 yarn lint-fix
 ```
 ## API Endpoints
 ### Authentication
 | Method | Endpoint       | Description     |
 | ------ | -------------- | --------------- |
 | POST   | `/create-user` | Create new user |
 ### Users
 | Method | Endpoint     | Description         |
 | ------ | ------------ | ------------------- |
 | GET    | `/get-me`    | Get current user    |
 | PUT    | `/update-me` | Update current user |
 | DELETE | `/delete-me` | Delete account      |
 ### Profiles
 | Method | Endpoint          | Description        |
 | ------ | ----------------- | ------------------ |
 | GET    | `/get-profiles`   | List profiles      |
 | GET    | `/get-profile`    | Get single profile |
 | POST   | `/create-profile` | Create profile     |
 | PUT    | `/update-profile` | Update profile     |
 | DELETE | `/delete-profile` | Delete profile     |
 ### Messaging
 | Method | Endpoint                       | Description    |
 | ------ | ------------------------------ | -------------- |
 | GET    | `/get-private-messages`        | Get messages   |
 | POST   | `/create-private-user-message` | Send message   |
 | PUT    | `/edit-message`                | Edit message   |
 | DELETE | `/delete-message`              | Delete message |
 ### Notifications
 | Method | Endpoint                | Description        |
 | ------ | ----------------------- | ------------------ |
 | GET    | `/get-notifications`    | List notifications |
 | PUT    | `/update-notif-setting` | Update settings    |
 ### Search
 | Method | Endpoint           | Description        |
 | ------ | ------------------ | ------------------ |
 | GET    | `/search-users`    | Search users       |
 | GET    | `/search-location` | Search by location |
 ### Compatibility
 | Method | Endpoint                       | Description             |
 | ------ | ------------------------------ | ----------------------- |
 | GET    | `/get-compatibility-questions` | List questions          |
 | POST   | `/set-compatibility-answers`   | Submit answers          |
 | GET    | `/compatible-profiles`         | Get compatible profiles |
 ## Writing Endpoints
 ### 1. Define Schema
 Add endpoint definition in `common/src/api/schema.ts`:
 ```typescript
 const endpoints = {
  myEndpoint: {
    method: 'POST',
    authed: true,
    returns: z.object({
      success: z.boolean(),
      data: z.any(),
    }),
    props: z
      .object({
        userId: z.string(),
        option: z.string().optional(),
      })
      .strict(),
  },
 }
 ```
 ### 2. Implement Handler
 Create handler file in `backend/api/src/`:
 ```typescript
 import {z} from 'zod'
 import {APIHandler} from './helpers/endpoint'
 export const myEndpoint: APIHandler<'myEndpoint'> = async (props, auth) => {
  const {userId, option} = props
  // Implementation
  return {
    success: true,
    data: {userId},
  }
 }
 ```
 ### 3. Register Route
 Add to `routes.ts`:
 ```typescript
 import {myEndpoint} from './my-endpoint'
 const handlers = {
  myEndpoint,
  // ...
 }
 ```
 ## Authentication
 ### Authenticated Endpoints
 Use the `authed: true` schema property. The auth object is passed to the handler:
 ```typescript
 export const getProfile: APIHandler<'get-profile'> = async (props, auth) => {
  // auth.uid - user ID
  // auth.creds - credentials type
 }
 ```
 ### Auth Types
 - `firebase` - Firebase Auth token
 - `session` - Session-based auth
 ## Database Access
 ### Using pg-promise
 ```typescript
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 const pg = createSupabaseDirectClient()
 const result = await pg.oneOrNone<User>('SELECT * FROM users WHERE id = $1', [userId])
 ```
 ### Using Supabase Client
 But this works only in the front-end.
 ```typescript
 import {db} from 'web/lib/supabase/db'
 const {data, error} = await db.from('profiles').select('*').eq('user_id', userId)
 ```
 ## Rate Limiting
 The API includes built-in rate limiting:
 ```typescript
 export const myEndpoint: APIHandler<'myEndpoint'> = withRateLimit(
  async (props, auth) => {
    // Handler implementation
  },
  {
    name: 'my-endpoint',
    limit: 100,
    windowMs: 60 * 1000, // 1 minute
  },
 )
 ```
 ## Error Handling
 Use `APIError` for consistent error responses:
 ```typescript
 import {APIError} from './helpers/endpoint'
 throw APIError(404, 'User not found')
 throw APIError(400, 'Invalid input', {field: 'email'})
 ```
 Error codes:
 - `400` - Bad Request
 - `401` - Unauthorized
 - `403` - Forbidden
 - `404` - Not Found
 - `429` - Too Many Requests
 - `500` - Internal Server Error
 ## WebSocket
 WebSocket connections are handled for real-time features:
 ```typescript
 // Subscribe to updates
 ws.subscribe('user/123', (data) => {
  console.log('User updated:', data)
 })
 // Unsubscribe
 ws.unsubscribe('user/123', callback)
 ```
 Available topics:
 - `user/{userId}` - User updates
 - `private-user/{userId}` - Private user updates
 - `message/{channelId}` - New messages
 ## Logging
 Use the shared logger:
 ```typescript
 import {log} from 'shared/monitoring/log'
 log.info('Processing request', {userId: auth.uid})
 log.error('Failed to process', error)
 ```
 ## Deployment
 ### Production Deployment
 Deployments are automated via GitHub Actions. Push to main triggers deployment:
 ```bash
 # Increment version
 # Update package.json version
 git add package.json
 git commit -m "chore: bump version"
 git push origin main
 ```
 ### Manual Deployment
 ```bash
 cd backend/api
 ./deploy-api.sh prod
 ```
 ### Server Access
 Run in this directory to connect to the API server running as virtual machine in Google Cloud. You can access logs,
 files, debug, etc.
 ```bash
 # SSH into production server
 cd backend/api
 ./ssh-api.sh prod
 ```
 Useful commands on server:
 ```bash
 sudo journalctl -u konlet-startup --no-pager -ef  # View logs
 sudo docker logs -f $(sudo docker ps -alq)        # Container logs
 docker exec -it $(sudo docker ps -alq) sh         # Shell access
 docker run -it --rm $(docker images -q | head -n 1) sh
 docker rmi -f $(docker images -aq)
 ```
 ## Environment Variables
 Required secrets (set in Google Cloud Secrets Manager):
 | Variable               | Description                  |
 | ---------------------- | ---------------------------- |
 | `DATABASE_URL`         | PostgreSQL connection string |
 | `FIREBASE_PROJECT_ID`  | Firebase project ID          |
 | `FIREBASE_PRIVATE_KEY` | Firebase private key         |
 | `SUPABASE_SERVICE_KEY` | Supabase service role key    |
 | `JWT_SECRET`           | JWT signing secret           |
 ## Testing
 ### Writing Unit Tests
 ```typescript
 // tests/unit/my-endpoint.unit.test.ts
 import {myEndpoint} from '../my-endpoint'
 describe('myEndpoint', () => {
  it('should return success', async () => {
    const result = await myEndpoint({userId: '123'}, mockAuth)
    expect(result.success).toBe(true)
  })
 })
 ```
 ### Mocking Database
 ```typescript
 const mockPg = {
  oneOrNone: jest.fn().mockResolvedValue({id: '123'}),
 }
 ```
 ## API Documentation
 Full API docs available at:
 - Production: https://api.compassmeet.com
 - Local: http://localhost:8088 (when running)
 Docs are generated from route definitions in `app.ts`.
 ## See Also
 - [Main README](../../README.md)
 - [Contributing Guide](../../CONTRIBUTING.md)
 - [Shared Backend Utils](../shared/README.md)
 - [Database Migrations](../../supabase)
 ### Setup
 This section is only for the people who are creating a server from scratch, for instance for a forked project.
@@ -105,8 +512,8 @@ gcloud iam service-accounts keys create keyfile.json --iam-account=ci-deployer@c
 ##### DNS
-* After deployment, Terraform assigns a static external IP to this resource.
+- After deployment, Terraform assigns a static external IP to this resource.
-* You can get it manually:
+- You can get it manually:
 ```bash
 gcloud compute addresses describe api-lb-ip-2 --global --format="get(address)"
@@ -120,11 +527,11 @@ Since Vercel manages your domain (`compassmeet.com`):
 3. Add an **A record** for your API subdomain:
 | Type | Name | Value        | TTL   |
-|------|------|--------------|-------|
+| ---- | ---- | ------------ | ----- |
 | A    | api  | 34.123.45.67 | 600 s |
-* `Name` is just the subdomain: `api` → `api.compassmeet.com`.
+- `Name` is just the subdomain: `api` → `api.compassmeet.com`.
-* `Value` is the **external IP of the LB** from step 1.
+- `Value` is the **external IP of the LB** from step 1.
 Verify connectivity
 From your local machine:
@@ -135,8 +542,8 @@ ping -c 3 api.compassmeet.com
 curl -I https://api.compassmeet.com
 ```
-* `nslookup` should return the LB IP (`34.123.45.67`).
+- `nslookup` should return the LB IP (`34.123.45.67`).
-* `curl -I` should return `200 OK` from your service.
+- `curl -I` should return `200 OK` from your service.
 If SSL isn’t ready (may take 15 mins), check LB logs:
@@ -153,46 +560,3 @@ in [Google Cloud Secrets manager](https://console.cloud.google.com/security/secr
 can access them.
 For Compass, the name of the secrets are in [secrets.ts](../../common/src/secrets.ts).
 ### Run Locally
 In root directory, run the local api with hot reload, along with all the other backend and web code.
 ```bash
 ./run_local.sh prod
 ```
 ### Deploy
 To deploy the backend code, simply increment the version number in [package.json](package.json) and push to the `main` branch.
 Or if you have access to the project on google cloud, run in this directory:
 ```bash
 ./deploy-api.sh prod
 ```
 ### Connect to the server
 Run in this directory to connect to the API server running as virtual machine in Google Cloud. You can access logs,
 files, debug, etc.
 ```bash
 ./ssh-api.sh prod
 ```
 Useful commands once inside the server:
 ```bash
 sudo journalctl -u konlet-startup --no-pager -efb
 sudo docker logs -f $(sudo docker ps -alq)
 docker exec -it $(sudo docker ps -alq) sh
 docker run -it --rm $(docker images -q | head -n 1) sh
 docker rmi -f $(docker images -aq)
 ```
 ### Documentation
 The API doc is available at https://api.compassmeet.com. It's dynamically prepared in [app.ts](src/app.ts).
 ### Todo (Tests)
 - [ ] Finish get-supabase-token unit test when endpoint is implemented
--- a/backend/api/deploy-api.sh
+++ b/backend/api/deploy-api.sh
@@ -27,13 +27,16 @@ SERVICE_NAME="api"
 GIT_REVISION=$(git rev-parse --short HEAD)
 GIT_COMMIT_DATE=$(git log -1 --format=%ci)
 GIT_COMMIT_AUTHOR=$(git log -1 --format='%an')
 GIT_COMMIT_MESSAGE=$(git log -1 --format='%s')
 echo "Git commit message: ${GIT_COMMIT_MESSAGE}"
 cat > metadata.json << EOF
 {
  "git": {
    "revision": "${GIT_REVISION}",
    "commitDate": "${GIT_COMMIT_DATE}",
-    "author": "${GIT_COMMIT_AUTHOR}"
+    "author": "${GIT_COMMIT_AUTHOR}",
    "message": "${GIT_COMMIT_MESSAGE}"
  }
 }
 EOF
@@ -46,7 +49,7 @@ echo "🚀 Deploying ${SERVICE_NAME} to ${ENV} ($(date "+%Y-%m-%d %I:%M:%S %p"))
 yarn build
 gcloud auth print-access-token | docker login -u oauth2accesstoken --password-stdin us-west1-docker.pkg.dev
-docker build . --tag ${IMAGE_URL} --platform linux/amd64
+docker build . --tag ${IMAGE_URL} --platform linux/amd64 --progress=plain
 echo "docker push ${IMAGE_URL}"
 docker push ${IMAGE_URL}
--- a/backend/api/dist_copy.sh
+++ b/backend/api/dist_copy.sh
@@ -0,0 +1,31 @@
 #!/bin/bash
 set -e
 cd "$(dirname "$0")"
 rsync -a --delete ../../common/lib/ dist/common/lib
 rsync -a --delete ../../common/messages/ dist/common/messages/
 rsync -a --delete ../shared/lib/ dist/backend/shared/lib
 rsync -a --delete ../email/lib/ dist/backend/email/lib
 rsync -a --delete ./lib/* dist/backend/api/lib
 cp package.json dist/backend/api
 cp metadata.json dist
 cp metadata.json dist/backend/api
 cp ../../yarn.lock dist
 # Installing from backend/api/package.json is not enough
 # Need to install the deps from all the workspaces used in the back end
 node -e "
  const fs = require('fs');
  const deps = ['../api', '../shared', '../email', '../../common']
    .map(p => require('./' + p + '/package.json').dependencies || {})
    .reduce((acc, d) => ({ ...acc, ...d }), {});
  const pkg = require('./package.json');
  pkg.dependencies = { ...deps, ...pkg.dependencies };
  fs.writeFileSync('./dist/package.json', JSON.stringify(pkg, null, 2));
 "
--- a/backend/api/ecosystem.config.js
+++ b/backend/api/ecosystem.config.js
@@ -1,21 +1,21 @@
 module.exports = {
-    apps: [
+  apps: [
-        {
+    {
-            name: "api",
+      name: 'api',
-            script: "node",
+      script: 'node',
-            args: "--dns-result-order=ipv4first backend/api/lib/serve.js",
+      args: '--dns-result-order=ipv4first backend/api/lib/serve.js',
-            env: {
+      env: {
-                NODE_ENV: "production",
+        NODE_ENV: 'production',
-                NODE_PATH: "/usr/src/app/node_modules",  // <- ensures Node finds tsconfig-paths
+        NODE_PATH: '/usr/src/app/node_modules', // <- ensures Node finds tsconfig-paths
-                PORT: 80,
+        PORT: 80,
-            },
+      },
-            instances: 1,
+      instances: 1,
-            exec_mode: "fork",
+      exec_mode: 'fork',
-            autorestart: true,
+      autorestart: true,
-            watch: false,
+      watch: false,
-            // 4 GB on the box, give 3 GB to the JS heap
+      // 4 GB on the box, give 3 GB to the JS heap
-            node_args: "--max-old-space-size=3072",
+      node_args: '--max-old-space-size=3072',
-            max_memory_restart: "3500M"
+      max_memory_restart: '3500M',
-        }
+    },
-    ]
+  ],
-};
+}
--- a/backend/api/eslint.config.mjs
+++ b/backend/api/eslint.config.mjs
@@ -0,0 +1,76 @@
 import js from '@eslint/js'
 import tseslint from 'typescript-eslint'
 import lodash from 'eslint-plugin-lodash'
 import unusedImports from 'eslint-plugin-unused-imports'
 import simpleImportSort from 'eslint-plugin-simple-import-sort'
 import eslintConfigPrettier from 'eslint-config-prettier'
 export default tseslint.config(
  js.configs.recommended,
  ...tseslint.configs.recommended,
  {
    plugins: {
      lodash,
      'unused-imports': unusedImports,
      'simple-import-sort': simpleImportSort,
    },
    languageOptions: {
      parserOptions: {
        project: ['./tsconfig.json', './tsconfig.test.json', 'tsconfig.eslint.json'],
        tsconfigRootDir: import.meta.dirname,
      },
      globals: {
        process: 'readonly',
        console: 'readonly',
        module: 'readonly',
        require: 'readonly',
        __dirname: 'readonly',
        __filename: 'readonly',
        Buffer: 'readonly',
        global: 'readonly',
        setTimeout: 'readonly',
        clearTimeout: 'readonly',
        setInterval: 'readonly',
        clearInterval: 'readonly',
        setImmediate: 'readonly',
        clearImmediate: 'readonly',
        URL: 'readonly',
        URLSearchParams: 'readonly',
        fetch: 'readonly',
        WebSocket: 'readonly',
      },
    },
    rules: {
      '@typescript-eslint/no-empty-object-type': 'error',
      '@typescript-eslint/no-unsafe-function-type': 'error',
      '@typescript-eslint/no-wrapper-object-types': 'error',
      '@typescript-eslint/no-explicit-any': 'off',
      '@typescript-eslint/no-extra-semi': 'off',
      '@typescript-eslint/no-unused-vars': [
        'warn',
        {
          argsIgnorePattern: '^_',
          varsIgnorePattern: '^_',
          caughtErrorsIgnorePattern: '^_',
        },
      ],
      'unused-imports/no-unused-imports': 'warn',
      'no-constant-condition': 'off',
      'linebreak-style': ['error', process.platform === 'win32' ? 'windows' : 'unix'],
      'lodash/import-scope': [2, 'member'],
      'simple-import-sort/imports': 'error',
      'simple-import-sort/exports': 'error',
    },
  },
  {
    ignores: [
      'dist',
      'lib',
      'coverage',
      'eslint.config.mjs',
      'jest.config.ts',
      'ecosystem.config.js',
    ],
  },
  eslintConfigPrettier,
 )
--- a/backend/api/jest.config.js
+++ b/backend/api/jest.config.js
@@ -1,31 +0,0 @@
 module.exports = {
    preset: 'ts-jest',
    testEnvironment: 'node',
    rootDir: '.',
    testMatch: [
        "<rootDir>/tests/**/*.test.ts",
        "<rootDir>/tests/**/*.spec.ts"
    ],
    moduleNameMapper: {
        "^api/(.*)$": "<rootDir>/src/$1",
        "^shared/(.*)$": "<rootDir>/../shared/src/$1",
        "^common/(.*)$": "<rootDir>/../../common/src/$1",
        "^email/(.*)$": "<rootDir>/../email/emails/$1"
    },
    moduleFileExtensions: ["tsx","ts", "js", "json"],
    clearMocks: true,
    globals: {
        'ts-jest': {
            tsconfig: "<rootDir>/tsconfig.test.json"
        }
    },
    collectCoverageFrom: [
        "src/**/*.{ts,tsx}",
        "!src/**/*.d.ts"
    ],
 };
--- a/backend/api/jest.config.ts
+++ b/backend/api/jest.config.ts
@@ -0,0 +1,29 @@
 module.exports = {
  preset: 'ts-jest',
  testEnvironment: 'node',
  rootDir: '.',
  testMatch: ['<rootDir>/tests/**/*.test.ts', '<rootDir>/tests/**/*.spec.ts'],
  moduleNameMapper: {
    '^api/(.*)$': '<rootDir>/src/$1',
    '^shared/(.*)$': '<rootDir>/../shared/src/$1',
    '^common/(.*)$': '<rootDir>/../../common/src/$1',
    '^email/(.*)$': '<rootDir>/../email/emails/$1',
  },
  moduleFileExtensions: ['tsx', 'ts', 'js', 'json'],
  clearMocks: true,
  transform: {
    '^.+\\.tsx?$': [
      'ts-jest',
      {
        tsconfig: '<rootDir>/tsconfig.test.json',
      },
    ],
  },
  collectCoverageFrom: ['src/**/*.{ts,tsx}', '!src/**/*.d.ts'],
  silent: true,
 }
--- a/backend/api/main.tf
+++ b/backend/api/main.tf
@@ -11,8 +11,8 @@ variable "env" {
 }
 locals {
-  project = "compass-130ba"
+  project      = "compass-130ba"
-  region  = "us-west1"
+  region       = "us-west1"
  zone         = "us-west1-b"
  service_name = "api"
  machine_type = "e2-small"
@@ -55,7 +55,7 @@ resource "google_storage_bucket" "public_storage" {
 # static IPs
 resource "google_compute_global_address" "api_lb_ip" {
-  name = "api-lb-ip-2"
+  name         = "api-lb-ip-2"
  address_type = "EXTERNAL"
 }
@@ -81,7 +81,7 @@ resource "google_compute_instance_template" "api_template" {
  }
  network_interface {
-    network = "default"
+    network    = "default"
    subnetwork = "default"
    access_config {
      network_tier = "PREMIUM"
@@ -105,6 +105,7 @@ spec:
      ports:
        - containerPort: 80
 EOF
    google-logging-enabled    = "true"
  }
  lifecycle {
@@ -116,12 +117,12 @@ EOF
 resource "google_compute_region_instance_group_manager" "api_group" {
  name               = "${local.service_name}-group"
  base_instance_name = "${local.service_name}-group"
-  region               = local.region
+  region             = local.region
  target_size        = 1
  version {
    instance_template = google_compute_instance_template.api_template.id
-    name = "primary"
+    name              = "primary"
  }
  update_policy {
@@ -185,29 +186,29 @@ resource "google_compute_url_map" "api_url_map" {
  path_matcher {
    name            = "allpaths"
    default_service = google_compute_backend_service.api_backend.self_link
-  #
+    #
-  #   # Priority 0: passthrough /v0/* requests
+    #   # Priority 0: passthrough /v0/* requests
-  #   route_rules {
+    #   route_rules {
-  #     priority = 1
+    #     priority = 1
-  #     match_rules {
+    #     match_rules {
-  #       prefix_match = "/v0"
+    #       prefix_match = "/v0"
-  #     }
+    #     }
-  #     service = google_compute_backend_service.api_backend.self_link
+    #     service = google_compute_backend_service.api_backend.self_link
-  #   }
+    #   }
-  #
+    #
-  #   # Priority 1: rewrite everything else to /v0
+    #   # Priority 1: rewrite everything else to /v0
-  #   route_rules {
+    #   route_rules {
-  #     priority = 2
+    #     priority = 2
-  #     match_rules {
+    #     match_rules {
-  #       prefix_match = "/"
+    #       prefix_match = "/"
-  #     }
+    #     }
-  #     route_action {
+    #     route_action {
-  #       url_rewrite { # This may break websockets (the Upgrade and Connection headers must pass through untouched).
+    #       url_rewrite { # This may break websockets (the Upgrade and Connection headers must pass through untouched).
-  #         path_prefix_rewrite = "/v0/"
+    #         path_prefix_rewrite = "/v0/"
-  #       }
+    #       }
-  #     }
+    #     }
-  #     service = google_compute_backend_service.api_backend.self_link
+    #     service = google_compute_backend_service.api_backend.self_link
-  #   }
+    #   }
  }
 }
@@ -267,10 +268,10 @@ resource "google_compute_firewall" "allow_health_check" {
 }
 resource "google_compute_firewall" "default_allow_https" {
-  name        = "default-allow-http"
+  name      = "default-allow-http"
-  network     = "default"
+  network   = "default"
-  priority    = 1000
+  priority  = 1000
-  direction   = "INGRESS"
+  direction = "INGRESS"
  allow {
    protocol = "tcp"
--- a/backend/api/metadata.json
+++ b/backend/api/metadata.json
@@ -1,7 +1,8 @@
 {
  "git": {
-    "revision": "91f69ed",
+    "revision": "c085e8f",
-    "commitDate": "2025-12-04 20:51:09+0100",
+    "commitDate": "2026-02-22 21:51:08 +0100",
-    "author": "MartinBraquet"
+    "author": "MartinBraquet",
    "message": "Add guidelines for adding translations to existing files"
  }
 }
--- a/backend/api/package.json
+++ b/backend/api/package.json
@@ -1,79 +1,66 @@
 {
  "name": "@compass/api",
-  "description": "Backend API endpoints",
+  "version": "1.31.0",
  "version": "1.0.11",
  "private": true,
  "description": "Backend API endpoints",
  "main": "src/serve.ts",
  "scripts": {
    "watch:serve": "tsx watch src/serve.ts",
    "watch:compile": "npx concurrently \"tsc -b --watch --preserveWatchOutput\" \"(cd ../../common && tsc-alias --watch)\" \"(cd ../shared && tsc-alias --watch)\" \"(cd ../email && tsc-alias --watch)\" \"tsc-alias --watch\"",
    "dev": "yarn watch:serve",
    "prod": "npx concurrently -n COMPILE,SERVER -c cyan,green \"yarn watch:compile\" \"yarn watch:serve\"",
    "build": "yarn compile && yarn dist:clean && yarn dist:copy",
    "build:fast": "yarn compile && yarn dist:copy",
    "clean": "rm -rf lib && (cd ../../common && rm -rf lib) && (cd ../shared && rm -rf lib) && (cd ../email && rm -rf lib)",
    "compile": "tsc -b && tsc-alias && (cd ../../common && tsc-alias) && (cd ../shared && tsc-alias) && (cd ../email && tsc-alias) && cp -r src/public/ lib/",
    "debug": "nodemon -r tsconfig-paths/register --watch src -e ts --watch ../../common/src --watch ../shared/src --exec \"yarn build && node --inspect-brk src/serve.ts\"",
    "dev": "yarn watch:serve",
    "dist": "yarn dist:clean && yarn dist:copy",
    "dist:clean": "rm -rf dist && mkdir -p dist/common/lib dist/backend/shared/lib dist/backend/api/lib dist/backend/email/lib",
-    "dist:copy": "rsync -a --delete ../../common/lib/ dist/common/lib && rsync -a --delete ../shared/lib/ dist/backend/shared/lib && rsync -a --delete ../email/lib/ dist/backend/email/lib && rsync -a --delete ./lib/* dist/backend/api/lib && cp ../../yarn.lock dist && cp package.json dist && cp package.json dist/backend/api && cp metadata.json dist && cp metadata.json dist/backend/api",
+    "dist:copy": "./dist_copy.sh",
-    "watch": "tsc -w",
+    "lint": "npx eslint . --max-warnings 0",
-    "verify": "yarn --cwd=../.. verify",
+    "lint-fix": "npx eslint . --fix",
-    "verify:dir": "npx eslint . --max-warnings 0",
+    "prod": "npx concurrently -n COMPILE,SERVER -c cyan,green \"yarn watch:compile\" \"yarn watch:serve\"",
    "regen-types": "cd ../supabase && make ENV=prod regen-types",
    "regen-types-dev": "cd ../supabase && make ENV=dev regen-types-dev",
-    "test": "jest --config jest.config.js",
+    "test": "jest --config jest.config.ts",
-    "test:coverage": "jest --config jest.config.js --coverage"
+    "test:coverage": "jest --config jest.config.ts --coverage",
    "typecheck": "yarn build && npx tsc --noEmit",
    "watch:compile": "npx concurrently \"tsc -b --watch --preserveWatchOutput\" \"(cd ../../common && tsc-alias --watch)\" \"(cd ../shared && tsc-alias --watch)\" \"(cd ../email && tsc-alias --watch)\" \"tsc-alias --watch\"",
    "watch:serve": "tsx watch src/serve.ts"
  },
  "engines": {
    "node": ">=20.0.0"
  },
  "main": "src/serve.ts",
  "dependencies": {
    "@google-cloud/monitoring": "4.0.0",
    "@google-cloud/secret-manager": "4.2.1",
-    "@react-email/components": "0.0.33",
+    "@mozilla/readability": "0.6.0",
-    "@supabase/supabase-js": "2.38.5",
+    "@sentry/node": "10.41.0",
-    "@tiptap/core": "2.3.2",
+    "@tiptap/core": "2.10.4",
    "@tiptap/extension-blockquote": "2.3.2",
    "@tiptap/extension-bold": "2.3.2",
    "@tiptap/extension-bubble-menu": "2.3.2",
    "@tiptap/extension-floating-menu": "2.3.2",
    "@tiptap/extension-image": "2.3.2",
    "@tiptap/extension-link": "2.3.2",
    "@tiptap/extension-mention": "2.3.2",
    "@tiptap/html": "2.3.2",
    "@tiptap/pm": "2.3.2",
    "@tiptap/starter-kit": "2.3.2",
    "@tiptap/suggestion": "2.3.2",
    "colors": "1.4.0",
    "cors": "2.8.5",
-    "dayjs": "1.11.4",
+    "dayjs": "1.11.19",
    "express": "5.0.0",
    "firebase-admin": "13.5.0",
    "gcp-metadata": "6.1.0",
    "jsdom": "29.0.1",
    "jsonwebtoken": "9.0.0",
-    "lodash": "4.17.21",
+    "lodash": "4.17.23",
    "marked": "17.0.5",
    "openapi-types": "12.1.3",
-    "pg-promise": "11.4.1",
+    "pg-promise": "12.6.1",
    "posthog-node": "4.11.0",
    "react": "18.2.0",
    "react-dom": "18.2.0",
    "resend": "4.1.2",
    "string-similarity": "4.0.4",
    "swagger-jsdoc": "6.2.8",
    "swagger-ui-express": "5.0.1",
    "tsconfig-paths": "4.2.0",
    "twitter-api-v2": "1.15.0",
    "web-push": "3.6.7",
    "ws": "8.17.1",
-    "zod": "3.22.3"
+    "zod": "^3.25"
  },
  "devDependencies": {
    "@types/cors": "2.8.17",
-    "@types/react": "18.3.5",
+    "@types/jsdom": "28.0.1",
-    "@types/react-dom": "18.3.0",
+    "@types/jsonwebtoken": "^9.0.0",
    "@types/lodash": "^4.17.0",
    "@types/swagger-ui-express": "4.1.8",
    "@types/web-push": "3.6.4",
    "@types/ws": "8.5.10"
  },
  "engines": {
    "node": ">=20.9.0"
  }
 }
--- a/backend/api/src/app.ts
+++ b/backend/api/src/app.ts
--- a/backend/api/src/auth-google.ts
+++ b/backend/api/src/auth-google.ts
@@ -26,7 +26,7 @@
 //   const tokens = await tokenRes.json();
 //   if (tokens.error) {
 //     console.error('Google token error:', tokens);
-//     throw new APIError(400, 'Google token error: ' + JSON.stringify(tokens))
+//     throw APIErrors.badRequest('Google token error: ' + JSON.stringify(tokens))
 //   }
 //   console.log('Google Tokens:', tokens);
 //
--- a/backend/api/src/ban-user.ts
+++ b/backend/api/src/ban-user.ts
@@ -1,21 +1,17 @@
-import { APIError, APIHandler } from 'api/helpers/endpoint'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
-import { trackPublicEvent } from 'shared/analytics'
+import {isAdminId} from 'common/envs/constants'
-import { throwErrorIfNotMod } from 'shared/helpers/auth'
+import {trackPublicEvent} from 'shared/analytics'
-import { isAdminId } from 'common/envs/constants'
+import {throwErrorIfNotMod} from 'shared/helpers/auth'
-import { log } from 'shared/utils'
+import {updateUser} from 'shared/supabase/users'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {log} from 'shared/utils'
 import { updateUser } from 'shared/supabase/users'
 export const banUser: APIHandler<'ban-user'> = async (body, auth) => {
-  const { userId, unban } = body
+  const {userId, unban} = body
  const db = createSupabaseDirectClient()
  await throwErrorIfNotMod(auth.uid)
-  if (isAdminId(userId)) throw new APIError(403, 'Cannot ban admin')
+  if (isAdminId(userId)) throw APIErrors.forbidden('Cannot ban admin')
  await trackPublicEvent(auth.uid, 'ban user', {
    userId,
  })
-  await updateUser(db, userId, {
+  await updateUser(userId, {isBannedFromPosting: !unban})
    isBannedFromPosting: !unban,
  })
  log('updated user')
 }
--- a/backend/api/src/block-user.ts
+++ b/backend/api/src/block-user.ts
@@ -1,13 +1,11 @@
-import { APIError, APIHandler } from './helpers/endpoint'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-import { FieldVal } from 'shared/supabase/utils'
+import {updatePrivateUser} from 'shared/supabase/users'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {FieldVal} from 'shared/supabase/utils'
 import { updatePrivateUser } from 'shared/supabase/users'
-export const blockUser: APIHandler<'user/by-id/:id/block'> = async (
+import {APIErrors, APIHandler} from './helpers/endpoint'
-  { id },
+
-  auth
+export const blockUser: APIHandler<'user/by-id/:id/block'> = async ({id}, auth) => {
-) => {
+  if (auth.uid === id) throw APIErrors.badRequest('You cannot block yourself')
  if (auth.uid === id) throw new APIError(400, 'You cannot block yourself')
  const pg = createSupabaseDirectClient()
  await pg.tx(async (tx) => {
@@ -20,10 +18,7 @@ export const blockUser: APIHandler<'user/by-id/:id/block'> = async (
  })
 }
-export const unblockUser: APIHandler<'user/by-id/:id/unblock'> = async (
+export const unblockUser: APIHandler<'user/by-id/:id/unblock'> = async ({id}, auth) => {
  { id },
  auth
 ) => {
  const pg = createSupabaseDirectClient()
  await pg.tx(async (tx) => {
    await updatePrivateUser(tx, auth.uid, {
--- a/backend/api/src/cancel-event.ts
+++ b/backend/api/src/cancel-event.ts
@@ -0,0 +1,46 @@
 import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {update} from 'shared/supabase/utils'
 export const cancelEvent: APIHandler<'cancel-event'> = async (body, auth) => {
  const pg = createSupabaseDirectClient()
  // Check if event exists and user is the creator
  const event = await pg.oneOrNone<{
    id: string
    creator_id: string
    status: string
  }>(
    `SELECT id, creator_id, status
     FROM events
     WHERE id = $1`,
    [body.eventId],
  )
  if (!event) {
    throw APIErrors.notFound('Event not found')
  }
  if (event.creator_id !== auth.uid) {
    throw APIErrors.forbidden('Only the event creator can cancel this event')
  }
  if (event.status === 'cancelled') {
    throw APIErrors.badRequest('Event is already cancelled')
  }
  // Update event status to cancelled
  const {error} = await tryCatch(
    update(pg, 'events', 'id', {
      status: 'cancelled',
      id: body.eventId,
    }),
  )
  if (error) {
    throw APIErrors.internalServerError('Failed to cancel event: ' + error.message)
  }
  return {success: true}
 }
--- a/backend/api/src/cancel-rsvp.ts
+++ b/backend/api/src/cancel-rsvp.ts
@@ -0,0 +1,38 @@
 import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const cancelRsvp: APIHandler<'cancel-rsvp'> = async (body, auth) => {
  const pg = createSupabaseDirectClient()
  // Check if RSVP exists
  const rsvp = await pg.oneOrNone<{
    id: string
  }>(
    `SELECT id
     FROM events_participants
     WHERE event_id = $1
       AND user_id = $2`,
    [body.eventId, auth.uid],
  )
  if (!rsvp) {
    throw APIErrors.notFound('RSVP not found')
  }
  // Delete the RSVP
  const {error} = await tryCatch(
    pg.none(
      `DELETE
       FROM events_participants
       WHERE id = $1`,
      [rsvp.id],
    ),
  )
  if (error) {
    throw APIErrors.internalServerError('Failed to cancel RSVP: ' + error.message)
  }
  return {success: true}
 }
--- a/backend/api/src/compatible-profiles.ts
+++ b/backend/api/src/compatible-profiles.ts
@@ -1,13 +1,11 @@
 import {type APIHandler} from 'api/helpers/endpoint'
-import {createSupabaseDirectClient} from "shared/supabase/init";
+import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getCompatibleProfilesHandler: APIHandler<'compatible-profiles'> = async (props) => {
  return getCompatibleProfiles(props.userId)
 }
-export const getCompatibleProfiles = async (
+export const getCompatibleProfiles = async (userId: string) => {
  userId: string,
 ) => {
  const pg = createSupabaseDirectClient()
  const scores = await pg.map(
    `select *
@@ -15,7 +13,7 @@ export const getCompatibleProfiles = async (
     where score is not null
       and (user_id_1 = $1 or user_id_2 = $1)`,
    [userId],
-    (r) => [r.user_id_1 == userId ? r.user_id_2 : r.user_id_1, {score: r.score}] as const
+    (r) => [r.user_id_1 == userId ? r.user_id_2 : r.user_id_1, {score: r.score}] as const,
  )
  const profileCompatibilityScores = Object.fromEntries(scores)
--- a/backend/api/src/contact.ts
+++ b/backend/api/src/contact.ts
@@ -1,27 +1,25 @@
-import {APIError, APIHandler} from './helpers/endpoint'
+import {sendDiscordMessage} from 'common/discord/core'
 import {jsonToMarkdown} from 'common/md'
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {insert} from 'shared/supabase/utils'
-import {tryCatch} from 'common/util/try-catch'
+
-import {sendDiscordMessage} from "common/discord/core";
+import {APIErrors, APIHandler} from './helpers/endpoint'
 import {jsonToMarkdown} from "common/md";
 // Stores a contact message into the `contact` table
 // Web sends TipTap JSON in `content`; we store it as string in `description`.
 // If optional content metadata is provided, we include it; otherwise we fall back to user-centric defaults.
-export const contact: APIHandler<'contact'> = async (
+export const contact: APIHandler<'contact'> = async ({content, userId}, _auth) => {
  {content, userId},
  _auth
 ) => {
  const pg = createSupabaseDirectClient()
  const {error} = await tryCatch(
    insert(pg, 'contact', {
      user_id: userId,
      content: JSON.stringify(content),
-    })
+    }),
  )
-  if (error) throw new APIError(500, 'Failed to submit contact message')
+  if (error) throw APIErrors.internalServerError('Failed to submit contact message')
  const continuation = async () => {
    try {
--- a/backend/api/src/create-bookmarked-search.ts
+++ b/backend/api/src/create-bookmarked-search.ts
@@ -1,9 +1,10 @@
 import {APIHandler} from './helpers/endpoint'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {APIHandler} from './helpers/endpoint'
 export const createBookmarkedSearch: APIHandler<'create-bookmarked-search'> = async (
  props,
-  auth
+  auth,
 ) => {
  const creator_id = auth.uid
  const {search_filters, location = null, search_name = null} = props
@@ -16,7 +17,7 @@ export const createBookmarkedSearch: APIHandler<'create-bookmarked-search'> = as
      VALUES ($1, $2, $3, $4)
      RETURNING *
    `,
-    [creator_id, search_filters, location, search_name]
+    [creator_id, search_filters, location, search_name],
  )
  return inserted
--- a/backend/api/src/create-comment.ts
+++ b/backend/api/src/create-comment.ts
@@ -1,35 +1,28 @@
-import { APIError, APIHandler } from 'api/helpers/endpoint'
+import {type JSONContent} from '@tiptap/core'
-import { type JSONContent } from '@tiptap/core'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
-import { getPrivateUser, getUser } from 'shared/utils'
+import {Notification} from 'common/notifications'
-import {
+import {convertComment} from 'common/supabase/comment'
-  createSupabaseDirectClient,
+import {type Row} from 'common/supabase/utils'
-  SupabaseDirectClient,
+import {User} from 'common/user'
-} from 'shared/supabase/init'
+import {getNotificationDestinationsForUser} from 'common/user-notification-preferences'
-import { getNotificationDestinationsForUser } from 'common/user-notification-preferences'
+import {richTextToString} from 'common/util/parse'
 import { Notification } from 'common/notifications'
 import { insertNotificationToSupabase } from 'shared/supabase/notifications'
 import { User } from 'common/user'
 import { richTextToString } from 'common/util/parse'
 import * as crypto from 'crypto'
-import { sendNewEndorsementEmail } from 'email/functions/helpers'
+import {sendNewEndorsementEmail} from 'email/functions/helpers'
-import { type Row } from 'common/supabase/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-import { broadcastUpdatedComment } from 'shared/websockets/helpers'
+import {insertNotificationToSupabase} from 'shared/supabase/notifications'
-import { convertComment } from 'common/supabase/comment'
+import {getPrivateUser, getUser} from 'shared/utils'
 import {broadcastUpdatedComment} from 'shared/websockets/helpers'
 export const MAX_COMMENT_JSON_LENGTH = 20000
 export const createComment: APIHandler<'create-comment'> = async (
-  { userId, content: submittedContent, replyToCommentId },
+  {userId, content: submittedContent, replyToCommentId},
-  auth
+  auth,
 ) => {
-  const { creator, content } = await validateComment(
+  const {creator, content} = await validateComment(userId, auth.uid, submittedContent)
    userId,
    auth.uid,
    submittedContent
  )
  const onUser = await getUser(userId)
-  if (!onUser) throw new APIError(404, 'User not found')
+  if (!onUser) throw APIErrors.notFound('User not found')
  const pg = createSupabaseDirectClient()
  const comment = await pg.one<Row<'profile_comments'>>(
@@ -43,7 +36,7 @@ export const createComment: APIHandler<'create-comment'> = async (
      userId,
      content,
      replyToCommentId,
-    ]
+    ],
  )
  if (onUser.id !== creator.id)
    await createNewCommentOnProfileNotification(
@@ -51,37 +44,31 @@ export const createComment: APIHandler<'create-comment'> = async (
      creator,
      richTextToString(content),
      comment.id,
      pg
    )
  broadcastUpdatedComment(convertComment(comment))
-  return { status: 'success' }
+  return {status: 'success'}
 }
-const validateComment = async (
+const validateComment = async (userId: string, creatorId: string, content: JSONContent) => {
  userId: string,
  creatorId: string,
  content: JSONContent
 ) => {
  const creator = await getUser(creatorId)
-  if (!creator) throw new APIError(401, 'Your account was not found')
+  if (!creator) throw APIErrors.unauthorized('Your account was not found')
-  if (creator.isBannedFromPosting) throw new APIError(403, 'You are banned')
+  if (creator.isBannedFromPosting) throw APIErrors.forbidden('You are banned')
  const otherUser = await getPrivateUser(userId)
-  if (!otherUser) throw new APIError(404, 'Other user not found')
+  if (!otherUser) throw APIErrors.notFound('Other user not found')
  if (otherUser.blockedUserIds.includes(creatorId)) {
-    throw new APIError(404, 'User has blocked you')
+    throw APIErrors.notFound('User has blocked you')
  }
  if (JSON.stringify(content).length > MAX_COMMENT_JSON_LENGTH) {
-    throw new APIError(
+    throw APIErrors.badRequest(
-      400,
+      `Comment is too long; should be less than ${MAX_COMMENT_JSON_LENGTH} as a JSON string.`,
      `Comment is too long; should be less than ${MAX_COMMENT_JSON_LENGTH} as a JSON string.`
    )
  }
-  return { content, creator }
+  return {content, creator}
 }
 const createNewCommentOnProfileNotification = async (
@@ -89,14 +76,15 @@ const createNewCommentOnProfileNotification = async (
  creator: User,
  sourceText: string,
  commentId: number,
  pg: SupabaseDirectClient
 ) => {
  const privateUser = await getPrivateUser(onUser.id)
  if (!privateUser) return
  const id = crypto.randomUUID()
  const reason = 'new_endorsement'
-  const { sendToBrowser, sendToMobile, sendToEmail } =
+  const {sendToBrowser, sendToMobile, sendToEmail} = getNotificationDestinationsForUser(
-    getNotificationDestinationsForUser(privateUser, reason)
+    privateUser,
    reason,
  )
  const notification: Notification = {
    id,
    userId: privateUser.id,
@@ -113,7 +101,7 @@ const createNewCommentOnProfileNotification = async (
    sourceSlug: onUser.username,
  }
  if (sendToBrowser) {
-    await insertNotificationToSupabase(notification, pg)
+    await insertNotificationToSupabase(notification)
  }
  if (sendToMobile) {
    // await createPushNotification(
--- a/backend/api/src/create-compatibility-question.ts
+++ b/backend/api/src/create-compatibility-question.ts
@@ -1,27 +1,29 @@
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {tryCatch} from 'common/util/try-catch'
-import { getUser } from 'shared/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-import { APIHandler, APIError } from './helpers/endpoint'
+import {insert} from 'shared/supabase/utils'
-import { insert } from 'shared/supabase/utils'
+import {getUser} from 'shared/utils'
 import { tryCatch } from 'common/util/try-catch'
-export const createCompatibilityQuestion: APIHandler<
+import {APIErrors, APIHandler} from './helpers/endpoint'
-  'create-compatibility-question'
+
-> = async ({ question, options }, auth) => {
+export const createCompatibilityQuestion: APIHandler<'create-compatibility-question'> = async (
  {question, options},
  auth,
 ) => {
  const creator = await getUser(auth.uid)
-  if (!creator) throw new APIError(401, 'Your account was not found')
+  if (!creator) throw APIErrors.unauthorized('Your account was not found')
  const pg = createSupabaseDirectClient()
-  const { data, error } = await tryCatch(
+  const {data, error} = await tryCatch(
    insert(pg, 'compatibility_prompts', {
      creator_id: creator.id,
      question,
      answer_type: 'compatibility_multiple_choice',
      multiple_choice_options: options,
-    })
+    }),
  )
-  if (error) throw new APIError(401, 'Error creating question')
+  if (error) throw APIErrors.internalServerError('Error creating question')
-  return { question: data }
+  return {question: data}
 }
--- a/backend/api/src/create-event.ts
+++ b/backend/api/src/create-event.ts
@@ -0,0 +1,67 @@
 import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {sendDiscordMessage} from 'common/discord/core'
 import {DEPLOYED_WEB_URL} from 'common/envs/constants'
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {insert} from 'shared/supabase/utils'
 export const createEvent: APIHandler<'create-event'> = async (body, auth) => {
  const pg = createSupabaseDirectClient()
  // Validate location
  if (body.locationType === 'in_person' && !body.locationAddress) {
    throw APIErrors.badRequest('In-person events require a location address')
  }
  if (body.locationType === 'online' && !body.locationUrl) {
    throw APIErrors.badRequest('Online events require a location URL')
  }
  // Validate dates
  const startTime = new Date(body.eventStartTime)
  if (startTime < new Date()) {
    throw APIErrors.badRequest('Event start time must be in the future')
  }
  if (body.eventEndTime) {
    const endTime = new Date(body.eventEndTime)
    if (endTime <= startTime) {
      throw APIErrors.badRequest('Event end time must be after start time')
    }
  }
  const {data, error} = await tryCatch(
    insert(pg, 'events', {
      creator_id: auth.uid,
      title: body.title,
      description: body.description,
      location_type: body.locationType,
      location_address: body.locationAddress,
      location_url: body.locationUrl,
      event_start_time: body.eventStartTime,
      event_end_time: body.eventEndTime,
      max_participants: body.maxParticipants,
    }), // consider using convertObjectToSQLRow() to convert snake case to camel case
  )
  if (error) {
    throw APIErrors.internalServerError('Failed to create event: ' + error.message)
  }
  const continuation = async () => {
    try {
      const user = await pg.oneOrNone(`select name from users where id = $1 `, [auth.uid])
      const message: string = `${user.name} created a new [event](${DEPLOYED_WEB_URL}/events)!\n**${body.title}**\n${body.description}\nStart: ${body.eventStartTime.replace('T', ' @ ').replace('.000Z', ' UTC')}`
      await sendDiscordMessage(message, 'general')
    } catch (e) {
      console.error('Failed to send discord event', e)
    }
  }
  return {
    result: {
      success: true,
      event: data,
    },
    continue: continuation,
  }
 }
--- a/backend/api/src/create-notification.ts
+++ b/backend/api/src/create-notification.ts
@@ -1,11 +1,38 @@
-import {createSupabaseDirectClient, SupabaseDirectClient} from 'shared/supabase/init'
+import {ANDROID_APP_URL} from 'common/constants'
 import {Notification} from 'common/notifications'
-import {insertNotificationToSupabase} from 'shared/supabase/notifications'
+import {Row} from 'common/supabase/utils'
-import {tryCatch} from "common/util/try-catch";
+import {tryCatch} from 'common/util/try-catch'
-import {Row} from "common/supabase/utils";
+import {createSupabaseDirectClient, SupabaseDirectClient} from 'shared/supabase/init'
 import {
  createBulkNotification,
  insertNotificationToSupabase,
  NotificationTemplateTranslation,
 } from 'shared/supabase/notifications'
 const COMPASS_LOGO_URL =
  'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Fcompass-192.png?alt=media&token=9fd251c5-fc43-4375-b629-1a8f4bbe8185'
 export const createAndroidReleaseNotifications = async () => {
  const createdTime = Date.now()
  const id = `android-release-${createdTime}`
  const notification: Notification = {
    id,
    userId: 'todo',
    createdTime: createdTime,
    isSeen: false,
    sourceType: 'info',
    sourceUpdateType: 'created',
    sourceSlug: ANDROID_APP_URL,
    sourceUserAvatarUrl: COMPASS_LOGO_URL,
    title: 'Android App Released on Google Play',
    sourceText:
      'The Compass Android app is now publicly available on Google Play! Download it today to stay connected on the go.',
  }
  return await createNotifications(notification)
 }
 export const createAndroidTestNotifications = async () => {
-  const createdTime = Date.now();
+  const createdTime = Date.now()
  const id = `android-test-${createdTime}`
  const notification: Notification = {
    id,
@@ -15,15 +42,16 @@ export const createAndroidTestNotifications = async () => {
    sourceType: 'info',
    sourceUpdateType: 'created',
    sourceSlug: '/contact',
-    sourceUserAvatarUrl: 'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Fcompass-192.png?alt=media&token=9fd251c5-fc43-4375-b629-1a8f4bbe8185',
+    sourceUserAvatarUrl: COMPASS_LOGO_URL,
    title: 'Android App Ready for Review — Help Us Unlock the Google Play Release',
-    sourceText: 'To release our app, Google requires a closed test with at least 12 testers for 14 days. Please share your Google Play–registered email address so we can add you as a tester and complete the review process.',
+    sourceText:
      'To release our app, Google requires a closed test with at least 12 testers for 14 days. Please share your Google Play–registered email address so we can add you as a tester and complete the review process.',
  }
  return await createNotifications(notification)
 }
 export const createShareNotifications = async () => {
-  const createdTime = Date.now();
+  const createdTime = Date.now()
  const id = `share-${createdTime}`
  const notification: Notification = {
    id,
@@ -33,7 +61,8 @@ export const createShareNotifications = async () => {
    sourceType: 'info',
    sourceUpdateType: 'created',
    sourceSlug: '/contact',
-    sourceUserAvatarUrl: 'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Ficon-outreach-outstrip-outreach-272151502.jpg?alt=media&token=6d6fcecb-818c-4fca-a8e0-d2d0069b9445',
+    sourceUserAvatarUrl:
      'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Ficon-outreach-outstrip-outreach-272151502.jpg?alt=media&token=6d6fcecb-818c-4fca-a8e0-d2d0069b9445',
    title: 'Give us tips to reach more people',
    sourceText: '250 members already! Tell us where and how we can best share Compass.',
  }
@@ -41,7 +70,7 @@ export const createShareNotifications = async () => {
 }
 export const createVoteNotifications = async () => {
-  const createdTime = Date.now();
+  const createdTime = Date.now()
  const id = `vote-${createdTime}`
  const notification: Notification = {
    id,
@@ -51,18 +80,17 @@ export const createVoteNotifications = async () => {
    sourceType: 'info',
    sourceUpdateType: 'created',
    sourceSlug: '/vote',
-    sourceUserAvatarUrl: 'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Fvote-icon-design-free-vector.jpg?alt=media&token=f70b6d14-0511-49b2-830d-e7cabf7bb751',
+    sourceUserAvatarUrl:
      'https://firebasestorage.googleapis.com/v0/b/compass-130ba.firebasestorage.app/o/misc%2Fvote-icon-design-free-vector.jpg?alt=media&token=f70b6d14-0511-49b2-830d-e7cabf7bb751',
    title: 'New Proposals & Votes Page',
-    sourceText: 'Create proposals and vote on other people\'s suggestions!',
+    sourceText: "Create proposals and vote on other people's suggestions!",
  }
  return await createNotifications(notification)
 }
 export const createNotifications = async (notification: Notification) => {
  const pg = createSupabaseDirectClient()
-  const {data: users, error} = await tryCatch(
+  const {data: users, error} = await tryCatch(pg.many<Row<'users'>>('select * from users'))
    pg.many<Row<'users'>>('select * from users')
  )
  if (error) {
    console.error('Error fetching users', error)
@@ -87,8 +115,95 @@ export const createNotifications = async (notification: Notification) => {
  }
 }
-export const createNotification = async (user: Row<'users'>, notification: Notification, pg: SupabaseDirectClient) => {
+export const createNotification = async (
  user: Row<'users'>,
  notification: Notification,
  pg: SupabaseDirectClient,
 ) => {
  notification.userId = user.id
  console.log('notification', user.username)
  return await insertNotificationToSupabase(notification, pg)
 }
 /**
 * Send "Events now available" notification to all users
 * Uses the new template-based system for efficient bulk notifications
 */
 export const createEventsAvailableNotifications = async () => {
  // Create template and bulk notifications using the new system
  const {templateId, count} = await createBulkNotification({
    sourceType: 'info',
    title: 'New Events Page',
    sourceText:
      'You can now create and join events on Compass! Meet up with other members online or in person for workshops, social events, etc.',
    sourceSlug: '/events',
    sourceUserAvatarUrl: COMPASS_LOGO_URL,
    sourceUpdateType: 'created',
  })
  console.log(`Created events notification template ${templateId} for ${count} users`)
  return {
    success: true,
    templateId,
    userCount: count,
  }
 }
 export const createSomeNotifications = async () => {
  const translations: Omit<NotificationTemplateTranslation, 'template_id' | 'created_time'>[] = [
    // French translation
    {
      locale: 'fr',
      title: 'Bonjour',
      source_text: "C'est une notif",
    },
    // German translation
    {
      locale: 'de',
      title: 'Halo',
      source_text: 'Dis das',
    },
  ]
  // Create template with translations
  const {templateId, count} = await createBulkNotification(
    {
      sourceType: 'hello',
      title: 'Hello world',
      sourceText: 'This is a notification',
      sourceSlug: '/settings',
      sourceUserAvatarUrl: COMPASS_LOGO_URL,
      sourceUpdateType: 'created',
    },
    translations,
  )
  console.log(`Created some notification template ${templateId} for ${count} users`)
 }
 export const createInterestIndicatorNotifications = async () => {
  const translations: Omit<NotificationTemplateTranslation, 'template_id' | 'created_time'>[] = [
    // French translation
    {
      locale: 'fr',
      title: 'Nouveau : Signaux d’intérêt privés',
      source_text:
        'Vous pouvez désormais exprimer votre intérêt en privé à la fin de chaque profil. L’autre personne n’est informée que si l’intérêt est réciproque.',
    },
  ]
  // Create template with translations
  const {templateId, count} = await createBulkNotification(
    {
      sourceType: 'info',
      title: 'New: Private interest signals',
      sourceText:
        'You can now express interest privately at the end of each profile. The other person is only notified if it’s mutual.',
      sourceSlug: '/',
      sourceUserAvatarUrl: COMPASS_LOGO_URL,
      sourceUpdateType: 'created',
    },
    translations,
  )
  console.log(`Created some notification template ${templateId} for ${count} users`)
 }
--- a/backend/api/src/create-private-user-message-channel.ts
+++ b/backend/api/src/create-private-user-message-channel.ts
@@ -1,52 +1,71 @@
-import { APIError, APIHandler } from 'api/helpers/endpoint'
+import {getConnectionInterests} from 'api/get-connection-interests'
-import { filterDefined } from 'common/util/array'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
-import { uniq } from 'lodash'
+import {addUsersToPrivateMessageChannel} from 'api/helpers/private-messages'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {filterDefined} from 'common/util/array'
-import { addUsersToPrivateMessageChannel } from 'api/helpers/private-messages'
+import * as admin from 'firebase-admin'
-import { getPrivateUser, getUser } from 'shared/utils'
+import {uniq} from 'lodash'
 import {getProfile} from 'shared/profiles/supabase'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {getPrivateUser, getUser} from 'shared/utils'
 export const createPrivateUserMessageChannel: APIHandler<
  'create-private-user-message-channel'
 > = async (body, auth) => {
  // Do not use auth.creds.data as its info can be staled. It comes from a client token, which refreshes hourly or so
  const user = await admin.auth().getUser(auth.uid)
  // console.log(JSON.stringify(user, null, 2))
  if (!user?.emailVerified) {
    throw APIErrors.forbidden('You must verify your email to contact people.')
  }
  const userIds = uniq(body.userIds.concat(auth.uid))
  const pg = createSupabaseDirectClient()
  const creatorId = auth.uid
  const creator = await getUser(creatorId)
-  if (!creator) throw new APIError(401, 'Your account was not found')
+  if (!creator) throw APIErrors.unauthorized('Your account was not found')
-  if (creator.isBannedFromPosting) throw new APIError(403, 'You are banned')
+  if (creator.isBannedFromPosting) throw APIErrors.forbidden('You are banned')
-  const toPrivateUsers = filterDefined(
+  const toPrivateUsers = filterDefined(await Promise.all(userIds.map((id) => getPrivateUser(id))))
    await Promise.all(userIds.map((id) => getPrivateUser(id)))
  )
  if (toPrivateUsers.length !== userIds.length)
-    throw new APIError(
+    throw APIErrors.notFound(
      404,
      `Private user ${userIds.find(
-        (uid) => !toPrivateUsers.map((p) => p.id).includes(uid)
+        (uid) => !toPrivateUsers.map((p: any) => p.id).includes(uid),
-      )} not found`
+      )} not found`,
    )
  if (
-    toPrivateUsers.some((user) =>
+    toPrivateUsers.some((user: any) =>
-      user.blockedUserIds.some((blockedId) => userIds.includes(blockedId))
+      user.blockedUserIds.some((blockedId: string) => userIds.includes(blockedId)),
    )
  ) {
-    throw new APIError(
+    throw APIErrors.forbidden('One of the users has blocked another user in the list')
-      403,
+  }
-      'One of the users has blocked another user in the list'
+
-    )
+  for (const u of toPrivateUsers) {
    const p = await getProfile(u.id)
    if (p && !p.allow_direct_messaging) {
      const {interests, targetInterests} = await getConnectionInterests(
        {targetUserId: u.id},
        auth.uid,
      )
      const matches = interests.filter((interest: string[]) => targetInterests.includes(interest))
      if (matches.length > 0) continue
      const failedUser = await getUser(u.id)
      throw APIErrors.forbidden(`${failedUser?.username} has disabled direct messaging`)
    }
  }
  const currentChannel = await pg.oneOrNone(
    `
-        select channel_id from private_user_message_channel_members
+        select channel_id
-          group by channel_id
+        from private_user_message_channel_members
-          having array_agg(user_id::text) @> array[$1]::text[]
+        group by channel_id
-          and array_agg(user_id::text) <@ array[$1]::text[]
+        having array_agg(user_id::text) @> array [$1]::text[]
-      `,
+           and array_agg(user_id::text) <@ array [$1]::text[]
-    [userIds]
+    `,
    [userIds],
  )
  if (currentChannel)
    return {
@@ -55,17 +74,19 @@ export const createPrivateUserMessageChannel: APIHandler<
    }
  const channel = await pg.one(
-    `insert into private_user_message_channels default values returning id`
+    `insert into private_user_message_channels default
     values
     returning id`,
  )
  await pg.none(
    `insert into private_user_message_channel_members (channel_id, user_id, role, status)
-       values ($1, $2, 'creator', 'joined')
+     values ($1, $2, 'creator', 'joined')
-      `,
+    `,
-    [channel.id, creatorId]
+    [channel.id, creatorId],
  )
  const memberIds = userIds.filter((id) => id !== creatorId)
  await addUsersToPrivateMessageChannel(memberIds, channel.id, pg)
-  return { status: 'success', channelId: Number(channel.id) }
+  return {status: 'success', channelId: Number(channel.id)}
 }
--- a/backend/api/src/create-private-user-message.ts
+++ b/backend/api/src/create-private-user-message.ts
@@ -1,30 +1,22 @@
 import {APIError, APIHandler} from 'api/helpers/endpoint'
 import {getUser} from 'shared/utils'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {MAX_COMMENT_JSON_LENGTH} from 'api/create-comment'
 import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {createPrivateUserMessageMain} from 'api/helpers/private-messages'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {getUser} from 'shared/utils'
-export const createPrivateUserMessage: APIHandler<
+export const createPrivateUserMessage: APIHandler<'create-private-user-message'> = async (
-  'create-private-user-message'
+  body,
-> = async (body, auth) => {
+  auth,
 ) => {
  const {content, channelId} = body
  if (JSON.stringify(content).length > MAX_COMMENT_JSON_LENGTH) {
-    throw new APIError(
+    throw APIErrors.badRequest(`Message JSON should be less than ${MAX_COMMENT_JSON_LENGTH}`)
      400,
      `Message JSON should be less than ${MAX_COMMENT_JSON_LENGTH}`
    )
  }
  const creator = await getUser(auth.uid)
-  if (!creator) throw new APIError(401, 'Your account was not found')
+  if (!creator) throw APIErrors.unauthorized('Your account was not found')
-  if (creator.isBannedFromPosting) throw new APIError(403, 'You are banned')
+  if (creator.isBannedFromPosting) throw APIErrors.forbidden('You are banned')
  const pg = createSupabaseDirectClient()
-  return await createPrivateUserMessageMain(
+  return await createPrivateUserMessageMain(creator, channelId, content, pg, 'private')
    creator,
    channelId,
    content,
    pg,
    'private'
  )
 }
--- a/backend/api/src/create-profile.ts
+++ b/backend/api/src/create-profile.ts
@@ -1,44 +1,44 @@
-import { APIError, APIHandler } from 'api/helpers/endpoint'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {sendDiscordMessage} from 'common/discord/core'
-import { log, getUser } from 'shared/utils'
+import {debug} from 'common/logger'
 import {jsonToMarkdown} from 'common/md'
 import {trimStrings} from 'common/parsing'
 import {HOUR_MS, MINUTE_MS, sleep} from 'common/util/time'
-import { removePinnedUrlFromPhotoUrls } from 'shared/profiles/parse-photos'
+import {tryCatch} from 'common/util/try-catch'
-import { track } from 'shared/analytics'
+import {track} from 'shared/analytics'
-import { updateUser } from 'shared/supabase/users'
+import {removePinnedUrlFromPhotoUrls} from 'shared/profiles/parse-photos'
-import { tryCatch } from 'common/util/try-catch'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-import { insert } from 'shared/supabase/utils'
+import {updateUserData} from 'shared/supabase/users'
-import {sendDiscordMessage} from "common/discord/core";
+import {insert} from 'shared/supabase/utils'
-import {jsonToMarkdown} from "common/md";
+import {getUser, log} from 'shared/utils'
 export const createProfile: APIHandler<'create-profile'> = async (body, auth) => {
  const pg = createSupabaseDirectClient()
-  const { data: existingUser } = await tryCatch(
+  const {data: existingProfile} = await tryCatch(
-    pg.oneOrNone<{ id: string }>('select id from profiles where user_id = $1', [
+    pg.oneOrNone<{id: string}>('select id from profiles where user_id = $1', [auth.uid]),
      auth.uid,
    ])
  )
-  if (existingUser) {
+  if (existingProfile) {
-    throw new APIError(400, 'User already exists')
+    throw APIErrors.badRequest('Profile already exists')
  }
  await removePinnedUrlFromPhotoUrls(body)
  trimStrings(body)
  const user = await getUser(auth.uid)
-  if (!user) throw new APIError(401, 'Your account was not found')
+  if (!user) throw APIErrors.unauthorized('Your account was not found')
  if (user.createdTime > Date.now() - HOUR_MS) {
    // If they just signed up, set their avatar to be their pinned photo
-    updateUser(pg, auth.uid, { avatarUrl: body.pinned_url })
+    updateUserData(pg, auth.uid, {avatarUrl: body.pinned_url || undefined})
  }
-  console.debug('body', body)
+  debug('body', body)
-  const { data, error } = await tryCatch(
+  const {data, error} = await tryCatch(insert(pg, 'profiles', {user_id: auth.uid, ...body}))
    insert(pg, 'profiles', { user_id: auth.uid, ...body })
  )
  if (error) {
    log.error('Error creating user: ' + error.message)
-    throw new APIError(500, 'Error creating user')
+    throw APIErrors.internalServerError('Error creating user')
  }
  log('Created profile', data)
@@ -54,7 +54,7 @@ export const createProfile: APIHandler<'create-profile'> = async (body, auth) =>
      // So we can sse their full profile as soon as we get the notif on discord. And that allows OG to pull their pic for the link preview.
      // Regardless, you need to wait for at least 5 seconds that the profile is fully in the db—otherwise ISR may cache "profile not created yet"
      await sleep(10 * MINUTE_MS)
-      let message: string = `[**${user.name}**](https://www.compassmeet.com/${user.username}) just created a profile`
+      let message: string = `[**${user.name}**](https://compassmeet.com/${user.username}) just created a profile`
      if (body.bio) {
        const bioText = jsonToMarkdown(body.bio)
        if (bioText) message += `\n${bioText}`
@@ -64,10 +64,8 @@ export const createProfile: APIHandler<'create-profile'> = async (body, auth) =>
      console.error('Failed to send discord new profile', e)
    }
    try {
-      const nProfiles = await pg.one<number>(
+      const nProfiles = await pg.one<number>(`SELECT count(*) FROM profiles`, [], (r) =>
-        `SELECT count(*) FROM profiles`,
+        Number(r.count),
        [],
        (r) => Number(r.count)
      )
      const isMilestone = (n: number) => {
@@ -76,14 +74,10 @@ export const createProfile: APIHandler<'create-profile'> = async (body, auth) =>
          n % 50 === 0
        )
      }
-      console.debug(nProfiles, isMilestone(nProfiles))
+      debug(nProfiles, isMilestone(nProfiles))
      if (isMilestone(nProfiles)) {
-        await sendDiscordMessage(
+        await sendDiscordMessage(`We just reached **${nProfiles}** total profiles! 🎉`, 'general')
          `We just reached **${nProfiles}** total profiles! 🎉`,
          'general',
        )
      }
    } catch (e) {
      console.error('Failed to send discord user milestone', e)
    }
--- a/backend/api/src/create-user-and-profile.ts
+++ b/backend/api/src/create-user-and-profile.ts
@@ -0,0 +1,218 @@
 import {setLastOnlineTimeUser} from 'api/set-last-online-time'
 import {setProfileOptions} from 'api/update-options'
 import {APIErrors} from 'common/api/utils'
 import {defaultLocale} from 'common/constants'
 import {sendDiscordMessage} from 'common/discord/core'
 import {DEPLOYED_WEB_URL} from 'common/envs/constants'
 import {debug} from 'common/logger'
 import {trimStrings} from 'common/parsing'
 import {convertPrivateUser, convertUser} from 'common/supabase/users'
 import {PrivateUser} from 'common/user'
 import {getDefaultNotificationPreferences} from 'common/user-notification-preferences'
 import {cleanDisplayName} from 'common/util/clean-username'
 import {removeUndefinedProps} from 'common/util/object'
 import {sendWelcomeEmail} from 'email/functions/helpers'
 import * as admin from 'firebase-admin'
 import {getIp, track} from 'shared/analytics'
 import {getBucket} from 'shared/firebase-utils'
 import {generateAvatarUrl} from 'shared/helpers/generate-and-update-avatar-urls'
 import {removePinnedUrlFromPhotoUrls} from 'shared/profiles/parse-photos'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {insert} from 'shared/supabase/utils'
 import {getUserByUsername, log} from 'shared/utils'
 import {APIHandler} from './helpers/endpoint'
 import {validateUsername} from './validate-username'
 export const createUserAndProfile: APIHandler<'create-user-and-profile'> = async (
  props,
  auth,
  req,
 ) => {
  trimStrings(props)
  const {
    deviceToken,
    locale = defaultLocale,
    username,
    name,
    profile,
    interests,
    causes,
    work,
  } = props
  await removePinnedUrlFromPhotoUrls(profile)
  // const host = req.get('referer')
  const ip = getIp(req)
  const pg = createSupabaseDirectClient()
  const cleanName = cleanDisplayName(name || 'User')
  const fbUser = await admin.auth().getUser(auth.uid)
  const email = fbUser.email
  const bucket = getBucket()
  const avatarUrl = profile.pinned_url ?? (await generateAvatarUrl(auth.uid, cleanName, bucket))
  let finalUsername = username
  const validation = await validateUsername(username)
  if (validation.suggestedUsername) {
    finalUsername = validation.suggestedUsername
  } else if (!validation.valid) {
    throw APIErrors.badRequest(validation.message || 'Invalid username', {
      field: 'username',
      resolution:
        'Usernames must be 3–25 characters and contain only letters, numbers, or underscores.',
    })
  }
  // The pg.tx() call wraps several database operations in a single atomic transaction,
  // ensuring they either all succeed or all fail together.
  const {user, privateUser, newProfileRow} = await pg.tx(async (tx) => {
    const existingUser = await tx.oneOrNone('select id from users where id = $1', [auth.uid])
    if (existingUser) {
      const existingProfile = await tx.oneOrNone('select id from profiles where user_id = $1', [
        auth.uid,
      ])
      if (existingProfile) {
        throw APIErrors.conflict('An account for this user already exists', {
          resolution:
            'If you already have an account, try logging in. If you believe this is a mistake, contact support.',
        })
      } else {
        await pg.none('DELETE FROM users WHERE id = $1', [auth.uid])
      }
    }
    const sameNameUser = await getUserByUsername(finalUsername, tx)
    if (sameNameUser) {
      throw APIErrors.conflict('Username is already taken', {
        field: 'username',
        resolution: 'Please choose a different username.',
      })
    }
    const privateUserData: PrivateUser = {
      id: auth.uid,
      email,
      locale,
      initialIpAddress: ip,
      initialDeviceToken: deviceToken,
      notificationPreferences: getDefaultNotificationPreferences(),
      blockedUserIds: [],
      blockedByUserIds: [],
    }
    const newUserRow = await insert(tx, 'users', {
      id: auth.uid,
      name: cleanName,
      username: finalUsername,
      avatar_url: avatarUrl,
      is_banned_from_posting: Boolean(
        (deviceToken && bannedDeviceTokens.includes(deviceToken)) ||
          (ip && bannedIpAddresses.includes(ip)),
      ),
      data: {},
    })
    const newPrivateUserRow = await insert(tx, 'private_users', {
      id: privateUserData.id,
      data: privateUserData,
    })
    const profileData = removeUndefinedProps(profile)
    const newProfileRow = await insert(tx, 'profiles', {
      user_id: auth.uid,
      ...profileData,
    })
    const profileId = newProfileRow.id
    await setProfileOptions(tx, profileId, auth.uid, 'interests', interests)
    await setProfileOptions(tx, profileId, auth.uid, 'causes', causes)
    await setProfileOptions(tx, profileId, auth.uid, 'work', work)
    return {
      user: convertUser(newUserRow),
      privateUser: convertPrivateUser(newPrivateUserRow),
      newProfileRow,
    }
  })
  log('created user and profile', {username: user.username, firebaseId: auth.uid})
  const continuation = async () => {
    try {
      await track(auth.uid, 'create profile', {username: user.username})
    } catch (e) {
      console.error('Failed to track create profile', e)
    }
    try {
      await sendWelcomeEmail(user, privateUser)
    } catch (e) {
      console.error('Failed to sendWelcomeEmail', e)
    }
    try {
      await setLastOnlineTimeUser(auth.uid)
    } catch (e) {
      console.error('Failed to set last online time', e)
    }
    try {
      const message: string = `[**${user.name}**](${DEPLOYED_WEB_URL}/${user.username}) just created a profile`
      await sendDiscordMessage(message, 'members')
    } catch (e) {
      console.error('Failed to send discord new profile', e)
    }
    try {
      const nProfiles = await pg.one<number>(`SELECT count(*) FROM profiles`, [], (r) =>
        Number(r.count),
      )
      const isMilestone = (n: number) => {
        return (
          [15, 20, 30, 40].includes(n) || // early milestones
          n % 50 === 0
        )
      }
      debug(nProfiles, isMilestone(nProfiles))
      if (isMilestone(nProfiles)) {
        await sendDiscordMessage(`We just reached **${nProfiles}** total profiles! 🎉`, 'general')
      }
    } catch (e) {
      console.error('Failed to send discord user milestone', e)
    }
  }
  return {
    result: {
      // include everything the frontend needs
      user,
      privateUser,
      profile: {
        ...newProfileRow,
        interests: interests ?? [],
        causes: causes ?? [],
        work: work ?? [],
      },
    },
    continue: continuation,
  }
 }
 const bannedDeviceTokens = [
  'fa807d664415',
  'dcf208a11839',
  'bbf18707c15d',
  '4c2d15a6cc0c',
  '0da6b4ea79d3',
 ]
 const bannedIpAddresses: string[] = [
  '24.176.214.250',
  '2607:fb90:bd95:dbcd:ac39:6c97:4e35:3fed',
  '2607:fb91:389:ddd0:ac39:8397:4e57:f060',
  '2607:fb90:ed9a:4c8f:ac39:cf57:4edd:4027',
  '2607:fb90:bd36:517a:ac39:6c91:812c:6328',
 ]
--- a/backend/api/src/create-user.ts
+++ b/backend/api/src/create-user.ts
@@ -1,50 +1,51 @@
-import * as admin from 'firebase-admin'
+import {setLastOnlineTimeUser} from 'api/set-last-online-time'
-import {PrivateUser} from 'common/user'
+import {defaultLocale} from 'common/constants'
 import {randomString} from 'common/util/random'
 import {cleanDisplayName, cleanUsername} from 'common/util/clean-username'
 import {getIp, track} from 'shared/analytics'
 import {APIError, APIHandler} from './helpers/endpoint'
 import {getDefaultNotificationPreferences} from 'common/user-notification-preferences'
 import {removeUndefinedProps} from 'common/util/object'
 import {generateAvatarUrl} from 'shared/helpers/generate-and-update-avatar-urls'
 import {RESERVED_PATHS} from 'common/envs/constants'
-import {getUser, getUserByUsername, log} from 'shared/utils'
+import {convertPrivateUser, convertUser} from 'common/supabase/users'
 import {PrivateUser} from 'common/user'
 import {getDefaultNotificationPreferences} from 'common/user-notification-preferences'
 import {cleanDisplayName, cleanUsername} from 'common/util/clean-username'
 import {removeUndefinedProps} from 'common/util/object'
 import {randomString} from 'common/util/random'
 import {sendWelcomeEmail} from 'email/functions/helpers'
 import * as admin from 'firebase-admin'
 import {getIp, track} from 'shared/analytics'
 import {getBucket} from 'shared/firebase-utils'
 import {generateAvatarUrl} from 'shared/helpers/generate-and-update-avatar-urls'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {insert} from 'shared/supabase/utils'
-import {convertPrivateUser, convertUser} from 'common/supabase/users'
+import {getUser, getUserByUsername, log} from 'shared/utils'
 import {getBucket} from "shared/firebase-utils";
 import {sendWelcomeEmail} from "email/functions/helpers";
 import {setLastOnlineTimeUser} from "api/set-last-online-time";
 import {IS_LOCAL} from "common/hosting/constants";
-export const createUser: APIHandler<'create-user'> = async (
+import {APIErrors, APIHandler} from './helpers/endpoint'
  props,
  auth,
  req
 ) => {
  const {deviceToken: preDeviceToken} = props
  const firebaseUser = await admin.auth().getUser(auth.uid)
-  const testUserAKAEmailPasswordUser =
+/**
-    firebaseUser.providerData[0].providerId === 'password'
+ * Create User API Handler
-
+ *
-  // if (
+ * Creates a new user account with associated profile and private user data.
-  //   testUserAKAEmailPasswordUser &&
+ * This endpoint is called after Firebase authentication to initialize
-  //   adminToken !== process.env.TEST_CREATE_USER_KEY
+ * the user's presence in the Compass database.
-  // ) {
+ *
-  //   throw new APIError(
+ * Process:
-  //     401,
+ * 1. Validates Firebase authentication token
-  //     'Must use correct TEST_CREATE_USER_KEY to create user with email/password'
+ * 2. Creates user record in users table
-  //   )
+ * 3. Creates private user record in private_users table
-  // }
+ * 4. Generates default profile data
 * 5. Sends welcome email asynchronously
 * 6. Tracks user creation event
 *
 * @param props - Request parameters including device token and locale
 * @param auth - Authenticated user information from Firebase
 * @param req - Express request object for accessing headers/IP
 * @returns User and private user objects with continuation function for async tasks
 * @throws {APIError} 403 if user already exists or username is taken
 */
 export const createUser: APIHandler<'create-user'> = async (props, auth, req) => {
  const {deviceToken, locale = defaultLocale} = props
  const host = req.get('referer')
-  log(`Create user from: ${host}`)
+  log(`Create user from: ${host}, ${props}`)
  const ip = getIp(req)
  const deviceToken = testUserAKAEmailPasswordUser
    ? randomString() + randomString()
    : preDeviceToken
  const fbUser = await admin.auth().getUser(auth.uid)
  const email = fbUser.email
@@ -54,9 +55,7 @@ export const createUser: APIHandler<'create-user'> = async (
  const name = cleanDisplayName(rawName)
  const bucket = getBucket()
-  const avatarUrl = fbUser.photoURL
+  const avatarUrl = fbUser.photoURL ?? (await generateAvatarUrl(auth.uid, name, bucket))
    ? fbUser.photoURL
    : await generateAvatarUrl(auth.uid, name, bucket)
  const pg = createSupabaseDirectClient()
@@ -68,29 +67,33 @@ export const createUser: APIHandler<'create-user'> = async (
     from users
     where username ilike $1`,
    [username],
-    (r) => r.count
+    (r) => r.count,
  )
  const usernameExists = dupes > 0
-  const isReservedName = RESERVED_PATHS.includes(username)
+  const isReservedName = RESERVED_PATHS.has(username)
  if (usernameExists || isReservedName) username += randomString(4)
  const {user, privateUser} = await pg.tx(async (tx) => {
    const preexistingUser = await getUser(auth.uid, tx)
    if (preexistingUser)
-      throw new APIError(403, 'User already exists', {
+      throw APIErrors.forbidden('An account for this user already exists', {
-        userId: auth.uid,
+        field: 'userId',
        context: `User with ID ${auth.uid} already exists`,
      })
    // Check exact username to avoid problems with duplicate requests
    const sameNameUser = await getUserByUsername(username, tx)
    if (sameNameUser)
-      throw new APIError(403, 'Username already taken', {username})
+      throw APIErrors.conflict('Username is already taken', {
        field: 'username',
        context: `Username "${username}" is already taken`,
      })
    const user = removeUndefinedProps({
      avatarUrl,
-      isBannedFromPosting: Boolean(
+      is_banned_from_posting: Boolean(
        (deviceToken && bannedDeviceTokens.includes(deviceToken)) ||
-        (ip && bannedIpAddresses.includes(ip))
+          (ip && bannedIpAddresses.includes(ip)),
      ),
      link: {},
    })
@@ -98,6 +101,7 @@ export const createUser: APIHandler<'create-user'> = async (
    const privateUser: PrivateUser = {
      id: auth.uid,
      email,
      locale,
      initialIpAddress: ip,
      initialDeviceToken: deviceToken,
      notificationPreferences: getDefaultNotificationPreferences(),
@@ -132,7 +136,7 @@ export const createUser: APIHandler<'create-user'> = async (
      console.error('Failed to track create profile', e)
    }
    try {
-      if (!IS_LOCAL) await sendWelcomeEmail(user, privateUser)
+      await sendWelcomeEmail(user, privateUser)
    } catch (e) {
      console.error('Failed to sendWelcomeEmail', e)
    }
--- a/backend/api/src/create-vote.ts
+++ b/backend/api/src/create-vote.ts
@@ -1,28 +1,30 @@
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {tryCatch} from 'common/util/try-catch'
-import { getUser } from 'shared/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-import { APIHandler, APIError } from './helpers/endpoint'
+import {insert} from 'shared/supabase/utils'
-import { insert } from 'shared/supabase/utils'
+import {getUser} from 'shared/utils'
 import { tryCatch } from 'common/util/try-catch'
-export const createVote: APIHandler<
+import {APIErrors, APIHandler} from './helpers/endpoint'
-  'create-vote'
+
-> = async ({ title, description, isAnonymous }, auth) => {
+export const createVote: APIHandler<'create-vote'> = async (
  {title, description, isAnonymous},
  auth,
 ) => {
  const creator = await getUser(auth.uid)
-  if (!creator) throw new APIError(401, 'Your account was not found')
+  if (!creator) throw APIErrors.unauthorized('Your account was not found')
  const pg = createSupabaseDirectClient()
-  const { data, error } = await tryCatch(
+  const {data, error} = await tryCatch(
    insert(pg, 'votes', {
      creator_id: creator.id,
      title,
      description,
      is_anonymous: isAnonymous,
      status: 'voting_open',
-    })
+    }),
  )
-  if (error) throw new APIError(401, 'Error creating question')
+  if (error) throw APIErrors.unauthorized('Error creating question')
-  return { data }
+  return {data}
 }
--- a/backend/api/src/delete-bookmarked-search.ts
+++ b/backend/api/src/delete-bookmarked-search.ts
@@ -1,9 +1,10 @@
 import {APIHandler} from './helpers/endpoint'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {APIHandler} from './helpers/endpoint'
 export const deleteBookmarkedSearch: APIHandler<'delete-bookmarked-search'> = async (
  props,
-  auth
+  auth,
 ) => {
  const creator_id = auth.uid
  const {id} = props
@@ -16,7 +17,7 @@ export const deleteBookmarkedSearch: APIHandler<'delete-bookmarked-search'> = as
      DELETE FROM bookmarked_searches
      WHERE id = $1 AND creator_id = $2
    `,
-    [id, creator_id]
+    [id, creator_id],
  )
  return {}
--- a/backend/api/src/delete-compatibility-answer.ts
+++ b/backend/api/src/delete-compatibility-answer.ts
@@ -1,10 +1,14 @@
-import {APIHandler} from 'api/helpers/endpoint'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {
  recomputeCompatibilityScoresForUser,
  updateCompatibilityPromptsMetrics,
 } from 'shared/compatibility/compute-scores'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {APIError} from 'common/api/utils'
 import {recomputeCompatibilityScoresForUser} from 'shared/compatibility/compute-scores'
 export const deleteCompatibilityAnswer: APIHandler<'delete-compatibility-answer'> = async (
-  {id}, auth) => {
+  {id},
  auth,
 ) => {
  const pg = createSupabaseDirectClient()
  // Verify user is the answer author
@@ -13,29 +17,31 @@ export const deleteCompatibilityAnswer: APIHandler<'delete-compatibility-answer'
     FROM compatibility_answers
     WHERE id = $1
       AND creator_id = $2`,
-    [id, auth.uid]
+    [id, auth.uid],
  )
  if (!item) {
-    throw new APIError(404, 'Item not found')
+    throw APIErrors.notFound('Item not found')
  }
  const questionId = item.question_id
  // Delete the answer
  await pg.none(
    `DELETE
     FROM compatibility_answers
     WHERE id = $1
       AND creator_id = $2`,
-    [id, auth.uid]
+    [id, auth.uid],
  )
  const continuation = async () => {
-    // Recompute precomputed compatibility scores for this user
+    await updateCompatibilityPromptsMetrics(questionId)
-    await recomputeCompatibilityScoresForUser(auth.uid, pg)
+    await recomputeCompatibilityScoresForUser(auth.uid)
  }
  return {
-    status: 'success',
+    result: {status: 'success'},
    continue: continuation,
  }
 }
--- a/backend/api/src/delete-me.ts
+++ b/backend/api/src/delete-me.ts
@@ -1,21 +1,38 @@
-import {getUser} from 'shared/utils'
+import {debug} from 'common/logger'
-import {APIError, APIHandler} from './helpers/endpoint'
+import * as admin from 'firebase-admin'
 import {deleteUserFiles} from 'shared/firebase-utils'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
-import * as admin from "firebase-admin";
+import {getUser} from 'shared/utils'
 import {deleteUserFiles} from "shared/firebase-utils";
-export const deleteMe: APIHandler<'me/delete'> = async (_, auth) => {
+import {APIErrors, APIHandler} from './helpers/endpoint'
 export const deleteMe: APIHandler<'me/delete'> = async ({reasonCategory, reasonDetails}, auth) => {
  const user = await getUser(auth.uid)
  if (!user) {
-    throw new APIError(401, 'Your account was not found')
+    throw APIErrors.unauthorized('Your account was not found')
  }
  const userId = user.id
  if (!userId) {
-    throw new APIError(400, 'Invalid user ID')
+    throw APIErrors.badRequest('Invalid user ID')
  }
  const pg = createSupabaseDirectClient()
  // Store deletion reason before deleting the account
  try {
    await pg.none(
      `
      INSERT INTO deleted_users (username, reason_category, reason_details)
      VALUES ($1, $2, $3)
      `,
      [user.username, reasonCategory, reasonDetails],
    )
  } catch (e) {
    console.error('Error storing deletion reason:', e)
    // Don't fail the deletion if we can't store the reason
  }
  // Remove user data from Supabase
  const pg = createSupabaseDirectClient()
  await pg.none('DELETE FROM users WHERE id = $1', [userId])
  // Should cascade delete in other tables
@@ -26,7 +43,7 @@ export const deleteMe: APIHandler<'me/delete'> = async (_, auth) => {
  try {
    const auth = admin.auth()
    await auth.deleteUser(userId)
-    console.debug(`Deleted user ${userId} from Firebase Auth and Supabase`)
+    debug(`Deleted user ${userId} from Firebase Auth and Supabase`)
  } catch (e) {
    console.error('Error deleting user from Firebase Auth:', e)
  }
--- a/backend/api/src/delete-message.ts
+++ b/backend/api/src/delete-message.ts
@@ -1,6 +1,7 @@
-import {APIError, APIHandler} from './helpers/endpoint'
+import {broadcastPrivateMessages} from 'api/helpers/private-messages'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
-import {broadcastPrivateMessages} from "api/helpers/private-messages";
+
 import {APIErrors, APIHandler} from './helpers/endpoint'
 // const DELETED_MESSAGE_CONTENT: JSONContent = {
 //   type: 'doc',
@@ -26,11 +27,11 @@ export const deleteMessage: APIHandler<'delete-message'> = async ({messageId}, a
     FROM private_user_messages
     WHERE id = $1
       AND user_id = $2`,
-    [messageId, auth.uid]
+    [messageId, auth.uid],
  )
  if (!message) {
-    throw new APIError(404, 'Message not found')
+    throw APIErrors.notFound('Message not found')
  }
  // Soft delete the message
@@ -51,14 +52,12 @@ export const deleteMessage: APIHandler<'delete-message'> = async ({messageId}, a
     FROM private_user_messages
     WHERE id = $1
       AND user_id = $2`,
-    [messageId, auth.uid]
+    [messageId, auth.uid],
  )
-  void broadcastPrivateMessages(pg, message.channel_id, auth.uid)
+  void broadcastPrivateMessages(pg, message.channel_id, auth.uid).catch((err) => {
-    .catch((err) => {
+    console.error('broadcastPrivateMessages failed', err)
-      console.error('broadcastPrivateMessages failed', err)
+  })
    })
  return {success: true}
 }
--- a/backend/api/src/edit-message.ts
+++ b/backend/api/src/edit-message.ts
@@ -1,8 +1,8 @@
-import {APIError, APIHandler} from './helpers/endpoint'
+import {broadcastPrivateMessages} from 'api/helpers/private-messages'
 import {encryptMessage} from 'shared/encryption'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {encryptMessage} from "shared/encryption";
 import {broadcastPrivateMessages} from "api/helpers/private-messages";
 import {APIErrors, APIHandler} from './helpers/endpoint'
 export const editMessage: APIHandler<'edit-message'> = async ({messageId, content}, auth) => {
  const pg = createSupabaseDirectClient()
@@ -15,11 +15,11 @@ export const editMessage: APIHandler<'edit-message'> = async ({messageId, conten
       AND user_id = $2
 --        AND created_time > NOW() - INTERVAL '1 day'
       AND deleted = FALSE`,
-    [messageId, auth.uid]
+    [messageId, auth.uid],
  )
  if (!message) {
-    throw new APIError(404, 'Message not found or cannot be edited')
+    throw APIErrors.notFound('Message not found or cannot be edited')
  }
  const plaintext = JSON.stringify(content)
@@ -32,13 +32,12 @@ export const editMessage: APIHandler<'edit-message'> = async ({messageId, conten
         is_edited = TRUE,
         edited_at = NOW()
     WHERE id = $4`,
-    [ciphertext, iv, tag, messageId]
+    [ciphertext, iv, tag, messageId],
  )
-  void broadcastPrivateMessages(pg, message.channel_id, auth.uid)
+  void broadcastPrivateMessages(pg, message.channel_id, auth.uid).catch((err) => {
-    .catch((err) => {
+    console.error('broadcastPrivateMessages failed', err)
-      console.error('broadcastPrivateMessages failed', err)
+  })
    })
  return {success: true}
 }
--- a/backend/api/src/get-channel-memberships.ts
+++ b/backend/api/src/get-channel-memberships.ts
@@ -0,0 +1,86 @@
 import {APIHandler} from 'api/helpers/endpoint'
 import {PrivateMessageChannel} from 'common/supabase/private-messages'
 import {groupBy, mapValues} from 'lodash'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getChannelMemberships: APIHandler<'get-channel-memberships'> = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelId, lastUpdatedTime, createdTime, limit} = props
  let channels: PrivateMessageChannel[]
  const convertRow = (r: any) => ({
    channel_id: r.channel_id as number,
    notify_after_time: r.notify_after_time as string,
    created_time: r.created_time as string,
    last_updated_time: r.last_updated_time as string,
  })
  if (channelId) {
    channels = await pg.map(
      `select channel_id, notify_after_time, pumcm.created_time, last_updated_time
       from private_user_message_channel_members pumcm
                join private_user_message_channels pumc on pumc.id = pumcm.channel_id
       where user_id = $1
         and channel_id = $2
       limit $3
      `,
      [auth.uid, channelId, limit],
      convertRow,
    )
  } else {
    channels = await pg.map(
      `with latest_channels as (select distinct on (pumc.id) pumc.id                as channel_id,
                                                             notify_after_time,
                                                             pumc.created_time,
                                                             (select created_time
                                                              from private_user_messages
                                                              where channel_id = pumc.id
                                                                and visibility != 'system_status'
                                                                and user_id != $1
                                                              order by created_time desc
                                                              limit 1)              as last_updated_time,        -- last_updated_time is the last possible unseen message time
                                                             pumc.last_updated_time as last_updated_channel_time -- last_updated_channel_time is the last time the channel was updated
                                from private_user_message_channels pumc
                                         join private_user_message_channel_members pumcm on pumcm.channel_id = pumc.id
                                         inner join private_user_messages pum on pumc.id = pum.channel_id
                                    and (pum.visibility != 'introduction' or pum.user_id != $1)
                                where pumcm.user_id = $1
                                  and not status = 'left'
                                  and ($2 is null or pumcm.created_time > $2)
                                  and ($4 is null or pumc.last_updated_time > $4)
                                order by pumc.id, pumc.last_updated_time desc)
       select *
       from latest_channels
       order by last_updated_channel_time desc
       limit $3
      `,
      [auth.uid, createdTime ?? null, limit, lastUpdatedTime ?? null],
      convertRow,
    )
  }
  if (!channels || channels.length === 0) return {channels: [], memberIdsByChannelId: {}}
  const channelIds = channels.map((c) => c.channel_id)
  const members = await pg.map(
    `select channel_id, user_id
     from private_user_message_channel_members
     where not user_id = $1
       and channel_id in ($2:list)
       and not status = 'left'
    `,
    [auth.uid, channelIds],
    (r) => ({
      channel_id: r.channel_id as number,
      user_id: r.user_id as string,
    }),
  )
  const memberIdsByChannelId = mapValues(groupBy(members, 'channel_id'), (members) =>
    members.map((m) => m.user_id),
  )
  return {
    channels,
    memberIdsByChannelId,
  }
 }
--- a/backend/api/src/get-channel-seen-time.ts
+++ b/backend/api/src/get-channel-seen-time.ts
@@ -0,0 +1,31 @@
 import {APIHandler} from 'api/helpers/endpoint'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getLastSeenChannelTime: APIHandler<'get-channel-seen-time'> = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelIds} = props
  const unseens = await pg.map(
    `select distinct on (channel_id) channel_id, created_time
     from private_user_seen_message_channels
     where channel_id = any ($1)
       and user_id = $2
     order by channel_id, created_time desc
    `,
    [channelIds, auth.uid],
    (r) => [r.channel_id, r.created_time] as [number, Date],
  )
  // When this hits the network, JSON.stringify() turns the Date into an ISO string.
  // Then the zod schema in the endpoint definition casts it back to front-end Date
  return unseens
 }
 export const setChannelLastSeenTime: APIHandler<'set-channel-seen-time'> = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelId} = props
  await pg.none(
    `insert into private_user_seen_message_channels (user_id, channel_id)
     values ($1, $2)
    `,
    [auth.uid, channelId],
  )
 }
--- a/backend/api/src/get-compatibililty-questions.ts
+++ b/backend/api/src/get-compatibililty-questions.ts
@@ -1,48 +1,79 @@
-import { type APIHandler } from 'api/helpers/endpoint'
+import {type APIHandler} from 'api/helpers/endpoint'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {QuestionWithStats} from 'common/api/types'
-import { Row } from 'common/supabase/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-export function shuffle<T>(array: T[]): T[] {
+export const getCompatibilityQuestions: APIHandler<'get-compatibility-questions'> = async (
-  const arr = [...array]; // copy to avoid mutating the original
+  props,
-  for (let i = arr.length - 1; i > 0; i--) {
+  _auth,
-    const j = Math.floor(Math.random() * (i + 1));
+) => {
-    [arr[i], arr[j]] = [arr[j], arr[i]];
+  const {locale = 'en', keyword} = props
  }
  return arr;
 }
 export const getCompatibilityQuestions: APIHandler<
  'get-compatibility-questions'
 > = async (_props, _auth) => {
  const pg = createSupabaseDirectClient()
-  const questions = await pg.manyOrNone<
+  // Build query parameters
-    Row<'compatibility_prompts'> & { answer_count: number; score: number }
+  const params: (string | number)[] = [locale]
-  >(
+  const paramIndex = 2
-    `SELECT 
+
-      compatibility_prompts.*,
+  // Build keyword filter condition - search in question text and multiple_choice_options keys
-      COUNT(compatibility_answers.question_id) as answer_count,
+  const keywordFilter = keyword
-      AVG(POWER(compatibility_answers.importance + 1 + CASE WHEN compatibility_answers.explanation IS NULL THEN 1 ELSE 0 END, 2)) as score
+    ? `AND (
-    FROM 
+        COALESCE(cpt.question, cp.question) ILIKE $${paramIndex}
-        compatibility_prompts
+        OR EXISTS (
-    LEFT JOIN 
+          SELECT 1 
-        compatibility_answers ON compatibility_prompts.id = compatibility_answers.question_id
+          FROM jsonb_object_keys(
-    WHERE 
+            COALESCE(cpt.multiple_choice_options, cp.multiple_choice_options)
-        compatibility_prompts.answer_type = 'compatibility_multiple_choice'
+          ) AS option_key
-    GROUP BY 
+          WHERE option_key ILIKE $${paramIndex}
-        compatibility_prompts.id
+        )
-    ORDER BY
+      )`
-         compatibility_prompts.importance_score
+    : ''
  if (keyword) {
    params.push(`%${keyword}%`)
  }
  const questions = await pg.manyOrNone<QuestionWithStats>(
    `
        SELECT cp.id,
               cp.answer_type,
               cp.importance_score,
               cp.created_time,
               cp.creator_id,
               cp.category,
               COALESCE(cpt.question, cp.question) AS question,
               COALESCE(cpt.multiple_choice_options, cp.multiple_choice_options) AS multiple_choice_options,
               cp.answer_count,
               CASE
                 WHEN cp.answer_count IS NULL OR cp.answer_count = 0 THEN 0
                 --- community_importance_score is a weighted sum: max val is 2 * answer_count if everyone marks at the highest level of importance
                 --- So we divide by 2 * answer_count to ensure it's between and 0 and 1
                 --- We damp by 20 to ensure questions with few responders don't get a high score
                 --- The square root is to spread the percent of all questions, since in the early days they don't get higher than 50%.
                 --- It does not impact ranking though.
                 --- TODO: remove the square root when we get more answers
                 ELSE SQRT(cp.community_importance_score::float / (cp.answer_count + 20) / 2) * 100
                 END AS community_importance_percent,
               0 AS score --- update later if needed
        FROM compatibility_prompts cp
                 LEFT JOIN compatibility_prompts_translations cpt
                           ON cp.id = cpt.question_id
                               AND cpt.locale = $1
                               AND $1 <> 'en'
        WHERE cp.answer_type = 'compatibility_multiple_choice'
            ${keywordFilter}
        GROUP BY cp.id,
                 cpt.question,
                 cpt.multiple_choice_options
        ORDER BY cp.importance_score
    `,
-    []
+    params,
  )
-  // const questions = shuffle(dbQuestions)
+  // console.debug(questions.find((q) => q.id === 275))
  // console.debug(
  //   'got questions',
  //   questions.map((q) => q.question + ' ' + q.score)
  // )
  return {
    status: 'success',
--- a/backend/api/src/get-connection-interests.ts
+++ b/backend/api/src/get-connection-interests.ts
@@ -0,0 +1,47 @@
 import {APIHandler} from 'api/helpers/endpoint'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getConnectionInterestsEndpoint: APIHandler<'get-connection-interests'> = async (
  props,
  auth,
 ) => {
  return getConnectionInterests(props, auth.uid)
 }
 export const getConnectionInterests = async (props: any, userId: string) => {
  const {targetUserId} = props
  if (!targetUserId) {
    throw new Error('Missing target user ID')
  }
  if (targetUserId === userId) {
    throw new Error('Cannot get connection interests for yourself')
  }
  const pg = createSupabaseDirectClient()
  // Get what connection interest I have with them
  const _interests = await pg.query(
    'SELECT connection_type FROM connection_interests WHERE user_id = $1 AND target_user_id = $2',
    [userId, targetUserId],
  )
  const interests = _interests.map((i: {connection_type: string}) => i.connection_type) ?? []
  // debug({_interests, interests})
  // Get what connection interest they have with me (filtering out the ones I haven't expressed interest in
  // so it's risk-free to express interest in them)
  const _targetInterests = await pg.query(
    'SELECT connection_type FROM connection_interests WHERE user_id = $1 AND target_user_id = $2',
    [targetUserId, userId],
  )
  const targetInterests =
    _targetInterests
      ?.map((i: {connection_type: string}) => i.connection_type)
      ?.filter((i: string) => interests.includes(i)) ?? []
  return {
    interests,
    targetInterests,
  }
 }
--- a/backend/api/src/get-current-private-user.ts
+++ b/backend/api/src/get-current-private-user.ts
@@ -1,31 +1,23 @@
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {Row} from 'common/supabase/utils'
-import { APIError, APIHandler } from './helpers/endpoint'
+import {PrivateUser} from 'common/user'
-import { PrivateUser } from 'common/user'
+import {tryCatch} from 'common/util/try-catch'
-import { Row } from 'common/supabase/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
 import { tryCatch } from 'common/util/try-catch'
-export const getCurrentPrivateUser: APIHandler<'me/private'> = async (
+import {APIErrors, APIHandler} from './helpers/endpoint'
-  _,
+
-  auth
+export const getCurrentPrivateUser: APIHandler<'me/private'> = async (_, auth) => {
 ) => {
  const pg = createSupabaseDirectClient()
-  const { data, error } = await tryCatch(
+  const {data, error} = await tryCatch(
-    pg.oneOrNone<Row<'private_users'>>(
+    pg.oneOrNone<Row<'private_users'>>('select * from private_users where id = $1', [auth.uid]),
      'select * from private_users where id = $1',
      [auth.uid]
    )
  )
  if (error) {
-    throw new APIError(
+    throw APIErrors.internalServerError('Error fetching private user data: ' + error.message)
      500,
      'Error fetching private user data: ' + error.message
    )
  }
  if (!data) {
-    throw new APIError(401, 'Your account was not found')
+    throw APIErrors.unauthorized('Your account was not found')
  }
  return data.data as PrivateUser
--- a/backend/api/src/get-events.ts
+++ b/backend/api/src/get-events.ts
@@ -0,0 +1,89 @@
 import {APIHandler} from 'api/helpers/endpoint'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getEvents: APIHandler<'get-events'> = async () => {
  const pg = createSupabaseDirectClient()
  const events = await pg.manyOrNone<{
    id: string
    created_time: string
    creator_id: string
    title: string
    description: string | null
    location_type: 'in_person' | 'online'
    location_address: string | null
    location_url: string | null
    event_start_time: object
    event_end_time: object | null
    is_public: boolean
    max_participants: number | null
    status: 'active' | 'cancelled' | 'completed'
  }>(
    `SELECT *
     FROM events
     WHERE is_public = true
       AND status = 'active'
     ORDER BY event_start_time`,
  )
  // Get participants for each event
  const eventIds = events.map((e) => e.id)
  const participants =
    eventIds.length > 0
      ? await pg.manyOrNone<{
          event_id: string
          user_id: string
          status: 'going' | 'maybe' | 'not_going'
        }>(
          `SELECT event_id, user_id, status
       FROM events_participants
       WHERE event_id = ANY ($1)`,
          [eventIds],
        )
      : []
  // Get creator info for each event
  const creatorIds = [...new Set(events.map((e) => e.creator_id))]
  const creators =
    creatorIds.length > 0
      ? await pg.manyOrNone<{
          id: string
          name: string
          username: string
          avatar_url: string | null
        }>(
          `SELECT id, name, username, avatar_url
       FROM users
       WHERE id = ANY ($1)`,
          [creatorIds],
        )
      : []
  const now = new Date()
  const eventsWithDetails = events.map((event) => ({
    ...event,
    participants: participants
      .filter((p) => p.event_id === event.id && p.status === 'going')
      .map((p) => p.user_id),
    maybe: participants
      .filter((p) => p.event_id === event.id && p.status === 'maybe')
      .map((p) => p.user_id),
    creator: creators.find((c) => c.id === event.creator_id),
  }))
  const upcoming: typeof eventsWithDetails = []
  const past: typeof eventsWithDetails = []
  for (const e of eventsWithDetails) {
    if ((e.event_end_time ?? e.event_start_time) > now) {
      upcoming.push(e)
    } else {
      past.push(e)
    }
  }
  // console.debug({events, eventsWithDetails, upcoming, past, now})
  return {upcoming, past}
 }
--- a/backend/api/src/get-hidden-profiles.ts
+++ b/backend/api/src/get-hidden-profiles.ts
@@ -0,0 +1,34 @@
 import {APIHandler} from 'api/helpers/endpoint'
 import {HiddenProfile} from 'common/api/user-types'
 import {convertPartialUser} from 'common/supabase/users'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export const getHiddenProfiles: APIHandler<'get-hidden-profiles'> = async (
  {limit = 100, offset = 0},
  auth,
 ) => {
  const pg = createSupabaseDirectClient()
  // Count total hidden for pagination info
  const countRes = await pg.one<{count: string}>(
    `select count(*)::text as count
     from hidden_profiles
     where hider_user_id = $1`,
    [auth.uid],
  )
  const count = Number(countRes.count) || 0
  // Fetch hidden users joined with users table for display
  const rows = await pg.map(
    `select u.id, u.name, u.username, u.avatar_url, hp.created_time as "createdTime"
     from hidden_profiles hp
              join users u on u.id = hp.hidden_user_id
     where hp.hider_user_id = $1
     order by hp.created_time desc
     limit $2 offset $3`,
    [auth.uid, limit, offset],
    convertPartialUser,
  )
  return {status: 'success', hidden: rows as HiddenProfile[], count}
 }
--- a/backend/api/src/get-last-messages.ts
+++ b/backend/api/src/get-last-messages.ts
@@ -0,0 +1,34 @@
 import {ChatMessage} from 'common/chat-message'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {convertPrivateChatMessage} from 'shared/supabase/messages'
 import {APIHandler} from './helpers/endpoint'
 export const getLastMessages: APIHandler<'get-last-messages'> = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelIds} = props
  const messages = await pg.map(
    `select distinct on (channel_id) channel_id, id, user_id, created_time, visibility, ciphertext, iv, tag
     from private_user_messages
     where visibility != 'system_status'
       and channel_id in (
       select channel_id from private_user_message_channel_members
       where user_id = $1 and not status = 'left'
     )
       ${channelIds ? 'and channel_id = any ($2)' : ''}
     order by channel_id, created_time desc
    `,
    [auth.uid, channelIds],
    convertPrivateChatMessage,
  )
  // Required to parse to number? If so, should prob create a helper to reuse in other places?
  return messages.reduce(
    (acc, msg) => {
      acc[Number(msg.channelId)] = msg
      return acc
    },
    {} as Record<number, ChatMessage>,
  )
 }
--- a/backend/api/src/get-likes-and-ships.ts
+++ b/backend/api/src/get-likes-and-ships.ts
@@ -1,10 +1,8 @@
-import { type APIHandler } from 'api/helpers/endpoint'
+import {type APIHandler} from 'api/helpers/endpoint'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-export const getLikesAndShips: APIHandler<'get-likes-and-ships'> = async (
+export const getLikesAndShips: APIHandler<'get-likes-and-ships'> = async (props) => {
-  props
+  const {userId} = props
 ) => {
  const { userId } = props
  return {
    status: 'success',
@@ -27,14 +25,14 @@ export const getLikesAndShipsMain = async (userId: string) => {
      where creator_id = $1
        and looking_for_matches
        and profiles.pinned_url is not null
-        and (data->>'isBannedFromPosting' != 'true' or data->>'isBannedFromPosting' is null)
+        and not is_banned_from_posting 
      order by created_time desc
    `,
    [userId],
    (r) => ({
      user_id: r.target_id,
      created_time: new Date(r.created_time).getTime(),
-    })
+    }),
  )
  const likesReceived = await pg.map<{
@@ -49,14 +47,14 @@ export const getLikesAndShipsMain = async (userId: string) => {
      where target_id = $1
        and looking_for_matches
        and profiles.pinned_url is not null
-        and (data->>'isBannedFromPosting' != 'true' or data->>'isBannedFromPosting' is null)
+        and not is_banned_from_posting
      order by created_time desc
    `,
    [userId],
    (r) => ({
      user_id: r.creator_id,
      created_time: new Date(r.created_time).getTime(),
-    })
+    }),
  )
  const ships = await pg.map<{
@@ -76,7 +74,7 @@ export const getLikesAndShipsMain = async (userId: string) => {
    where target2_id = $1
      and profiles.looking_for_matches
      and profiles.pinned_url is not null
-      and (users.data->>'isBannedFromPosting' != 'true' or users.data->>'isBannedFromPosting' is null)
+      and not is_banned_from_posting
    union all
@@ -89,13 +87,13 @@ export const getLikesAndShipsMain = async (userId: string) => {
    where target1_id = $1
      and profiles.looking_for_matches
      and profiles.pinned_url is not null
-      and (users.data->>'isBannedFromPosting' != 'true' or users.data->>'isBannedFromPosting' is null)
+      and not is_banned_from_posting
    `,
    [userId],
    (r) => ({
      ...r,
      created_time: new Date(r.created_time).getTime(),
-    })
+    }),
  )
  return {
--- a/backend/api/src/get-me.ts
+++ b/backend/api/src/get-me.ts
@@ -1,6 +1,7 @@
-import { type APIHandler } from './helpers/endpoint'
+import {getUser} from 'api/get-user'
-import { getUser } from 'api/get-user'
+
 import {type APIHandler} from './helpers/endpoint'
 export const getMe: APIHandler<'me'> = async (_, auth) => {
-  return getUser({ id: auth.uid })
+  return getUser({id: auth.uid})
 }
--- a/backend/api/src/get-messages-count.ts
+++ b/backend/api/src/get-messages-count.ts
@@ -1,18 +1,24 @@
-import {APIHandler} from './helpers/endpoint'
+import {debug} from 'common/logger'
-import {createSupabaseDirectClient} from "shared/supabase/init";
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-export const getMessagesCount: APIHandler<'get-messages-count'> = async (_, _auth) => {
+import {APIHandler} from './helpers/endpoint'
 export async function getMessagesCount() {
  const pg = createSupabaseDirectClient()
  const result = await pg.one(
    `
        SELECT COUNT(*) AS count
        FROM private_user_messages;
    `,
-    []
+    [],
-  );
+  )
-  const count = Number(result.count);
+  const count = Number(result.count)
-  console.debug('private_user_messages count:', count);
+  debug('private_user_messages count:', count)
  return {
    count: count,
  }
 }
 export const getMessagesCountEndpoint: APIHandler<'get-messages-count'> = async (_, _auth) => {
  return await getMessagesCount()
 }
--- a/backend/api/src/get-notifications.ts
+++ b/backend/api/src/get-notifications.ts
@@ -1,23 +1,90 @@
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {APIHandler} from 'api/helpers/endpoint'
-import { APIHandler } from 'api/helpers/endpoint'
+import {defaultLocale} from 'common/constants'
-import { Notification } from 'common/notifications'
+import {Notification} from 'common/notifications'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
-export const getNotifications: APIHandler<'get-notifications'> = async (
+// Helper function to substitute placeholders in template text
-  props,
+function substitutePlaceholders(templateText: string, templateData: any): string {
-  auth
+  let result = templateText
-) => {
+  if (templateData) {
-  const { limit, after } = props
+    for (const [key, value] of Object.entries(templateData)) {
      // Replace all occurrences of {key} with the value
      result = result.replace(new RegExp(`\\{${key}\\}`, 'g'), String(value))
    }
  }
  return result
 }
 export const getNotifications: APIHandler<'get-notifications'> = async (props, auth, _req) => {
  const {limit, after, locale = defaultLocale} = props
  const pg = createSupabaseDirectClient()
  const query = `
-    select data from user_notifications
+      select case
-    where user_id = $1
+                 when un.template_id is not null then
-    and ($3 is null or (data->'createdTime')::bigint > $3)
+                     jsonb_build_object(
-    order by (data->'createdTime')::bigint desc
+                             'id', un.notification_id,
                             'userId', un.user_id,
                             'templateId', un.template_id,
                             'title', COALESCE(ntt.title, nt.title),
                             'sourceType', nt.source_type,
                             'sourceUpdateType', nt.source_update_type,
                             'createdTime', nt.created_time,
                             'isSeen', coalesce((un.data ->> 'isSeen')::boolean, false),
                             'viewTime', (un.data ->> 'viewTime')::bigint,
                             'sourceText', COALESCE(ntt.source_text, nt.source_text),
                             'sourceSlug', nt.source_slug,
                             'sourceUserAvatarUrl', nt.source_user_avatar_url,
                             'data', nt.data,
                             'templateData', un.data->'templateData'
                     )
                 else
                     un.data
                 end as notification_data
      from user_notifications un
               left join notification_templates nt on un.template_id = nt.id
               left join notification_template_translations ntt 
                   on nt.id = ntt.template_id 
                   and ntt.locale = $4  -- User's locale
      where un.user_id = $1
        and ($3 is null or
             case
                 when un.template_id is not null then nt.created_time > $3
                 else (un.data ->> 'createdTime')::bigint > $3
                 end
           )
      order by case
                   when un.template_id is not null then nt.created_time
                   else (un.data ->> 'createdTime')::bigint
                   end desc
    limit $2
  `
-  return await pg.map(
+
  const rawNotifications = await pg.map(
    query,
-    [auth.uid, limit, after],
+    [auth.uid, limit, after, locale],
-    (row) => row.data as Notification
+    (row) => row.notification_data,
  )
  // Process notifications to apply template data substitution
  const processedNotifications: Notification[] = rawNotifications.map((notif: any) => {
    if (notif.templateId) {
      // Apply template data substitution to title and sourceText
      const templateData = notif.templateData || {}
      const processedNotif = {...notif}
      if (processedNotif.title) {
        processedNotif.title = substitutePlaceholders(processedNotif.title, templateData)
      }
      if (processedNotif.sourceText) {
        processedNotif.sourceText = substitutePlaceholders(processedNotif.sourceText, templateData)
      }
      return processedNotif as Notification
    }
    return notif as Notification
  })
  return processedNotifications
 }
--- a/backend/api/src/get-options.ts
+++ b/backend/api/src/get-options.ts
@@ -1,28 +1,44 @@
-import {APIError, APIHandler} from 'api/helpers/endpoint'
+import {APIErrors, APIHandler} from 'api/helpers/endpoint'
 import {OptionTableKey} from 'common/profiles/constants'
 import {validateTable} from 'common/profiles/options'
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {log} from 'shared/utils'
 import {tryCatch} from 'common/util/try-catch'
 import {OPTION_TABLES} from "common/profiles/constants";
-export const getOptions: APIHandler<'get-options'> = async (
+export async function getOptions(table: OptionTableKey, locale?: string): Promise<string[]> {
-  {table},
+  validateTable(table)
  _auth
 ) => {
  if (!OPTION_TABLES.includes(table)) throw new APIError(400, 'Invalid table')
  const pg = createSupabaseDirectClient()
-  const result = await tryCatch(
+  let query: string
-    pg.manyOrNone<{ name: string }>(`SELECT interests.name
+  const params: any[] = []
-                                      FROM interests`)
+
-  )
+  if (locale) {
    // Get translated options for the specified locale
    const translationTable = `${table}_translations`
    query = `
      SELECT COALESCE(t.name, o.name) as name
      FROM ${table} o
      LEFT JOIN ${translationTable} t ON o.id = t.option_id AND t.locale = $1
      ORDER BY o.id
    `
    params.push(locale)
  } else {
    // Get default options (fallback to English)
    query = `SELECT name FROM ${table} ORDER BY id`
  }
  const result = await tryCatch(pg.manyOrNone<{name: string}>(query, params))
  if (result.error) {
    log('Error getting profile options', result.error)
-    throw new APIError(500, 'Error getting profile options')
+    throw APIErrors.internalServerError('Error getting profile options')
  }
-  const names = result.data.map(row => row.name)
+  return result.data.map((row) => row.name)
  return {names}
 }
 export const getOptionsEndpoint: APIHandler<'get-options'> = async ({table, locale}, _auth) => {
  const names = await getOptions(table, locale)
  return {names}
 }
--- a/backend/api/src/get-pinned-compatibility-questions.ts
+++ b/backend/api/src/get-pinned-compatibility-questions.ts
@@ -0,0 +1,22 @@
 import type {APIHandler} from 'api/helpers/endpoint'
 import {Row} from 'common/supabase/utils'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 export async function getPinnedQuestionIds(userId: string) {
  const pg = createSupabaseDirectClient()
  const rows = await pg.manyOrNone<Row<'compatibility_prompts_pinned'>>(
    `select * from compatibility_prompts_pinned
     where user_id = $1
     order by created_time desc`,
    [userId],
  )
  // newest-first in table; return in that order
  return rows.map((r) => r.question_id)
 }
 export const getPinnedCompatibilityQuestions: APIHandler<
  'get-pinned-compatibility-questions'
 > = async (_props, auth) => {
  const pinnedQuestionIds = await getPinnedQuestionIds(auth.uid)
  return {status: 'success', pinnedQuestionIds}
 }
--- a/backend/api/src/get-private-messages.ts
+++ b/backend/api/src/get-private-messages.ts
@@ -1,115 +1,29 @@
 import {tryCatch} from 'common/util/try-catch'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
-import {APIError, APIHandler} from './helpers/endpoint'
+import {convertPrivateChatMessage} from 'shared/supabase/messages'
 import {PrivateMessageChannel,} from 'common/supabase/private-messages'
 import {groupBy, mapValues} from 'lodash'
 import {convertPrivateChatMessage} from "shared/supabase/messages";
 import {tryCatch} from "common/util/try-catch";
-export const getChannelMemberships: APIHandler<
+import {APIErrors, APIHandler} from './helpers/endpoint'
  'get-channel-memberships'
 > = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelId, lastUpdatedTime, createdTime, limit} = props
  let channels: PrivateMessageChannel[]
  const convertRow = (r: any) => ({
    channel_id: r.channel_id as number,
    notify_after_time: r.notify_after_time as string,
    created_time: r.created_time as string,
    last_updated_time: r.last_updated_time as string,
  })
  if (channelId) {
    channels = await pg.map(
      `select channel_id, notify_after_time, pumcm.created_time, last_updated_time
       from private_user_message_channel_members pumcm
                join private_user_message_channels pumc on pumc.id = pumcm.channel_id
       where user_id = $1
         and channel_id = $2
       limit $3
      `,
      [auth.uid, channelId, limit],
      convertRow
    )
  } else {
    channels = await pg.map(
      `with latest_channels as (select distinct on (pumc.id) pumc.id                as channel_id,
                                                             notify_after_time,
                                                             pumc.created_time,
                                                             (select created_time
                                                              from private_user_messages
                                                              where channel_id = pumc.id
                                                                and visibility != 'system_status'
                                                                and user_id != $1
                                                              order by created_time desc
                                                              limit 1)              as last_updated_time,        -- last_updated_time is the last possible unseen message time
                                                             pumc.last_updated_time as last_updated_channel_time -- last_updated_channel_time is the last time the channel was updated
                                from private_user_message_channels pumc
                                         join private_user_message_channel_members pumcm on pumcm.channel_id = pumc.id
                                         inner join private_user_messages pum on pumc.id = pum.channel_id
                                    and (pum.visibility != 'introduction' or pum.user_id != $1)
                                where pumcm.user_id = $1
                                  and not status = 'left'
                                  and ($2 is null or pumcm.created_time > $2)
                                  and ($4 is null or pumc.last_updated_time > $4)
                                order by pumc.id, pumc.last_updated_time desc)
       select *
       from latest_channels
       order by last_updated_channel_time desc
       limit $3
      `,
      [auth.uid, createdTime ?? null, limit, lastUpdatedTime ?? null],
      convertRow
    )
  }
  if (!channels || channels.length === 0)
    return {channels: [], memberIdsByChannelId: {}}
  const channelIds = channels.map((c) => c.channel_id)
  const members = await pg.map(
    `select channel_id, user_id
     from private_user_message_channel_members
     where not user_id = $1
       and channel_id in ($2:list)
       and not status = 'left'
    `,
    [auth.uid, channelIds],
    (r) => ({
      channel_id: r.channel_id as number,
      user_id: r.user_id as string,
    })
  )
  const memberIdsByChannelId = mapValues(
    groupBy(members, 'channel_id'),
    (members) => members.map((m) => m.user_id)
  )
  return {
    channels,
    memberIdsByChannelId,
  }
 }
 export const getChannelMessagesEndpoint: APIHandler<'get-channel-messages'> = async (
  props,
-  auth
+  auth,
 ) => {
  const userId = auth.uid
  return await getChannelMessages({...props, userId})
 }
 export async function getChannelMessages(props: {
-  channelId: number;
+  channelId: number
-  limit: number;
+  limit?: number
-  id?: number | undefined;
+  id?: number | undefined
-  userId: string;
+  beforeId?: number | undefined
  userId: string
 }) {
-  // console.log('initial message request', props)
+  const {channelId, limit, id, beforeId, userId} = props
  const {channelId, limit, id, userId} = props
  const pg = createSupabaseDirectClient()
-  const {data, error} = await tryCatch(pg.map(
+  const {data, error} = await tryCatch(
-    `select *, created_time as created_time_ts
+    pg.map(
      `select *, created_time as created_time_ts
     from private_user_messages
     where channel_id = $1
       and exists (select 1
@@ -117,48 +31,28 @@ export async function getChannelMessages(props: {
                   where pumcm.user_id = $2
                     and pumcm.channel_id = $1)
       and ($4 is null or id > $4)
       and ($5 is null or id < $5)
       and not visibility = 'system_status'
     order by created_time desc
-     limit $3
+         ${limit ? 'limit $3' : ''}
    `,
-    [channelId, userId, limit, id],
+      [channelId, userId, limit, id, beforeId],
-    convertPrivateChatMessage
+      convertPrivateChatMessage,
-  ))
+    ),
  )
  if (error) {
-    console.error(error)
+    console.error('Error getting messages:', error)
-    throw new APIError(401, 'Error getting messages')
+    // If it's a connection pool error, provide more specific error message
    if (error.message && error.message.includes('MaxClientsInSessionMode')) {
      throw APIErrors.serviceUnavailable(
        'Service temporarily unavailable due to high demand. Please try again in a moment.',
      )
    }
    throw APIErrors.internalServerError('Error getting messages', {
      field: 'database',
      context: error.message || 'Unknown database error',
    })
  }
  // console.log('final messages', data)
  return data
 }
 export const getLastSeenChannelTime: APIHandler<
  'get-channel-seen-time'
 > = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelIds} = props
  const unseens = await pg.map(
    `select distinct on (channel_id) channel_id, created_time
     from private_user_seen_message_channels
     where channel_id = any ($1)
       and user_id = $2
     order by channel_id, created_time desc
    `,
    [channelIds, auth.uid],
    (r) => [r.channel_id as number, r.created_time as string]
  )
  return unseens as [number, string][]
 }
 export const setChannelLastSeenTime: APIHandler<
  'set-channel-seen-time'
 > = async (props, auth) => {
  const pg = createSupabaseDirectClient()
  const {channelId} = props
  await pg.none(
    `insert into private_user_seen_message_channels (user_id, channel_id)
     values ($1, $2)
    `,
    [auth.uid, channelId]
  )
 }
--- a/backend/api/src/get-profile-answers.ts
+++ b/backend/api/src/get-profile-answers.ts
@@ -1,12 +1,9 @@
-import { type APIHandler } from 'api/helpers/endpoint'
+import {type APIHandler} from 'api/helpers/endpoint'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {Row} from 'common/supabase/utils'
-import { Row } from 'common/supabase/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-export const getProfileAnswers: APIHandler<'get-profile-answers'> = async (
+export const getProfileAnswers: APIHandler<'get-profile-answers'> = async (props, _auth) => {
-  props,
+  const {userId} = props
  _auth
 ) => {
  const { userId } = props
  const pg = createSupabaseDirectClient()
  const answers = await pg.manyOrNone<Row<'compatibility_answers'>>(
@@ -15,7 +12,7 @@ export const getProfileAnswers: APIHandler<'get-profile-answers'> = async (
      creator_id = $1
    order by created_time desc
    `,
-    [userId]
+    [userId],
  )
  return {
--- a/backend/api/src/get-profiles.ts
+++ b/backend/api/src/get-profiles.ts
@@ -1,64 +1,126 @@
 import * as Sentry from '@sentry/node'
 import {type APIHandler} from 'api/helpers/endpoint'
 import {OptionTableKey} from 'common/profiles/constants'
 import {compact} from 'lodash'
 import {log} from 'shared/monitoring/log'
 import {convertRow} from 'shared/profiles/supabase'
 import {createSupabaseDirectClient, pgp} from 'shared/supabase/init'
-import {from, join, leftJoin, limit, orderBy, renderSql, select, where,} from 'shared/supabase/sql-builder'
+import {
-import {MIN_BIO_LENGTH} from "common/constants";
+  from,
-import {compact} from "lodash";
+  join,
-import {OptionTableKey} from "common/profiles/constants";
+  leftJoin,
  limit,
  orderBy,
  renderSql,
  select,
  where,
 } from 'shared/supabase/sql-builder'
 /**
 * Profile query parameters for filtering and pagination
 *
 * Defines the available filters and pagination options for retrieving
 * user profiles from the database. Supports complex filtering based
 * on demographics, preferences, and location.
 */
 export type profileQueryType = {
-  limit?: number | undefined,
+  /** Maximum number of profiles to return */
-  after?: string | undefined,
+  limit?: number | undefined
-  // Search and filter parameters
+  /** Pagination cursor for retrieving next page of results */
-  name?: string | undefined,
+  after?: string | undefined
-  genders?: string[] | undefined,
+  /** Specific user ID to retrieve (for single profile lookups) */
-  education_levels?: string[] | undefined,
+  userId?: string | undefined
-  pref_gender?: string[] | undefined,
+  /** Name filter for profile search */
-  pref_age_min?: number | undefined,
+  name?: string | undefined
-  pref_age_max?: number | undefined,
+  /** Filter by gender identity */
-  drinks_min?: number | undefined,
+  genders?: string[] | undefined
-  drinks_max?: number | undefined,
+  /** Filter for profiles with photos */
-  pref_relation_styles?: string[] | undefined,
+  hasPhoto?: boolean | undefined
-  pref_romantic_styles?: string[] | undefined,
+  /** Filter by education level */
-  diet?: string[] | undefined,
+  education_levels?: string[] | undefined
-  political_beliefs?: string[] | undefined,
+  /** Filter by preferred gender for matches */
-  mbti?: string[] | undefined,
+  pref_gender?: string[] | undefined
-  relationship_status?: string[] | undefined,
+  /** Minimum preferred age for matches */
-  languages?: string[] | undefined,
+  pref_age_min?: number | undefined
-  religion?: string[] | undefined,
+  /** Maximum preferred age for matches */
-  wants_kids_strength?: number | undefined,
+  pref_age_max?: number | undefined
-  has_kids?: number | undefined,
+  /** Minimum drinks consumed per month */
-  is_smoker?: boolean | undefined,
+  drinks_min?: number | undefined
-  shortBio?: boolean | undefined,
+  /** Maximum drinks consumed per month */
-  geodbCityIds?: string[] | undefined,
+  drinks_max?: number | undefined
-  lat?: number | undefined,
+  big5_openness_min?: number | undefined
-  lon?: number | undefined,
+  big5_openness_max?: number | undefined
-  radius?: number | undefined,
+  big5_conscientiousness_min?: number | undefined
-  compatibleWithUserId?: string | undefined,
+  big5_conscientiousness_max?: number | undefined
-  skipId?: string | undefined,
+  big5_extraversion_min?: number | undefined
-  orderBy?: string | undefined,
+  big5_extraversion_max?: number | undefined
-  lastModificationWithin?: string | undefined,
+  big5_agreeableness_min?: number | undefined
  big5_agreeableness_max?: number | undefined
  big5_neuroticism_min?: number | undefined
  big5_neuroticism_max?: number | undefined
  pref_relation_styles?: string[] | undefined
  pref_romantic_styles?: string[] | undefined
  diet?: string[] | undefined
  political_beliefs?: string[] | undefined
  mbti?: string[] | undefined
  relationship_status?: string[] | undefined
  languages?: string[] | undefined
  religion?: string[] | undefined
  wants_kids_strength?: number | undefined
  has_kids?: number | undefined
  is_smoker?: boolean | undefined
  shortBio?: boolean | undefined
  psychedelics?: string[] | undefined
  cannabis?: string[] | undefined
  psychedelics_intention?: string[] | undefined
  cannabis_intention?: string[] | undefined
  psychedelics_pref?: string[] | undefined
  cannabis_pref?: string[] | undefined
  geodbCityIds?: string[] | undefined
  lat?: number | undefined
  lon?: number | undefined
  radius?: number | undefined
  raised_in_lat?: number | undefined
  raised_in_lon?: number | undefined
  raised_in_radius?: number | undefined
  compatibleWithUserId?: string | undefined
  skipId?: string | undefined
  orderBy?: string | undefined
  lastModificationWithin?: string | undefined
  last_active?: string | undefined
  locale?: string | undefined
 } & {
  [K in OptionTableKey]?: string[] | undefined
 }
 // const userActivityColumns = ['last_online_time']
 export const loadProfiles = async (props: profileQueryType) => {
  const pg = createSupabaseDirectClient()
-  console.debug('loadProfiles', props)
+  log('get-profiles', props)
  const {
    limit: limitParam,
    after,
    name,
    userId,
    genders,
    hasPhoto,
    education_levels,
    pref_gender,
    pref_age_min,
    pref_age_max,
    drinks_min,
    drinks_max,
    big5_openness_min,
    big5_openness_max,
    big5_conscientiousness_min,
    big5_conscientiousness_max,
    big5_extraversion_min,
    big5_extraversion_max,
    big5_agreeableness_min,
    big5_agreeableness_max,
    big5_neuroticism_min,
    big5_neuroticism_max,
    pref_relation_styles,
    pref_romantic_styles,
    diet,
@@ -74,19 +136,36 @@ export const loadProfiles = async (props: profileQueryType) => {
    work,
    is_smoker,
    shortBio,
    psychedelics,
    cannabis,
    psychedelics_intention,
    cannabis_intention,
    psychedelics_pref,
    cannabis_pref,
    geodbCityIds,
    lat,
    lon,
    radius,
    raised_in_lat,
    raised_in_lon,
    raised_in_radius,
    compatibleWithUserId,
    orderBy: orderByParam = 'created_time',
    lastModificationWithin,
    skipId,
    locale = 'en',
    last_active,
  } = props
  const filterLocation = lat && lon && radius
  const filterRaisedInLocation = raised_in_lat && raised_in_lon && raised_in_radius
-  const keywords = name ? name.split(",").map(q => q.trim()).filter(Boolean) : []
+  const keywords = name
    ? name
        .split(',')
        .map((q) => q.trim())
        .filter(Boolean)
    : []
  // console.debug('keywords:', keywords)
  if (orderByParam === 'compatibility_score' && !compatibleWithUserId) {
@@ -94,40 +173,51 @@ export const loadProfiles = async (props: profileQueryType) => {
    throw Error('Incompatible with user ID')
  }
-  const tablePrefix = orderByParam === 'compatibility_score'
+  const tablePrefix =
-    ? 'compatibility_scores'
+    orderByParam === 'compatibility_score'
-    : orderByParam === 'last_online_time'
+      ? 'compatibility_scores'
-      ? 'user_activity'
+      : orderByParam === 'last_online_time'
-      : 'profiles'
+        ? 'user_activity'
        : 'profiles'
  const userActivityJoin = 'user_activity on user_activity.user_id = profiles.user_id'
  // Need them in the output for the profile card even we don't filter by them
  const joinInterests = true // !!interests?.length
  const joinCauses = true // !!causes?.length
  const joinWork = true // !!work?.length
  // Pre-aggregated interests per profile
  function getManyToManyJoin(label: OptionTableKey) {
    return `(
        SELECT 
            profile_${label}.profile_id,
-            ARRAY_AGG(${label}.name ORDER BY ${label}.name) AS ${label}
+            ARRAY_AGG(${label}.id ORDER BY ${label}.id) AS ${label}
        FROM profile_${label}
        JOIN ${label} ON ${label}.id = profile_${label}.option_id
        GROUP BY profile_${label}.profile_id
    ) profile_${label} ON profile_${label}.profile_id = profiles.id`
  }
  const interestsJoin = getManyToManyJoin('interests')
  const causesJoin = getManyToManyJoin('causes')
  const workJoin = getManyToManyJoin('work')
-  const compatibilityScoreJoin = pgp.as.format(`compatibility_scores cs on (cs.user_id_1 = LEAST(profiles.user_id, $(compatibleWithUserId)) and cs.user_id_2 = GREATEST(profiles.user_id, $(compatibleWithUserId)))`, {compatibleWithUserId})
+  const compatibilityScoreJoin = pgp.as.format(
    `compatibility_scores cs on (cs.user_id_1 = LEAST(profiles.user_id, $(compatibleWithUserId)) and cs.user_id_2 = GREATEST(profiles.user_id, $(compatibleWithUserId)))`,
    {compatibleWithUserId},
  )
  const joins = [
-    orderByParam === 'last_online_time' && leftJoin(userActivityJoin),
+    (orderByParam === 'last_online_time' || last_active) && leftJoin(userActivityJoin),
    orderByParam === 'compatibility_score' && compatibleWithUserId && join(compatibilityScoreJoin),
-    interests && leftJoin(interestsJoin),
+    joinInterests && leftJoin(interestsJoin),
-    causes && leftJoin(causesJoin),
+    joinCauses && leftJoin(causesJoin),
-    work && leftJoin(workJoin),
+    joinWork && leftJoin(workJoin),
  ]
-  const _orderBy = orderByParam === 'compatibility_score' ? 'cs.score' : `${tablePrefix}.${orderByParam}`
+  const _orderBy =
    orderByParam === 'compatibility_score' ? 'cs.score' : `${tablePrefix}.${orderByParam}`
  const afterFilter = renderSql(
    select(_orderBy),
    from('profiles'),
@@ -146,115 +236,213 @@ export const loadProfiles = async (props: profileQueryType) => {
      SELECT 1 FROM profile_${label}
      JOIN ${label} ON ${label}.id = profile_${label}.option_id
      WHERE profile_${label}.profile_id = profiles.id
-        AND ${label}.name = ANY (ARRAY[$(values)])
+        AND ${label}.id = ANY (ARRAY[$(values)])
      )`
  }
  function getOptionClauseKeyword(label: OptionTableKey) {
    return `EXISTS (
      SELECT 1 FROM profile_${label}
      JOIN ${label} ON ${label}.id = profile_${label}.option_id
      LEFT JOIN ${label}_translations
        ON ${label}_translations.option_id = profile_${label}.option_id
          AND ${label}_translations.locale = $(locale)
      WHERE profile_${label}.profile_id = profiles.id
        AND lower(COALESCE(${label}_translations.name, ${label}.name)) ILIKE '%' || lower($(word)) || '%'
    )`
  }
  const filters = [
    where('looking_for_matches = true'),
    where(`profiles.disabled != true`),
-    // where(`pinned_url is not null and pinned_url != ''`),
+    where(`not users.is_banned_from_posting`),
-    where(
+    // where(`data->>'userDeleted' != 'true' or data->>'userDeleted' is null`),
      `(data->>'isBannedFromPosting' != 'true' or data->>'isBannedFromPosting' is null)`
    ),
    where(`data->>'userDeleted' != 'true' or data->>'userDeleted' is null`),
-    ...keywords.map(word => where(
+    ...keywords.map((word) =>
-      `lower(users.name) ilike '%' || lower($(word)) || '%' or lower(bio::text) ilike '%' || lower($(word)) || '%' or bio_tsv @@ phraseto_tsquery('english', $(word))`,
+      where(
-      {word}
+        `lower(users.name) ilike '%' || lower($(word)) || '%'
-    )),
+       or lower(search_text) ilike '%' || lower($(word)) || '%'
       or search_tsv @@ phraseto_tsquery('english', $(word))
       OR ${getOptionClauseKeyword('interests')}
       OR ${getOptionClauseKeyword('causes')}
       OR ${getOptionClauseKeyword('work')}
       OR lower(headline) ilike '%' || lower($(word)) || '%'
       OR EXISTS ( SELECT 1 FROM unnest(keywords) AS kw WHERE kw ILIKE '%' || LOWER($(word)) || '%' )
        `,
        {word, locale},
      ),
    ),
    genders?.length && where(`gender = ANY($(genders))`, {genders}),
-    education_levels?.length && where(`education_level = ANY($(education_levels))`, {education_levels}),
+    education_levels?.length &&
      where(`education_level = ANY($(education_levels))`, {education_levels}),
    mbti?.length && where(`mbti = ANY($(mbti))`, {mbti}),
    pref_gender?.length &&
-    where(`pref_gender is NULL or pref_gender = '{}' OR pref_gender && $(pref_gender)`, {pref_gender}),
+      where(`pref_gender is NULL or pref_gender = '{}' OR pref_gender && $(pref_gender)`, {
        pref_gender,
      }),
-    pref_age_min &&
+    pref_age_min && where(`age >= $(pref_age_min) or age is null`, {pref_age_min}),
    where(`age >= $(pref_age_min) or age is null`, {pref_age_min}),
-    pref_age_max &&
+    pref_age_max && where(`age <= $(pref_age_max) or age is null`, {pref_age_max}),
    where(`age <= $(pref_age_max) or age is null`, {pref_age_max}),
    drinks_min &&
-    where(`drinks_per_month >= $(drinks_min) or drinks_per_month is null`, {drinks_min}),
+      where(`drinks_per_month >= $(drinks_min) or drinks_per_month is null`, {drinks_min}),
    drinks_max &&
-    where(`drinks_per_month <= $(drinks_max) or drinks_per_month is null`, {drinks_max}),
+      where(`drinks_per_month <= $(drinks_max) or drinks_per_month is null`, {drinks_max}),
    big5_openness_min &&
      where(`big5_openness >= $(big5_openness_min) or big5_openness is null`, {big5_openness_min}),
    big5_openness_max &&
      where(`big5_openness <= $(big5_openness_max) or big5_openness is null`, {big5_openness_max}),
    big5_conscientiousness_min &&
      where(
        `big5_conscientiousness >= $(big5_conscientiousness_min) or big5_conscientiousness is null`,
        {big5_conscientiousness_min},
      ),
    big5_conscientiousness_max &&
      where(
        `big5_conscientiousness <= $(big5_conscientiousness_max) or big5_conscientiousness is null`,
        {big5_conscientiousness_max},
      ),
    big5_extraversion_min &&
      where(`big5_extraversion >= $(big5_extraversion_min) or big5_extraversion is null`, {
        big5_extraversion_min,
      }),
    big5_extraversion_max &&
      where(`big5_extraversion <= $(big5_extraversion_max) or big5_extraversion is null`, {
        big5_extraversion_max,
      }),
    big5_agreeableness_min &&
      where(`big5_agreeableness >= $(big5_agreeableness_min) or big5_agreeableness is null`, {
        big5_agreeableness_min,
      }),
    big5_agreeableness_max &&
      where(`big5_agreeableness <= $(big5_agreeableness_max) or big5_agreeableness is null`, {
        big5_agreeableness_max,
      }),
    big5_neuroticism_min &&
      where(`big5_neuroticism >= $(big5_neuroticism_min) or big5_neuroticism is null`, {
        big5_neuroticism_min,
      }),
    big5_neuroticism_max &&
      where(`big5_neuroticism <= $(big5_neuroticism_max) or big5_neuroticism is null`, {
        big5_neuroticism_max,
      }),
    pref_relation_styles?.length &&
-    where(
+      where(
-      `pref_relation_styles IS NULL OR pref_relation_styles = '{}' OR pref_relation_styles && $(pref_relation_styles)`,
+        `pref_relation_styles IS NULL OR pref_relation_styles = '{}' OR pref_relation_styles && $(pref_relation_styles)`,
-      {pref_relation_styles}
+        {pref_relation_styles},
-    ),
+      ),
    pref_romantic_styles?.length &&
-    where(
+      where(
-      `pref_romantic_styles IS NULL OR pref_romantic_styles = '{}' OR pref_romantic_styles && $(pref_romantic_styles)`,
+        `pref_romantic_styles IS NULL OR pref_romantic_styles = '{}' OR pref_romantic_styles && $(pref_romantic_styles)`,
-      {pref_romantic_styles}
+        {pref_romantic_styles},
-    ),
+      ),
-    diet?.length &&
+    diet?.length && where(`diet IS NULL OR diet = '{}' OR diet && $(diet)`, {diet}),
    where(
      `diet IS NULL OR diet = '{}' OR diet && $(diet)`,
      {diet}
    ),
    political_beliefs?.length &&
-    where(
+      where(
-      `political_beliefs IS NULL OR political_beliefs = '{}' OR political_beliefs && $(political_beliefs)`,
+        `political_beliefs IS NULL OR political_beliefs = '{}' OR political_beliefs && $(political_beliefs)`,
-      {political_beliefs}
+        {political_beliefs},
-    ),
+      ),
    relationship_status?.length &&
-    where(
+      where(
-      `relationship_status IS NULL OR relationship_status = '{}' OR relationship_status && $(relationship_status)`,
+        `relationship_status IS NULL OR relationship_status = '{}' OR relationship_status && $(relationship_status)`,
-      {relationship_status}
+        {relationship_status},
-    ),
+      ),
-    languages?.length &&
+    languages?.length && where(`languages && $(languages)`, {languages}),
    where(
      `languages && $(languages)`,
      {languages}
    ),
    religion?.length &&
-    where(
+      where(`religion IS NULL OR religion = '{}' OR religion && $(religion)`, {religion}),
      `religion IS NULL OR religion = '{}' OR religion && $(religion)`,
      {religion}
    ),
-    interests?.length && where(getManyToManyClause('interests'), {values: interests}),
+    interests?.length && where(getManyToManyClause('interests'), {values: interests.map(Number)}),
-    causes?.length && where(getManyToManyClause('causes'), {values: causes}),
+    causes?.length && where(getManyToManyClause('causes'), {values: causes.map(Number)}),
-    work?.length && where(getManyToManyClause('work'), {values: work}),
+    work?.length && where(getManyToManyClause('work'), {values: work.map(Number)}),
    !!wants_kids_strength &&
-    wants_kids_strength !== -1 &&
+      wants_kids_strength !== -1 &&
-    where(
+      where(
-      'wants_kids_strength = -1 OR wants_kids_strength IS NULL OR ' + (wants_kids_strength >= 2 ? `wants_kids_strength >= $(wants_kids_strength)` : `wants_kids_strength <= $(wants_kids_strength)`),
+        'wants_kids_strength = -1 OR wants_kids_strength IS NULL OR ' +
-      {wants_kids_strength}
+          (wants_kids_strength >= 2
-    ),
+            ? `wants_kids_strength >= $(wants_kids_strength)`
            : `wants_kids_strength <= $(wants_kids_strength)`),
        {wants_kids_strength},
      ),
    has_kids === 0 && where(`has_kids IS NULL OR has_kids = 0`),
    has_kids && has_kids > 0 && where(`has_kids > 0`),
-    is_smoker !== undefined && (
+    is_smoker !== undefined &&
      where(
        (is_smoker ? '' : 'is_smoker IS NULL OR ') + // smokers are rare, so we don't include the people who didn't answer if we're looking for smokers
-        `is_smoker = $(is_smoker)`, {is_smoker}
+          `is_smoker = $(is_smoker)`,
-      )
+        {is_smoker},
-    ),
+      ),
-    geodbCityIds?.length &&
+    psychedelics?.length &&
-    where(`geodb_city_id = ANY($(geodbCityIds))`, {geodbCityIds}),
+      where(
        (psychedelics.includes('never_not_interested') ? 'psychedelics IS NULL OR ' : '') +
          `psychedelics = ANY($(psychedelics))`,
        {psychedelics},
      ),
    cannabis?.length &&
      where(
        (cannabis.includes('never_not_interested') ? 'cannabis IS NULL OR ' : '') +
          `cannabis = ANY($(cannabis))`,
        {cannabis},
      ),
    psychedelics_intention?.length &&
      where(
        `(psychedelics IS NOT NULL AND psychedelics != 'never_not_interested') AND (psychedelics_intention IS NULL OR psychedelics_intention = '{}') OR psychedelics_intention && $(psychedelics_intention)`,
        {psychedelics_intention},
      ),
    cannabis_intention?.length &&
      where(
        `(cannabis IS NOT NULL AND cannabis != 'never_not_interested') AND (cannabis_intention IS NULL OR cannabis_intention = '{}') OR cannabis_intention && $(cannabis_intention)`,
        {cannabis_intention},
      ),
    psychedelics_pref?.length &&
      where(
        `psychedelics_pref IS NULL OR psychedelics_pref = '{}' OR psychedelics_pref && $(psychedelics_pref)`,
        {psychedelics_pref},
      ),
    cannabis_pref?.length &&
      where(`cannabis_pref IS NULL OR cannabis_pref = '{}' OR cannabis_pref && $(cannabis_pref)`, {
        cannabis_pref,
      }),
    geodbCityIds?.length && where(`geodb_city_id = ANY($(geodbCityIds))`, {geodbCityIds}),
    // miles par degree of lat: earth's radius (3950 miles) * pi / 180 = 69.0
-    filterLocation && where(`
+    filterLocation &&
      where(
        `
      city_latitude BETWEEN $(target_lat) - ($(radius) / 69.0)
           AND $(target_lat) + ($(radius) / 69.0)
      AND city_longitude BETWEEN $(target_lon) - ($(radius) / (69.0 * COS(RADIANS($(target_lat)))))
@@ -263,24 +451,81 @@ export const loadProfiles = async (props: profileQueryType) => {
            POWER(city_latitude - $(target_lat), 2)
          + POWER((city_longitude - $(target_lon)) * COS(RADIANS($(target_lat))), 2)
          ) <= $(radius) / 69.0
-      `, {target_lat: lat, target_lon: lon, radius}),
+      `,
        {target_lat: lat, target_lon: lon, radius},
      ),
    filterRaisedInLocation &&
      where(
        `
      raised_in_lat BETWEEN $(target_lat) - ($(radius) / 69.0)
           AND $(target_lat) + ($(radius) / 69.0)
      AND raised_in_lon BETWEEN $(target_lon) - ($(radius) / (69.0 * COS(RADIANS($(target_lat)))))
           AND $(target_lon) + ($(radius) / (69.0 * COS(RADIANS($(target_lat)))))
      AND SQRT(
            POWER(raised_in_lat - $(target_lat), 2)
          + POWER((raised_in_lon - $(target_lon)) * COS(RADIANS($(target_lat))), 2)
          ) <= $(radius) / 69.0
      `,
        {target_lat: raised_in_lat, target_lon: raised_in_lon, radius: raised_in_radius},
      ),
    skipId && where(`profiles.user_id != $(skipId)`, {skipId}),
-    !shortBio && where(`bio_length >= ${MIN_BIO_LENGTH}`, {MIN_BIO_LENGTH}),
+    !shortBio &&
      where(
        `bio_length >= ${100}
       OR headline IS NOT NULL
       OR array_length(profile_work.work, 1) > 0
       OR array_length(profile_interests.interests, 1) > 0
       OR occupation_title IS NOT NULL
       `,
      ),
-    lastModificationWithin && where(`last_modification_time >= NOW() - INTERVAL $(lastModificationWithin)`, {lastModificationWithin}),
+    hasPhoto && where("pinned_url IS NOT NULL AND pinned_url != ''"),
    lastModificationWithin &&
      where(`last_modification_time >= NOW() - INTERVAL $(lastModificationWithin)`, {
        lastModificationWithin,
      }),
    last_active &&
      where(`user_activity.last_online_time >= NOW() - INTERVAL $(last_active_interval)`, {
        last_active_interval:
          last_active === 'now'
            ? '30 minutes'
            : last_active === 'today'
              ? '1 day'
              : last_active === '3days'
                ? '3 days'
                : last_active === 'week'
                  ? '7 days'
                  : last_active === 'month'
                    ? '30 days'
                    : '90 days',
      }),
    // Exclude profiles that the requester has chosen to hide
    userId &&
      where(
        `NOT EXISTS (
         SELECT 1 FROM hidden_profiles hp
         WHERE hp.hider_user_id = $(userId)
           AND hp.hidden_user_id = profiles.user_id
       )`,
        {userId},
      ),
  ]
  let selectCols = 'profiles.*, users.name, users.username, users.data as user'
  if (orderByParam === 'compatibility_score') {
    selectCols += ', cs.score as compatibility_score'
-  } else if (orderByParam === 'last_online_time') {
+  } else if (orderByParam === 'last_online_time' || last_active) {
    selectCols += ', user_activity.last_online_time'
  }
-  if (interests) selectCols += `, COALESCE(profile_interests.interests, '{}') AS interests`
+  if (joinInterests) selectCols += `, COALESCE(profile_interests.interests, '{}') AS interests`
-  if (causes) selectCols += `, COALESCE(profile_causes.causes, '{}') AS causes`
+  if (joinCauses) selectCols += `, COALESCE(profile_causes.causes, '{}') AS causes`
-  if (work) selectCols += `, COALESCE(profile_work.work, '{}') AS work`
+  if (joinWork) selectCols += `, COALESCE(profile_work.work, '{}') AS work`
  const query = renderSql(
    select(selectCols),
@@ -297,11 +542,7 @@ export const loadProfiles = async (props: profileQueryType) => {
  // console.debug('profiles:', profiles)
-  const countQuery = renderSql(
+  const countQuery = renderSql(select(`count(*) as count`), ...tableSelection, ...filters)
    select(`count(*) as count`),
    ...tableSelection,
    ...filters,
  )
  const count = await pg.one<number>(countQuery, [], (r) => Number(r.count))
@@ -311,10 +552,11 @@ export const loadProfiles = async (props: profileQueryType) => {
 export const getProfiles: APIHandler<'get-profiles'> = async (props, auth) => {
  try {
    if (!props.skipId) props.skipId = auth.uid
-    const {profiles, count} = await loadProfiles(props)
+    const {profiles, count} = await loadProfiles({...props, userId: auth.uid})
    return {status: 'success', profiles: profiles, count: count}
  } catch (error) {
    console.log(error)
    Sentry.captureException(error, {extra: props})
    return {status: 'fail', profiles: [], count: 0}
  }
 }
--- a/backend/api/src/get-supabase-token.ts
+++ b/backend/api/src/get-supabase-token.ts
@@ -1,18 +1,16 @@
 import {ENV_CONFIG} from 'common/envs/constants'
 import {sign} from 'jsonwebtoken'
 import {APIError, APIHandler} from './helpers/endpoint'
 import {ENV_CONFIG} from "common/envs/constants";
-export const getSupabaseToken: APIHandler<'get-supabase-token'> = async (
+import {APIErrors, APIHandler} from './helpers/endpoint'
-  _,
+
-  auth
+export const getSupabaseToken: APIHandler<'get-supabase-token'> = async (_, auth) => {
 ) => {
  const jwtSecret = process.env.SUPABASE_JWT_SECRET
  if (jwtSecret == null) {
-    throw new APIError(500, "No SUPABASE_JWT_SECRET; couldn't sign token.")
+    throw APIErrors.internalServerError("No SUPABASE_JWT_SECRET; couldn't sign token.")
  }
  const instanceId = ENV_CONFIG.supabaseInstanceId
  if (!instanceId) {
-    throw new APIError(500, 'No Supabase instance ID in config.')
+    throw APIErrors.internalServerError('No Supabase instance ID in config.')
  }
  const payload = {role: 'anon'} // postgres role
  return {
--- a/backend/api/src/get-user-and-profile.ts
+++ b/backend/api/src/get-user-and-profile.ts
@@ -0,0 +1,68 @@
 import {debug} from 'common/logger'
 import {ProfileRow} from 'common/profiles/profile'
 import {convertUser} from 'common/supabase/users'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {type APIHandler} from './helpers/endpoint'
 export async function getUserAndProfile(username: string) {
  const pg = createSupabaseDirectClient()
  const user = await pg.oneOrNone('SELECT * FROM users WHERE username ILIKE $1', [username], (r) =>
    r ? convertUser(r) : null,
  )
  if (!user) return null
  // Fetch profile like getProfileRow does
  const profileRes = await pg.oneOrNone<ProfileRow>('SELECT * FROM profiles WHERE user_id = $1', [
    user.id,
  ])
  if (!profileRes) return {user, profile: null}
  // Parallel instead of sequential (like getProfileRow does in frontend)
  const [interestsRes, causesRes, workRes] = await Promise.all([
    pg.any(
      `SELECT interests.id 
            FROM profile_interests 
            JOIN interests ON profile_interests.option_id = interests.id 
            WHERE profile_interests.profile_id = $1`,
      [profileRes.id],
    ),
    pg.any(
      `SELECT causes.id 
            FROM profile_causes 
            JOIN causes ON profile_causes.option_id = causes.id 
            WHERE profile_causes.profile_id = $1`,
      [profileRes.id],
    ),
    pg.any(
      `SELECT work.id 
            FROM profile_work 
            JOIN work ON profile_work.option_id = work.id 
            WHERE profile_work.profile_id = $1`,
      [profileRes.id],
    ),
  ])
  const profileWithItems = {
    ...profileRes,
    interests: interestsRes.map((r: any) => String(r.id)),
    causes: causesRes.map((r: any) => String(r.id)),
    work: workRes.map((r: any) => String(r.id)),
  }
  return {user, profile: profileWithItems}
 }
 export const getUserAndProfileHandler: APIHandler<'get-user-and-profile'> = async (
  {username},
  _auth,
 ) => {
  const result = await getUserAndProfile(username)
  debug(result)
  return {
    user: result?.user,
    profile: result?.profile,
  }
 }
--- a/backend/api/src/get-user-data-export.ts
+++ b/backend/api/src/get-user-data-export.ts
@@ -0,0 +1,180 @@
 import {Row} from 'common/supabase/utils'
 import {parseJsonContentToText} from 'common/util/parse'
 import {createSupabaseDirectClient} from 'shared/supabase/init'
 import {parseMessageObject} from 'shared/supabase/messages'
 import {getLikesAndShipsMain} from './get-likes-and-ships'
 import {APIHandler} from './helpers/endpoint'
 export const getUserDataExport: APIHandler<'me/data'> = async (_, auth) => {
  const userId = auth.uid
  const pg = createSupabaseDirectClient()
  const user = await pg.oneOrNone<Row<'users'>>('select * from users where id = $1', [userId])
  const privateUser = await pg.oneOrNone<Row<'private_users'>>(
    'select * from private_users where id = $1',
    [userId],
  )
  const profile = await pg.oneOrNone(
    `
        select profiles.*,
               users.name,
               users.username,
               users.data                                  as "user",
               COALESCE(profile_interests.interests, '{}') as interests,
               COALESCE(profile_causes.causes, '{}')       as causes,
               COALESCE(profile_work.work, '{}')           as work
        from profiles
                 join users on users.id = profiles.user_id
                 left join (select pi.profile_id,
                                   array_agg(i.name order by i.id) as interests
                            from profile_interests pi
                                     join interests i on i.id = pi.option_id
                            group by pi.profile_id) as profile_interests on profile_interests.profile_id = profiles.id
                 left join (select pc.profile_id,
                                   array_agg(c.name order by c.id) as causes
                            from profile_causes pc
                                     join causes c on c.id = pc.option_id
                            group by pc.profile_id) as profile_causes on profile_causes.profile_id = profiles.id
                 left join (select pw.profile_id,
                                   array_agg(w.name order by w.id) as work
                            from profile_work pw
                                     join work w on w.id = pw.option_id
                            group by pw.profile_id) as profile_work on profile_work.profile_id = profiles.id
        where profiles.user_id = $1
    `,
    [userId],
  )
  if (profile.bio) {
    profile.bio_clean = parseJsonContentToText(profile.bio).replace(/\n/g, ' ').trim()
  }
  const compatibilityAnswers = await pg.manyOrNone(
    `
        select a.*,
               p.question,
               p.answer_type,
               p.multiple_choice_options,
               p.category,
               p.importance_score
        from compatibility_answers a
                 join compatibility_prompts p
                      on p.id = a.question_id
        where a.creator_id = $1
        order by a.created_time desc
    `,
    [userId],
  )
  const userActivity = await pg.oneOrNone<Row<'user_activity'>>(
    'select * from user_activity where user_id = $1',
    [userId],
  )
  const searchBookmarks = await pg.manyOrNone<Row<'bookmarked_searches'>>(
    'select * from bookmarked_searches where creator_id = $1 order by id desc',
    [userId],
  )
  const hiddenProfiles = await pg.manyOrNone(
    `select hp.id, hp.hidden_user_id, hp.created_time, u.username
     from hidden_profiles hp
              join users u on u.id = hp.hidden_user_id
     where hp.hider_user_id = $1
     order by hp.id desc`,
    [userId],
  )
  const messageChannelMemberships = await pg.manyOrNone<
    Row<'private_user_message_channel_members'>
  >('select * from private_user_message_channel_members where user_id = $1', [userId])
  const channelIds = Array.from(new Set(messageChannelMemberships.map((m) => m.channel_id)))
  const messageChannels = channelIds.length
    ? await pg.manyOrNone<Row<'private_user_message_channels'>>(
        'select * from private_user_message_channels where id = any($1)',
        [channelIds],
      )
    : []
  const messages = channelIds.length
    ? await pg.manyOrNone<Row<'private_user_messages'>>(
        `select *
       from private_user_messages
       where channel_id = any ($1)
       order by created_time`,
        [channelIds],
      )
    : []
  for (const message of messages) parseMessageObject(message)
  const membershipsWithUsernames = channelIds.length
    ? await pg.manyOrNone(
        `
          select m.*,
                 u.username
          from private_user_message_channel_members m
                   join users u on u.id = m.user_id
          where m.channel_id = any ($1)
            and m.user_id != $2
      `,
        [channelIds, userId],
      )
    : []
  const endorsements = await getLikesAndShipsMain(userId)
  const accountMetadata = {
    // userData: (user as any)?.data ?? null,
    userActivity,
  }
  const voteAnswers = await pg.manyOrNone(
    `
        select r.*,
               v.title,
               v.description,
               v.is_anonymous,
               v.status,
               v.created_time as vote_created_time
        from vote_results r
                 join votes v on v.id = r.vote_id
        where r.user_id = $1
        order by v.created_time desc
    `,
    [userId],
  )
  const reports = await pg.manyOrNone<Row<'reports'>>(
    'select * from reports where user_id = $1 order by created_time desc nulls last',
    [userId],
  )
  const contactMessages = await pg.manyOrNone<Row<'contact'>>(
    'select * from contact where user_id = $1 order by created_time desc nulls last',
    [userId],
  )
  return {
    user,
    privateUser,
    profile,
    compatibilityAnswers,
    voteAnswers,
    messages: {
      channels: messageChannels,
      memberships: membershipsWithUsernames,
      messages,
    },
    endorsements,
    searchBookmarks,
    hiddenProfiles,
    reports,
    contactMessages,
    accountMetadata,
  }
 }
--- a/backend/api/src/get-user.ts
+++ b/backend/api/src/get-user.ts
@@ -1,17 +1,17 @@
-import { toUserAPIResponse } from 'common/api/user-types'
+import {toUserAPIResponse} from 'common/api/user-types'
-import { convertUser } from 'common/supabase/users'
+import {APIErrors} from 'common/api/utils'
-import { createSupabaseDirectClient } from 'shared/supabase/init'
+import {convertUser} from 'common/supabase/users'
-import { APIError } from 'common/api/utils'
+import {createSupabaseDirectClient} from 'shared/supabase/init'
-export const getUser = async (props: { id: string } | { username: string }) => {
+export const getUser = async (props: {id: string} | {username: string}) => {
  const pg = createSupabaseDirectClient()
  const user = await pg.oneOrNone(
    `select * from users
            where ${'id' in props ? 'id' : 'username'} = $1`,
    ['id' in props ? props.id : props.username],
-    (r) => (r ? convertUser(r) : null)
+    (r) => (r ? convertUser(r) : null),
  )
-  if (!user) throw new APIError(404, 'User not found')
+  if (!user) throw APIErrors.notFound('User not found')
  return toUserAPIResponse(user)
 }
@@ -27,7 +27,7 @@ export const getUser = async (props: { id: string } | { username: string }) => {
 //             where ${'id' in props ? 'id' : 'username'} = $1`,
 //     ['id' in props ? props.id : props.username]
 //   )
-//   if (!liteUser) throw new APIError(404, 'User not found')
+//   if (!liteUser) throw APIErrors.notFound('User not found')
 //
 //   return removeNullOrUndefinedProps(liteUser)
 // }
--- a/Show More
+++ b/Show More
`@@ -1 +1,2 @@`
	`save-exact true`	`save-exact true`
		`ignore-engines true`