Release 202506131423

docker-compose.yml

@@ -10,7 +10,11 @@ services:
     env_file:
       - .env
     healthcheck:
-      test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-kycnot} -d ${POSTGRES_DATABASE:-kycnot}"]
+      test:
+        [
+          'CMD-SHELL',
+          'pg_isready -U ${POSTGRES_USER:-kycnot} -d ${POSTGRES_DATABASE:-kycnot}',
+        ]
       interval: 10s
       timeout: 5s
       retries: 5
@@ -26,7 +30,7 @@ services:
   crawl4ai:
     image: unclecode/crawl4ai:basic-amd64
     expose:
-      - "11235"
+      - '11235'
     env_file:
       - .env
     volumes:
@@ -42,7 +46,7 @@ services:
     image: redis:latest
     restart: unless-stopped
     healthcheck:
-      test: ["CMD", "redis-cli", "ping"]
+      test: ['CMD', 'redis-cli', 'ping']
       interval: 10s
       timeout: 5s
       retries: 5
@@ -62,7 +66,15 @@ services:
     expose:
       - 4321
     healthcheck:
-      test: ["CMD", "curl", "-k", "--silent", "--fail", "http://localhost:4321/health"]
+      test:
+        [
+          'CMD',
+          'curl',
+          '-k',
+          '--silent',
+          '--fail',
+          'http://localhost:4321/internal-api/healthcheck',
+        ]
       interval: 10s
       timeout: 5s
       retries: 5

pyworker/pyworker/cli.py

@@ -366,7 +366,7 @@ def run_worker_mode() -> int:
 
     # Register service score recalculation task (every 5 minutes)
     scheduler.register_task(
-        "service-score-recalc",
+        "service_score_recalc",
         "*/5 * * * *",
         run_service_score_recalc_task,
     )

pyworker/pyworker/database.py

@@ -332,29 +332,33 @@ def remove_service_attribute_by_slug(service_id: int, attribute_slug: str) -> bo
     return remove_service_attribute(service_id, attribute_id)
 
 
-def save_tos_review(service_id: int, review: TosReviewType):
-    """
-    Save a TOS review for a specific service.
+def save_tos_review(service_id: int, review: Optional[TosReviewType]):
+    """Persist a TOS review and/or update the timestamp for a service.
 
-    Args:
-        service_id: The ID of the service.
-        review: A TypedDict containing the review data.
+    If *review* is ``None`` the existing review (if any) is preserved while
+    only the ``tosReviewAt`` column is updated. This ensures we still track
+    when the review task last ran even if the review generation failed or
+    produced no changes.
     """
     try:
-        # Serialize the dictionary to a JSON string for the database
-        review_json = json.dumps(review)
         with get_db_connection() as conn:
             with conn.cursor(row_factory=dict_row) as cursor:
-                cursor.execute(
-                    """
-                    UPDATE "Service" 
-                    SET "tosReview" = %s, "tosReviewAt" = NOW()
-                    WHERE id = %s
-                """,
-                    (review_json, service_id),
-                )
+                if review is None:
+                    cursor.execute(
+                        'UPDATE "Service" SET "tosReviewAt" = NOW() WHERE id = %s AND "tosReview" IS NULL',
+                        (service_id,),
+                    )
+                else:
+                    review_json = json.dumps(review)
+                    cursor.execute(
+                        'UPDATE "Service" SET "tosReview" = %s, "tosReviewAt" = NOW() WHERE id = %s',
+                        (review_json, service_id),
+                    )
+
                 conn.commit()
-                logger.info(f"Successfully saved TOS review for service {service_id}")
+                logger.info(
+                    f"Successfully saved TOS review (updated={review is not None}) for service {service_id}"
+                )
     except Exception as e:
         logger.error(f"Error saving TOS review for service {service_id}: {e}")
 

pyworker/pyworker/tasks/tos_review.py

@@ -5,6 +5,8 @@ Task for retrieving Terms of Service (TOS) text.
 import hashlib
 from typing import Any, Dict, Optional
 
+import requests
+
 from pyworker.database import TosReviewType, save_tos_review, update_kyc_level
 from pyworker.tasks.base import Task
 from pyworker.utils.ai import prompt_check_tos_review, prompt_tos_review
@@ -52,65 +54,97 @@ class TosReviewTask(Task):
         )
         self.logger.info(f"TOS URLs: {tos_urls}")
 
+        review = self.get_tos_review(tos_urls, service.get("tosReview"))
+
+        # Always update the processed timestamp, even if review is None
+        save_tos_review(service_id, review)
+
+        if review is None:
+            self.logger.warning(
+                f"TOS review could not be generated for service {service_name} (ID: {service_id})"
+            )
+            return None
+
+        # Update the KYC level based on the review, when present
+        if "kycLevel" in review:
+            new_level = review["kycLevel"]
+            old_level = service.get("kycLevel")
+
+            # Update DB
+            if update_kyc_level(service_id, new_level):
+                msg = f"{service.get('slug', service_name)}: kycLevel {old_level} -> {new_level}"
+
+                # Log to console
+                self.logger.info(msg)
+
+                # Send notification via ntfy
+                try:
+                    requests.post(
+                        "https://ntfy.sh/knm-kyc-lvl-changes-knm", data=msg.encode()
+                    )
+                except requests.RequestException as e:
+                    self.logger.error(
+                        f"Failed to send ntfy notification for KYC level change: {e}"
+                    )
+
+        return review
+
+    def get_tos_review(
+        self, tos_urls: list[str], current_review: Optional[TosReviewType]
+    ) -> Optional[TosReviewType]:
+        """
+        Get TOS review from a list of URLs.
+
+        Args:
+            tos_urls: List of TOS URLs to check
+            current_review: Current review data from the database
+
+        Returns:
+            Dict containing:
+            - status: Literal["skipped", "failed", "success"]
+            - review: Optional[TosReviewType] - The review data if successful
+        """
+        all_skipped = True
+
         for tos_url in tos_urls:
             api_url = f"{tos_url}"
             self.logger.info(f"Fetching TOS from URL: {api_url}")
 
-            # Sleep for 1 second to avoid rate limiting
             content = fetch_markdown(api_url)
 
-            if content:
-                # Hash the content to avoid repeating the same content
-                content_hash = hashlib.sha256(content.encode()).hexdigest()
-                self.logger.info(f"Content hash: {content_hash}")
-
-                # service.get("tosReview") can be None if the DB field is NULL.
-                # Default to an empty dict to prevent AttributeError on .get()
-                tos_review_data_from_service: Optional[Dict[str, Any]] = service.get(
-                    "tosReview"
-                )
-                tos_review: Dict[str, Any] = (
-                    tos_review_data_from_service
-                    if tos_review_data_from_service is not None
-                    else {}
-                )
-
-                stored_hash = tos_review.get("contentHash")
-
-                # Skip processing if we've seen this content before
-                if stored_hash == content_hash:
-                    self.logger.info(
-                        f"Skipping already processed TOS content with hash: {content_hash}"
-                    )
-                    continue
-
-                # Skip incomplete TOS content
-                check = prompt_check_tos_review(content)
-                if not check:
-                    continue
-                elif not check["isComplete"]:
-                    continue
-
-                # Query OpenAI to summarize the content
-                review = prompt_tos_review(content)
-
-                if review:
-                    review["contentHash"] = content_hash
-                    # Save the review to the database
-                    save_tos_review(service_id, review)
-
-                    # Update the KYC level based on the review
-                    if "kycLevel" in review:
-                        kyc_level = review["kycLevel"]
-                        self.logger.info(
-                            f"Updating KYC level to {kyc_level} for service {service_name}"
-                        )
-                        update_kyc_level(service_id, kyc_level)
-                    # no need to check other TOS URLs
-                    break
-
-                return review
-            else:
+            if not content:
                 self.logger.warning(
                     f"Failed to retrieve TOS content for URL: {tos_url}"
                 )
+                all_skipped = False
+                continue
+
+            # Hash the content to avoid repeating the same content
+            content_hash = hashlib.sha256(content.encode()).hexdigest()
+            self.logger.info(f"Content hash: {content_hash}")
+
+            # Skip processing if we've seen this content before
+            if current_review and current_review.get("contentHash") == content_hash:
+                self.logger.info(
+                    f"Skipping already processed TOS content with hash: {content_hash}"
+                )
+                continue
+
+            all_skipped = False
+
+            # Skip incomplete TOS content
+            check = prompt_check_tos_review(content)
+            if not check or not check["isComplete"]:
+                continue
+
+            # Query OpenAI to summarize the content
+            review = prompt_tos_review(content)
+
+            if review:
+                review["contentHash"] = content_hash
+                return review
+
+        if all_skipped:
+            return current_review
+
+        return None

pyworker/pyworker/utils/ai.py

@@ -92,7 +92,9 @@ def prompt_check_tos_review(content: str) -> TosReviewCheck:
         {"role": "user", "content": content},
     ]
 
-    result_dict = query_openai_json(messages, model="openai/gpt-4.1-mini")
+    result_dict = query_openai_json(
+        messages, model="openai/gemini-2.5-flash-preview-05-20"
+    )
 
     return cast(TosReviewCheck, result_dict)
 
@@ -173,12 +175,12 @@ type TosReview = {
         /** In regards to KYC, Privacy, Anonymity, Self-Sovereignity, etc. */
         /** anything that could harm the user's privacy, identity, self-sovereignity or anonymity is negative, anything that otherwise helps is positive. else it is neutral. */
         rating: 'negative' | 'neutral' | 'positive'
-    }[]
+    }[] // max 8 highlights, try to provide at least 3.
 }
 
 The rating is a number between 0 and 2, where 0 is informative, 1 is warning, and 2 is critical.
 
-Be concise but thorough, and make sure your output is properly formatted JSON.
+Focus on the most important information for the user. Be concise and thorough, and make sure your output is properly formatted JSON.
 """
 
 PROMPT_COMMENT_SENTIMENT_SUMMARY = """

web/Dockerfile

@@ -16,7 +16,7 @@ ARG ASTRO_BUILD_MODE=production
 RUN npx prisma generate
 
 # Build the application
-RUN npm run build -- --mode ${ASTRO_BUILD_MODE}
+RUN npm run build:astro -- --mode ${ASTRO_BUILD_MODE} && npm run build:server-init
 
 ENV HOST=0.0.0.0
 ENV PORT=4321
@@ -26,4 +26,4 @@ EXPOSE 4321
 COPY web/migrate.sh /usr/local/bin/knm-migrate
 RUN chmod +x /usr/local/bin/knm-migrate
 
-CMD ["node", "./dist/server/entry.mjs"]
+CMD ["sh", "-c", "node ./dist/server/server-init.js & node ./dist/server/entry.mjs"]

web/astro.config.mjs

@@ -4,8 +4,11 @@ import mdx from '@astrojs/mdx'
 import node from '@astrojs/node'
 import sitemap from '@astrojs/sitemap'
 import tailwindcss from '@tailwindcss/vite'
+import { minimal2023Preset } from '@vite-pwa/assets-generator/config'
+import AstroPWA from '@vite-pwa/astro'
 import { defineConfig, envField } from 'astro/config'
 import icon from 'astro-icon'
+import devtoolsJson from 'vite-plugin-devtools-json'
 
 import { postgresListener } from './src/lib/postgresListenerIntegration'
 import { getServerEnvVariable } from './src/lib/serverEnvVariables'
@@ -16,15 +19,65 @@ export default defineConfig({
   site: SITE_URL,
   vite: {
     build: {
-      sourcemap: true,
+      sourcemap: true, // Enable sourcemaps on production, so users can inspect the code
     },
 
-    plugins: [tailwindcss()],
+    plugins: [devtoolsJson(), tailwindcss()],
   },
   integrations: [
     postgresListener(),
     icon(),
     mdx(),
+    AstroPWA({
+      mode: 'development',
+      base: '/',
+      scope: '/',
+      registerType: 'autoUpdate',
+      manifest: {
+        name: 'KYCnot.me',
+        short_name: 'KYCnot.me',
+        description: 'Find services that respect your privacy',
+        theme_color: '#040505',
+        background_color: '#171c1b',
+        display: 'minimal-ui',
+      },
+      pwaAssets: {
+        image: './public/favicon.svg',
+        preset: {
+          ...minimal2023Preset,
+          maskable: {
+            ...minimal2023Preset.maskable,
+            padding: 0.1,
+            resizeOptions: {
+              ...minimal2023Preset.maskable.resizeOptions,
+              background: '#3bdb78',
+            },
+          },
+          apple: {
+            ...minimal2023Preset.apple,
+            padding: 0.1,
+            resizeOptions: {
+              ...minimal2023Preset.apple.resizeOptions,
+              background: '#3bdb78',
+            },
+          },
+        },
+      },
+      workbox: {
+        navigateFallback: '/404',
+        globPatterns: ['**/*.{js,css,html,ico,jpg,jpeg,png,svg,webp,avif}'],
+      },
+      strategies: 'injectManifest',
+      srcDir: 'src',
+      filename: 'sw.ts',
+      devOptions: {
+        enabled: true,
+        type: 'module',
+      },
+      experimental: {
+        directoryAndTrailingSlashHandler: true,
+      },
+    }),
     sitemap({
       filter: (page) => {
         const url = new URL(page)
@@ -57,6 +110,8 @@ export default defineConfig({
     '/attribute/[...slug]': '/attributes',
     '/attr/[...slug]': '/attributes',
     // #endregion
+
+    '/service/[...slug]/review': '/service/[...slug]#comments',
   },
   env: {
     schema: {
@@ -70,7 +125,7 @@ export default defineConfig({
       }),
       // Public URLs (can be accessed from both server and client)
       SOURCE_CODE_URL: envField.string({
-        context: 'server',
+        context: 'client',
         access: 'public',
         url: true,
         optional: false,
@@ -95,35 +150,6 @@ export default defineConfig({
         startsWith: 'redis://',
         default: 'redis://redis:6379',
       }),
-      REDIS_USER_SESSION_EXPIRY_SECONDS: envField.number({
-        context: 'server',
-        access: 'secret',
-        int: true,
-        gt: 0,
-        default: 60 * 60 * 24, // 24 hours in seconds
-      }),
-      REDIS_IMPERSONATION_SESSION_EXPIRY_SECONDS: envField.number({
-        context: 'server',
-        access: 'secret',
-        int: true,
-        gt: 0,
-        default: 60 * 60 * 24, // 24 hours in seconds
-      }),
-      REDIS_PREGENERATED_TOKEN_EXPIRY_SECONDS: envField.number({
-        context: 'server',
-        access: 'secret',
-        int: true,
-        gt: 0,
-        default: 60 * 5, // 5 minutes in seconds
-      }),
-
-      REDIS_ACTIONS_SESSION_EXPIRY_SECONDS: envField.number({
-        context: 'server',
-        access: 'secret',
-        int: true,
-        gt: 0,
-        default: 60 * 5, // 5 minutes in seconds
-      }),
 
       // Development tokens
       DEV_ADMIN_USER_SECRET_TOKEN: envField.string({

web/eslint.config.js

@@ -121,7 +121,7 @@ export default tseslint.config(
       'import/first': 'error',
       'import/newline-after-import': 'error',
       'import/no-duplicates': 'error',
-      'import/no-unresolved': ['error', { ignore: ['^astro:'] }],
+      'import/no-unresolved': ['error', { ignore: ['^astro:', '^virtual:'] }],
       '@typescript-eslint/no-explicit-any': 'warn',
       'no-console': ['warn', { allow: without(Object.keys(console), 'log') }],
       'import/namespace': 'off',

web/package.json

@@ -4,8 +4,10 @@
   "version": "0.0.1",
   "scripts": {
     "dev": "astro dev",
-    "build": "astro build --remote",
-    "preview": "astro preview",
+    "build": "npm run build:astro && npm run build:server-init",
+    "build:astro": "astro build --remote",
+    "build:server-init": "esbuild src/server-init.ts --bundle --platform=node --format=esm --packages=external --outfile=dist/server/server-init.js",
+    "preview": "node dist/server/server-init.js & astro preview",
     "astro": "astro",
     "db-admin": "prisma studio --browser=none",
     "db-gen": "prisma generate",
@@ -26,6 +28,7 @@
     "@astrojs/db": "0.15.0",
     "@astrojs/mdx": "4.3.0",
     "@astrojs/node": "9.2.2",
+    "@astrojs/rss": "4.0.12",
     "@astrojs/sitemap": "3.4.1",
     "@fontsource-variable/space-grotesk": "5.2.8",
     "@fontsource/inter": "5.2.5",
@@ -79,8 +82,11 @@
     "@types/seedrandom": "3.0.8",
     "@types/web-push": "3.6.4",
     "@typescript-eslint/parser": "8.33.1",
+    "@vite-pwa/assets-generator": "1.0.0",
+    "@vite-pwa/astro": "1.1.0",
     "astro-icon": "1.1.5",
     "date-fns": "4.1.0",
+    "esbuild": "0.25.5",
     "eslint": "9.28.0",
     "eslint-import-resolver-typescript": "4.4.3",
     "eslint-plugin-astro": "1.3.1",
@@ -96,6 +102,9 @@
     "ts-essentials": "10.0.4",
     "ts-toolbelt": "9.6.0",
     "tsx": "4.19.4",
-    "typescript-eslint": "8.33.1"
+    "typescript-eslint": "8.33.1",
+    "vite-plugin-devtools-json": "0.1.1",
+    "workbox-core": "7.3.0",
+    "workbox-precaching": "7.3.0"
   }
 }

web/prisma/migrations/20250609213656_suggestion_created_notification_type/migration.sql

@@ -0,0 +1,2 @@
+-- AlterEnum
+ALTER TYPE "NotificationType" ADD VALUE 'SUGGESTION_CREATED';

web/prisma/migrations/20250610163329_feedi_optional/migration.sql

@@ -0,0 +1,11 @@
+/*
+  Warnings:
+
+  - A unique constraint covering the columns `[feedId]` on the table `User` will be added. If there are existing duplicate values, this will fail.
+
+*/
+-- AlterTable
+ALTER TABLE "User" ADD COLUMN     "feedId" TEXT;
+
+-- CreateIndex
+CREATE UNIQUE INDEX "User_feedId_key" ON "User"("feedId");

web/prisma/migrations/20250610171300_required_feed_id/migration.sql

@@ -0,0 +1,8 @@
+/*
+  Warnings:
+
+  - Made the column `feedId` on table `User` required. This step will fail if there are existing NULL values in that column.
+
+*/
+-- AlterTable
+ALTER TABLE "User" ALTER COLUMN "feedId" SET NOT NULL;

web/prisma/migrations/20250613125943_warning_verification_step/migration.sql

@@ -0,0 +1,2 @@
+-- AlterEnum
+ALTER TYPE "VerificationStepStatus" ADD VALUE 'WARNING';

web/prisma/schema.prisma

@@ -135,6 +135,7 @@ enum NotificationType {
   COMMUNITY_NOTE_ADDED
   /// Comment that is not a reply. May include a rating.
   ROOT_COMMENT_CREATED
+  SUGGESTION_CREATED
   SUGGESTION_MESSAGE
   SUGGESTION_STATUS_CHANGE
   // KARMA_UNLOCK // TODO: [KARMA_UNLOCK] Will be added later, when karma unloks are in the database, not in the code.
@@ -497,6 +498,7 @@ model User {
   moderator       Boolean @default(false)
   verifiedLink    String?
   secretTokenHash String  @unique
+  feedId          String  @unique @default(cuid(2))
   /// Computed via trigger. Do not update through prisma.
   totalKarma      Int     @default(0)
 
@@ -576,6 +578,7 @@ enum VerificationStepStatus {
   IN_PROGRESS
   PASSED
   FAILED
+  WARNING
 }
 
 model VerificationStep {

web/prisma/seed.ts

@@ -19,6 +19,7 @@ import {
   type ServiceVisibility,
   ServiceSuggestionType,
   KycLevelClarification,
+  VerificationStepStatus,
 } from '@prisma/client'
 import { omit, uniqBy } from 'lodash-es'
 import { generateUsername } from 'unique-username-generator'
@@ -610,6 +611,10 @@ const generateFakeService = (users: User[]) => {
   const name = faker.helpers.arrayElement(serviceNames)
   const slug = `${faker.helpers.slugify(name).toLowerCase()}-${faker.string.alphanumeric({ length: 6, casing: 'lower' })}`
 
+  const tosReview = faker.helpers.maybe(() => faker.helpers.arrayElement(tosReviewExamples), {
+    probability: 0.8,
+  })
+
   return {
     name,
     slug,
@@ -643,6 +648,19 @@ const generateFakeService = (users: User[]) => {
     },
     verificationProofMd:
       status === 'VERIFICATION_SUCCESS' || status === 'VERIFICATION_FAILED' ? faker.lorem.paragraphs() : null,
+    verificationSteps:
+      (status === 'VERIFICATION_SUCCESS' || status === 'VERIFICATION_FAILED') && faker.datatype.boolean(0.75)
+        ? {
+            create: Array.from({ length: faker.number.int({ min: 1, max: 5 }) }, () => ({
+              title: faker.lorem.sentence(),
+              description: faker.lorem.paragraph(),
+              status: faker.helpers.arrayElement(Object.values(VerificationStepStatus)),
+              evidenceMd: faker.lorem.paragraph(),
+              createdAt: faker.date.recent(),
+              updatedAt: faker.date.recent(),
+            })),
+          }
+        : undefined,
     referral: faker.helpers.arrayElement([
       `?ref=${faker.string.alphanumeric(6)}`,
       `/ref/${faker.string.alphanumeric(6)}`,
@@ -661,8 +679,10 @@ const generateFakeService = (users: User[]) => {
     imageUrl: `https://ui-avatars.com/api/?name=${encodeURIComponent(name)}&background=random&format=svg`,
     listedAt: faker.date.past(),
     verifiedAt: status === VerificationStatus.VERIFICATION_SUCCESS ? faker.date.past() : null,
-    tosReview: faker.helpers.arrayElement(tosReviewExamples),
-    tosReviewAt: faker.date.past(),
+    tosReview,
+    tosReviewAt: tosReview
+      ? faker.date.recent()
+      : faker.helpers.maybe(() => faker.date.recent(), { probability: 0.5 }),
     userSentiment: faker.helpers.maybe(() => generateFakeUserSentiment(), { probability: 0.8 }),
     userSentimentAt: faker.date.recent(),
     internalNotes: faker.helpers.maybe(
@@ -1123,7 +1143,7 @@ async function main() {
   }
 
   let users = await Promise.all(
-    Array.from({ length: 10 }, async () => {
+    Array.from({ length: 570 }, async () => {
       const { user } = await createAccount()
       return user
     })

web/prisma/triggers/02_service_score.sql

@@ -22,8 +22,9 @@ DROP FUNCTION IF EXISTS recalculate_scores_for_attribute();
 CREATE OR REPLACE FUNCTION calculate_privacy_score(service_id INT) 
 RETURNS INT AS $$
 DECLARE
-    privacy_score INT := 50; -- Start from middle value (50)
+    privacy_score INT := 0;
     kyc_factor INT;
+    clarification_factor INT := 0;
     onion_factor INT := 0;
     i2p_factor INT := 0;
     monero_factor INT := 0;
@@ -46,6 +47,16 @@ BEGIN
     FROM "Service" 
     WHERE "id" = service_id;
     
+    -- Adjust score based on KYC level clarification modifiers
+    SELECT 
+        CASE 
+            WHEN "kycLevelClarification" = 'DEPENDS_ON_PARTNERS' THEN -5
+            ELSE 0 -- Default modifier when no clarification or unrecognized value
+        END
+    INTO clarification_factor
+    FROM "Service"
+    WHERE "id" = service_id;
+    
     -- Check for onion URLs
     IF EXISTS (
         SELECT 1 FROM "Service" 
@@ -78,7 +89,7 @@ BEGIN
     WHERE sa."serviceId" = service_id AND a."category" = 'PRIVACY';
     
     -- Calculate final privacy score (base 100)
-    privacy_score := privacy_score + kyc_factor + onion_factor + i2p_factor + monero_factor + open_source_factor + p2p_factor + decentralized_factor + attributes_score;
+    privacy_score := 50 + kyc_factor + clarification_factor + onion_factor + i2p_factor + monero_factor + open_source_factor + p2p_factor + decentralized_factor + attributes_score;
     
     -- Ensure the score is in reasonable bounds (0-100)
     privacy_score := GREATEST(0, LEAST(100, privacy_score));
@@ -91,9 +102,11 @@ $$ LANGUAGE plpgsql;
 CREATE OR REPLACE FUNCTION calculate_trust_score(service_id INT) 
 RETURNS INT AS $$
 DECLARE
-    trust_score INT := 50; -- Start from middle value (50)
+    trust_score INT := 0;
     verification_factor INT;
     attributes_score INT := 0;
+    recently_listed_factor INT := 0;
+    tos_penalty_factor INT := 0;
 BEGIN
     -- Get verification status factor
     SELECT 
@@ -124,7 +137,7 @@ BEGIN
         AND "verificationStatus" = 'APPROVED'
         AND (NOW() - "listedAt") <= INTERVAL '15 days'
     ) THEN
-        trust_score := trust_score - 10;
+        recently_listed_factor := -10;
         -- Update the isRecentlyListed flag to true
         UPDATE "Service"
         SET "isRecentlyListed" = TRUE
@@ -135,10 +148,21 @@ BEGIN
         SET "isRecentlyListed" = FALSE
         WHERE id = service_id;
     END IF;
+
+    -- Apply penalty if ToS cannot be analyzed
+    IF EXISTS (
+        SELECT 1
+        FROM "Service"
+        WHERE id = service_id 
+        AND "tosReviewAt" IS NOT NULL 
+        AND "tosReview" IS NULL
+    ) THEN
+        tos_penalty_factor := -3;
+    END IF;
     
     -- Calculate final trust score (base 100)
-    trust_score := trust_score + verification_factor + attributes_score;
-    
+    trust_score := 50 + verification_factor + attributes_score + recently_listed_factor + tos_penalty_factor;
+
     -- Ensure the score is in reasonable bounds (0-100)
     trust_score := GREATEST(0, LEAST(100, trust_score));
     

web/prisma/triggers/07_notifications_service_suggestion.sql

@@ -3,7 +3,20 @@ RETURNS TRIGGER AS $$
 DECLARE
   suggestion_status_change "ServiceSuggestionStatusChange";
 BEGIN
-  IF TG_OP = 'INSERT' THEN -- Corresponds to ServiceSuggestionMessage insert
+  IF TG_OP = 'INSERT' AND TG_TABLE_NAME = 'ServiceSuggestion' THEN -- Corresponds to ServiceSuggestion insert
+    -- Notify all admins when a new suggestion is created
+    INSERT INTO "Notification" ("userId", "type", "aboutServiceSuggestionId")
+    SELECT u."id", 'SUGGESTION_CREATED', NEW."id"
+    FROM "User" u
+    WHERE u."admin" = true
+      AND NOT EXISTS (
+        SELECT 1 FROM "Notification" n
+        WHERE n."userId" = u."id"
+          AND n."type" = 'SUGGESTION_CREATED'
+          AND n."aboutServiceSuggestionId" = NEW."id"
+      );
+
+  ELSIF TG_OP = 'INSERT' AND TG_TABLE_NAME = 'ServiceSuggestionMessage' THEN -- Corresponds to ServiceSuggestionMessage insert
     -- Notify suggestion author (if not the sender)
     INSERT INTO "Notification" ("userId", "type", "aboutServiceSuggestionId", "aboutServiceSuggestionMessageId")
     SELECT s."userId", 'SUGGESTION_MESSAGE', NEW."suggestionId", NEW."id"
@@ -55,6 +68,13 @@ BEGIN
 END;
 $$ LANGUAGE plpgsql;
 
+-- Trigger for new suggestions
+DROP TRIGGER IF EXISTS service_suggestion_created_notifications_trigger ON "ServiceSuggestion";
+CREATE TRIGGER service_suggestion_created_notifications_trigger
+  AFTER INSERT ON "ServiceSuggestion"
+  FOR EACH ROW
+  EXECUTE FUNCTION trigger_service_suggestion_notifications();
+
 -- Trigger for new messages
 DROP TRIGGER IF EXISTS service_suggestion_message_notifications_trigger ON "ServiceSuggestionMessage";
 CREATE TRIGGER service_suggestion_message_notifications_trigger

web/public/favicon-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#00bfff" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#040505" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#3BDB78" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-dev-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#fff" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#040505" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#FF0040" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-dev-lightmode-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#000" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#fff" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#FF0040" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-dev-lightmode.svg

@@ -0,0 +1,7 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="#ff0040" viewBox="0 0 32 32" height="32" width="32">
+  <title>KYCnot.me logo</title>
+  <path fill="#fff" d="M4 4h24v24H4z" />
+  <path fill-rule="evenodd"
+    d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-dev.svg

@@ -1,5 +1,6 @@
-<svg xmlns="http://www.w3.org/2000/svg" fill="#FF0000" viewBox="0 0 32 32" height="32" width="32">
+<svg xmlns="http://www.w3.org/2000/svg" fill="#ff0040" viewBox="0 0 32 32" height="32" width="32">
   <title>KYCnot.me logo</title>
+  <path fill="#040505" d="M4 4h24v24H4z" />
   <path fill-rule="evenodd"
     d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
     clip-rule="evenodd" />

web/public/favicon-lightmode-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#0080FF" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#fff" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#33BE00" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-lightmode.svg

@@ -1,5 +1,6 @@
 <svg xmlns="http://www.w3.org/2000/svg" fill="#33BE00" viewBox="0 0 32 32" height="32" width="32">
   <title>KYCnot.me logo</title>
+  <path fill="#fff" d="M4 4h24v24H4z" />
   <path fill-rule="evenodd"
     d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
     clip-rule="evenodd" />

web/public/favicon-stage-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#fff" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#040505" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#00ffff" class="a" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-stage-lightmode-badge.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32">
+  <title>KYCnot.me logo with badge</title>
+  <path fill="#000" d="M32 8a8 8 0 1 1-16 0 8 8 0 0 1 16 0Z" />
+  <path fill="#fff" d="M12.7 4A12 12 0 0 0 28 19.3V28H4V4h8.7Z" />
+  <path fill="#0080ff" class="a" fill-rule="evenodd"
+    d="M15 0a12 12 0 0 0-1.4 14H11a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h6.4l.6.4V21c0 .6.4 1 1 1h3v-2.2A12 12 0 0 0 32 17V28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h11Zm7 25c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3v3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-stage-lightmode.svg

@@ -0,0 +1,7 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32" height="32" width="32">
+  <title>KYCnot.me logo</title>
+  <path fill="#fff" class="b" d="M4 4h24v24H4z" />
+  <path fill="#0080ff" class="a" fill-rule="evenodd"
+    d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/favicon-stage.svg

@@ -1,13 +1,7 @@
 <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 32 32" height="32" width="32">
   <title>KYCnot.me logo</title>
-  <style>
-    @media (prefers-color-scheme: light) {
-      path {
-        fill: #0080ff;
-      }
-    }
-  </style>
-  <path fill="#00ffff" fill-rule="evenodd"
+  <path fill="#040505" class="b" d="M4 4h24v24H4z" />
+  <path fill="#00ffff" class="a" fill-rule="evenodd"
     d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
     clip-rule="evenodd" />
 </svg>

web/public/favicon.svg

@@ -1,5 +1,6 @@
 <svg xmlns="http://www.w3.org/2000/svg" fill="#3BDB78" viewBox="0 0 32 32" height="32" width="32">
   <title>KYCnot.me logo</title>
+  <path fill="#040505" d="M4 4h24v24H4z" />
   <path fill-rule="evenodd"
     d="M32 28a4 4 0 0 1-4 4H4a4 4 0 0 1-4-4V4a4 4 0 0 1 4-4h24a4 4 0 0 1 4 4v24ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
     clip-rule="evenodd" />

web/public/notification-icon.svg

@@ -0,0 +1,6 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="#3BDB78" viewBox="0 0 32 32" height="32" width="32">
+  <title>KYCnot.me logo</title>
+  <path fill-rule="evenodd"
+    d="M30 26a4 4 0 0 1-4 4H6a4 4 0 0 1-4-4V6a4 4 0 0 1 4-4h20a4 4 0 0 1 4 4v20ZM7 6a1 1 0 0 0-1 1v18c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-6c0-.6.4-1 1-1h7v-3c0-.6-.4-1-1-1h-6a1 1 0 0 1-1-1V7c0-.6-.4-1-1-1H7Zm15 16v3c0 .6.4 1 1 1h2c.6 0 1-.4 1-1v-2c0-.6-.4-1-1-1h-3Zm-4-4v3c0 .6.4 1 1 1h3v-3c0-.6-.4-1-1-1h-3Zm1-12a1 1 0 0 0-1 1v3c0 .6.4 1 1 1h3c.6 0 1-.4 1-1V7c0-.6-.4-1-1-1h-3Z"
+    clip-rule="evenodd" />
+</svg>

web/public/sw.js

@@ -1,114 +0,0 @@
-// @ts-check
-
-/// <reference lib="webworker" />
-
-/** @type {ServiceWorkerGlobalScope} */
-// @ts-expect-error
-const typedSelf = self
-
-const CACHE_NAME = 'kycnot-sw-push-notifications-v2'
-
-/** @typedef {import('../src/lib/webPush').NotificationPayload} NotificationPayload */
-/** @typedef {{defaultActionUrl: string, payload: NotificationPayload | null}} NotificationData */
-/** @typedef {NotificationOptions & { actions: { action: string; title: string; icon?: string }[], timestamp: number, data: NotificationData }  } CustomNotificationOptions */
-
-typedSelf.addEventListener('install', (event) => {
-  console.log('Service Worker installing')
-  typedSelf.skipWaiting()
-})
-
-typedSelf.addEventListener('activate', (event) => {
-  console.log('Service Worker activating')
-  event.waitUntil(typedSelf.clients.claim())
-})
-
-typedSelf.addEventListener('push', (event) => {
-  console.log('Push event received:', event)
-
-  if (!event.data) {
-    console.error('Push event but no data')
-    return
-  }
-
-  let title = 'New Notification'
-  /** @type {CustomNotificationOptions} */
-  let options = {
-    body: 'You have a new notification',
-    lang: 'en-US',
-    icon: '/favicon.svg',
-    badge: '/favicon.svg',
-    requireInteraction: false,
-    silent: false,
-    actions: [
-      {
-        action: 'view',
-        title: 'View',
-        icon: 'https://api.iconify.design/ri/arrow-right-line.svg',
-      },
-    ],
-    timestamp: Date.now(),
-    data: {
-      defaultActionUrl: '/notifications',
-      payload: null,
-    },
-  }
-
-  try {
-    /** @type {NotificationPayload} */
-    const rawData = event.data.json()
-    if (typeof rawData !== 'object' || rawData === null) throw new Error('Invalid push data, not an object')
-    if (!('title' in rawData) || typeof rawData.title !== 'string')
-      throw new Error('Invalid push data, no title')
-    title = rawData.title
-
-    options = {
-      ...options,
-      body: rawData.body || undefined,
-      actions: rawData.actions.map((action) => ({
-        action: action.action,
-        title: action.title,
-        icon: action.icon,
-      })),
-      data: {
-        ...options.data,
-        payload: rawData,
-      },
-    }
-  } catch (error) {
-    console.error('Error parsing push data:', error)
-  }
-
-  event.waitUntil(typedSelf.registration.showNotification(title, options))
-})
-
-typedSelf.addEventListener('notificationclick', (event) => {
-  console.log('Notification clicked:', event)
-
-  event.notification.close()
-
-  /** @type {NotificationData} */
-  const data = event.notification.data
-
-  // @ts-expect-error I already use optional chaining
-  const url = data.payload?.[event.action]?.url || data.defaultActionUrl
-
-  event.waitUntil(
-    typedSelf.clients.matchAll({ type: 'window' }).then((clientList) => {
-      // If a window is already open, focus it
-      for (const client of clientList) {
-        if (client.url === url && 'focus' in client) {
-          return client.focus()
-        }
-      }
-
-      // Otherwise, open a new window
-      if (typedSelf.clients.openWindow) {
-        return typedSelf.clients.openWindow(url)
-      }
-    })
-  )
-})
-
-typedSelf.addEventListener('notificationclose', (event) => {
-  console.log('Notification closed:', event)
-})

web/src/actions/admin/service.ts

@@ -126,7 +126,8 @@ export const adminServiceActions = {
           verificationSummary: input.verificationSummary,
           verificationProofMd: input.verificationProofMd,
           acceptedCurrencies: input.acceptedCurrencies,
-          referral: input.referral,
+          // eslint-disable-next-line @typescript-eslint/prefer-nullish-coalescing
+          referral: input.referral || null,
           serviceVisibility: input.serviceVisibility,
           slug: input.slug,
           overallScore: input.overallScore,
@@ -244,7 +245,8 @@ export const adminServiceActions = {
           verificationSummary: input.verificationSummary,
           verificationProofMd: input.verificationProofMd,
           acceptedCurrencies: input.acceptedCurrencies,
-          referral: input.referral,
+          // eslint-disable-next-line @typescript-eslint/prefer-nullish-coalescing
+          referral: input.referral || null,
           serviceVisibility: input.serviceVisibility,
           slug: input.slug,
           overallScore: input.overallScore,
@@ -307,7 +309,7 @@ export const adminServiceActions = {
       input: z.object({
         id: z.number().int().positive(),
         label: z.string().min(1).max(50).nullable(),
-        value: z.string().url(),
+        value: zodContactMethod,
         serviceId: z.number().int().positive(),
       }),
       handler: async (input) => {
@@ -458,7 +460,6 @@ export const adminServiceActions = {
       permissions: 'admin',
       input: evidenceImageDeleteSchema,
       handler: async (input) => {
-        // eslint-disable-next-line @typescript-eslint/no-unsafe-call
         await deleteFileLocally(input.fileUrl)
         return { success: true }
       },

web/src/actions/serviceSuggestion.ts

@@ -36,6 +36,10 @@ const findPossibleDuplicates = async (input: { name: string }) => {
       id: {
         in: matches.map(({ id }) => id),
       },
+      listedAt: { lte: new Date() },
+      serviceVisibility: {
+        in: ['PUBLIC', 'ARCHIVED', 'UNLISTED'],
+      },
     },
     select: {
       id: true,
@@ -58,6 +62,8 @@ const serializeExtraNotes = <T extends Record<string, unknown>>(
         serializedValue = value
       } else if (value === undefined || value === null) {
         serializedValue = ''
+      } else if (Array.isArray(value)) {
+        serializedValue = value.map((item) => String(item)).join(', ')
       } else if (typeof value === 'object' && 'toString' in value && typeof value.toString === 'function') {
         // eslint-disable-next-line @typescript-eslint/no-base-to-string
         serializedValue = value.toString()
@@ -144,17 +150,7 @@ export const serviceSuggestionActions = {
           .max(SUGGESTION_SLUG_MAX_LENGTH)
           .regex(/^[a-z0-9-]+$/, {
             message: 'Slug must contain only lowercase letters, numbers, and hyphens',
-          })
-          .refine(
-            async (slug) => {
-              const exists = await prisma.service.findUnique({
-                select: { id: true },
-                where: { slug },
-              })
-              return !exists
-            },
-            { message: 'Slug must be unique, try a different one' }
-          ),
+          }),
         description: z.string().min(1).max(SUGGESTION_DESCRIPTION_MAX_LENGTH),
         allServiceUrls: stringListOfUrlsSchemaRequired,
         tosUrls: stringListOfUrlsSchemaRequired,
@@ -165,6 +161,11 @@ export const serviceSuggestionActions = {
         categories: z.array(z.coerce.number().int().positive()).min(1),
         acceptedCurrencies: z.array(z.nativeEnum(Currency)).min(1),
         imageFile: imageFileSchemaRequired,
+        rulesConfirm: z.literal('on', {
+          errorMap: () => ({
+            message: 'You must accept the suggestion rules and process to continue',
+          }),
+        }),
         /** @deprecated Honey pot field, do not use */
         message: z.unknown().optional(),
         skipDuplicateCheck: z
@@ -184,8 +185,16 @@ export const serviceSuggestionActions = {
         location: 'serviceSuggestion.createService',
       })
 
+      const serviceWithSameSlug = await prisma.service.findUnique({
+        select: { id: true, name: true, slug: true, description: true },
+        where: { slug: input.slug },
+      })
+
       if (!input.skipDuplicateCheck) {
-        const possibleDuplicates = await findPossibleDuplicates(input)
+        const possibleDuplicates = [
+          ...(serviceWithSameSlug ? [serviceWithSameSlug] : []),
+          ...(await findPossibleDuplicates(input)),
+        ]
 
         if (possibleDuplicates.length > 0) {
           return {
@@ -197,11 +206,19 @@ export const serviceSuggestionActions = {
               'imageFile',
               'captcha-value',
               'captcha-solution-hash',
+              'rulesConfirm',
             ]),
             serviceSuggestion: undefined,
             service: undefined,
           } as const
         }
+      } else {
+        if (serviceWithSameSlug) {
+          throw new ActionError({
+            message: 'Slug already in use, try a different one',
+            code: 'BAD_REQUEST',
+          })
+        }
       }
 
       const imageUrl = await saveFileLocally(input.imageFile, input.imageFile.name)

web/src/assets/review-badge/long-black.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" height="32" width="216" viewBox="0 0 432 64">
+  <rect width="431" height="63" x=".5" y=".5" fill="#101413" stroke="#292B2A" rx="7.5" />
+  <path fill="#3BDB78" d="m37.5 18 4.1 8.3 9.2 1.4-6.6 6.5 1.5 9.1-8.2-4.3-8.2 4.3 1.5-9.1-6.6-6.5 9.2-1.4 4.1-8.3Z" />
+  <path fill="#BEBEBE"
+    d="M63.7 42V22.4h7c1.5 0 2.7.2 3.7.7 1 .6 1.8 1.3 2.3 2.2.5 1 .8 2 .8 3.2 0 1.2-.3 2.3-.8 3.2-.5.9-1.3 1.6-2.3 2.1-1 .5-2.2.8-3.8.8h-5.3V32h5c1 0 1.8-.1 2.4-.4.6-.3 1-.7 1.4-1.2a4 4 0 0 0 .4-1.9 4 4 0 0 0-.5-2c-.2-.5-.7-.9-1.3-1.2-.6-.2-1.4-.4-2.4-.4h-3.7V42h-3Zm9.7-8.9 4.8 8.9h-3.4l-4.7-8.9h3.3ZM87 42.3c-1.5 0-2.7-.3-3.8-1-1-.6-1.8-1.4-2.4-2.6a9 9 0 0 1-.8-4 9 9 0 0 1 .8-4c.6-1.1 1.4-2 2.4-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.3 1 .5 2 .5 3.4v1H81.6v-2.1h8.9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.8 0-1.5.2-2.1.6a4 4 0 0 0-1.4 1.6c-.3.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.6 2.5.3.7.8 1.2 1.4 1.6.7.4 1.4.5 2.2.5.6 0 1 0 1.5-.2l1.2-.7c.3-.3.5-.7.7-1.2l2.7.5a5 5 0 0 1-1.1 2.1c-.6.6-1.3 1-2.1 1.4-.9.3-1.8.5-3 .5Zm21.7-15L103.3 42h-3l-5.4-14.7h3l3.8 11.3h.2l3.7-11.3h3Zm2.7 14.7V27.3h2.8V42h-2.8Zm1.4-17c-.5 0-1-.2-1.3-.5-.3-.3-.5-.7-.5-1.2s.2-.9.5-1.2c.4-.4.8-.5 1.3-.5s1 .1 1.3.5c.3.3.5.7.5 1.2s-.2.9-.5 1.2c-.4.3-.8.5-1.3.5Zm11.6 17.3c-1.4 0-2.7-.3-3.7-1-1-.6-1.9-1.4-2.4-2.6a9 9 0 0 1-.9-4 9 9 0 0 1 .9-4c.5-1.1 1.3-2 2.3-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.4 1 .6 2 .6 3.4v1H119v-2.1h9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.9 0-1.6.2-2.2.6a4 4 0 0 0-1.3 1.6c-.4.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.5 2.5.4.7.8 1.2 1.5 1.6.6.4 1.3.5 2.2.5.5 0 1 0 1.4-.2.5-.2.9-.4 1.2-.7.3-.3.6-.7.8-1.2l2.7.5a5 5 0 0 1-1.2 2.1c-.6.6-1.3 1-2.1 1.4-.8.3-1.8.5-2.9.5Zm12.7-.3-4.3-14.7h3l2.8 10.8h.2l2.9-10.8h3l2.8 10.7h.1l2.9-10.7h3L149 42h-2.9l-3-10.6h-.2L140 42h-2.9Zm32.4.3c-1.3 0-2.6-.3-3.6-1-1-.6-1.8-1.5-2.4-2.6a8.8 8.8 0 0 1-.8-4c0-1.5.3-2.9.8-4a6.4 6.4 0 0 1 6-3.6c1.4 0 2.6.3 3.7 1 1 .6 1.8 1.5 2.3 2.6.6 1.1.9 2.5.9 4s-.3 2.9-.9 4a6.4 6.4 0 0 1-6 3.6Zm0-2.4c1 0 1.7-.2 2.3-.7.6-.5 1-1.1 1.3-2 .3-.7.4-1.6.4-2.5 0-1-.1-1.8-.4-2.6-.3-.8-.7-1.4-1.3-1.9-.6-.5-1.4-.7-2.3-.7-.9 0-1.6.2-2.2.7-.6.5-1 1.1-1.3 2-.3.7-.4 1.6-.4 2.5 0 1 .1 1.8.4 2.6.3.8.7 1.4 1.3 1.9.6.5 1.3.7 2.2.7Zm13-6.6V42h-2.9V27.3h2.8v2.4h.1c.4-.8.9-1.4 1.6-2a5 5 0 0 1 2.8-.6c1 0 1.9.2 2.6.6.8.4 1.4 1 1.8 1.9.4.8.6 1.8.6 3V42H189v-9c0-1-.3-2-.8-2.5a3 3 0 0 0-2.3-1c-.7 0-1.3.2-1.8.5s-.9.7-1.2 1.3c-.3.5-.4 1.2-.4 2Z" />
+  <path fill="#3BDB78"
+    d="M205.5 18a1 1 0 0 0-1 1v26a1 1 0 0 0 1 1h74a1 1 0 0 0 1-1V19a1 1 0 0 0-1-1h-74Zm4 4h2a1 1 0 0 1 1 1v6a1 1 0 0 0 1 1h6a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1v-3h-7a1 1 0 0 0-1 1v6a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1V23a1 1 0 0 1 1-1Zm12 0h3a1 1 0 0 1 1 1v3a1 1 0 0 1-1 1h-3a1 1 0 0 1-1-1v-3a1 1 0 0 1 1-1Zm12.8 0h2.4a1 1 0 0 1 .8.5l5 7.8 5-7.8a1 1 0 0 1 .8-.5h2.4a1 1 0 0 1 .8 1.5l-6.8 10.8a1 1 0 0 0-.2.6V41a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-6.1c0-.2 0-.4-.2-.6l-6.8-10.8a1 1 0 0 1 .3-1.4l.5-.1Zm27.2 0h14a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-15v12h15a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-14a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1V27a1 1 0 0 1 1-1h3v-3a1 1 0 0 1 1-1Zm24 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V25.6l9.2 15.9c.2.3.5.5.8.5h5a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-2a1 1 0 0 0-1 1v15.4l-9.2-15.9a1 1 0 0 0-.8-.5h-5Zm29 0a1 1 0 0 0-1 1v3h12v-3a1 1 0 0 0-1-1h-10Zm11 4v12h3a1 1 0 0 0 1-1V27a1 1 0 0 0-1-1h-3Zm0 12h-12v3a1 1 0 0 0 1 1h10a1 1 0 0 0 1-1v-3Zm-12 0V26h-3a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h3Zm21-16a1 1 0 0 0-1 1v6a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-3h4v15a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V26h4v3a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-6a1 1 0 0 0-1-1h-18Zm27 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V29.4l5.5 12a1 1 0 0 0 1 .6h3a1 1 0 0 0 1-.6l5.5-12V41a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-3.4a1 1 0 0 0-.9.6l-6.7 14.6-6.7-14.6a1 1 0 0 0-1-.6h-3.3Zm32 0a1 1 0 0 0-1 1v3h15a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14Zm-1 4h-3a1 1 0 0 0-1 1v14a1 1 0 0 0 1 1h18a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14a1 1 0 0 1-1-1v-3h7a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-7v-4Zm-38 12a1 1 0 0 0-1 1v2a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-2Z" />
+</svg>

web/src/assets/review-badge/long-white.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" height="32" width="216" viewBox="0 0 432 64">
+  <rect width="431" height="63" x=".5" y=".5" fill="#fff" stroke="#ECF0EE" rx="7.5" />
+  <path fill="#28AE5B" d="m37.5 18 4.1 8.3 9.2 1.4-6.6 6.5 1.5 9.1-8.2-4.3-8.2 4.3 1.5-9.1-6.6-6.5 9.2-1.4 4.1-8.3Z" />
+  <path fill="#3F3F3F"
+    d="M63.7 42V22.4h7c1.5 0 2.7.2 3.7.7 1 .6 1.8 1.3 2.3 2.2.5 1 .8 2 .8 3.2 0 1.2-.3 2.3-.8 3.2-.5.9-1.3 1.6-2.3 2.1-1 .5-2.2.8-3.8.8h-5.3V32h5c1 0 1.8-.1 2.4-.4.6-.3 1-.7 1.4-1.2a4 4 0 0 0 .4-1.9 4 4 0 0 0-.5-2c-.2-.5-.7-.9-1.3-1.2-.6-.2-1.4-.4-2.4-.4h-3.7V42h-3Zm9.7-8.9 4.8 8.9h-3.4l-4.7-8.9h3.3ZM87 42.3c-1.5 0-2.7-.3-3.8-1-1-.6-1.8-1.4-2.4-2.6a9 9 0 0 1-.8-4 9 9 0 0 1 .8-4c.6-1.1 1.4-2 2.4-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.3 1 .5 2 .5 3.4v1H81.6v-2.1h8.9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.8 0-1.5.2-2.1.6a4 4 0 0 0-1.4 1.6c-.3.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.6 2.5.3.7.8 1.2 1.4 1.6.7.4 1.4.5 2.2.5.6 0 1 0 1.5-.2l1.2-.7c.3-.3.5-.7.7-1.2l2.7.5a5 5 0 0 1-1.1 2.1c-.6.6-1.3 1-2.1 1.4-.9.3-1.8.5-3 .5Zm21.7-15L103.3 42h-3l-5.4-14.7h3l3.8 11.3h.2l3.7-11.3h3Zm2.7 14.7V27.3h2.8V42h-2.8Zm1.4-17c-.5 0-1-.2-1.3-.5-.3-.3-.5-.7-.5-1.2s.2-.9.5-1.2c.4-.4.8-.5 1.3-.5s1 .1 1.3.5c.3.3.5.7.5 1.2s-.2.9-.5 1.2c-.4.3-.8.5-1.3.5Zm11.6 17.3c-1.4 0-2.7-.3-3.7-1-1-.6-1.9-1.4-2.4-2.6a9 9 0 0 1-.9-4 9 9 0 0 1 .9-4c.5-1.1 1.3-2 2.3-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.4 1 .6 2 .6 3.4v1H119v-2.1h9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.9 0-1.6.2-2.2.6a4 4 0 0 0-1.3 1.6c-.4.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.5 2.5.4.7.8 1.2 1.5 1.6.6.4 1.3.5 2.2.5.5 0 1 0 1.4-.2.5-.2.9-.4 1.2-.7.3-.3.6-.7.8-1.2l2.7.5a5 5 0 0 1-1.2 2.1c-.6.6-1.3 1-2.1 1.4-.8.3-1.8.5-2.9.5Zm12.7-.3-4.3-14.7h3l2.8 10.8h.2l2.9-10.8h3l2.8 10.7h.1l2.9-10.7h3L149 42h-2.9l-3-10.6h-.2L140 42h-2.9Zm32.4.3c-1.3 0-2.6-.3-3.6-1-1-.6-1.8-1.5-2.4-2.6a8.8 8.8 0 0 1-.8-4c0-1.5.3-2.9.8-4a6.4 6.4 0 0 1 6-3.6c1.4 0 2.6.3 3.7 1 1 .6 1.8 1.5 2.3 2.6.6 1.1.9 2.5.9 4s-.3 2.9-.9 4a6.4 6.4 0 0 1-6 3.6Zm0-2.4c1 0 1.7-.2 2.3-.7.6-.5 1-1.1 1.3-2 .3-.7.4-1.6.4-2.5 0-1-.1-1.8-.4-2.6-.3-.8-.7-1.4-1.3-1.9-.6-.5-1.4-.7-2.3-.7-.9 0-1.6.2-2.2.7-.6.5-1 1.1-1.3 2-.3.7-.4 1.6-.4 2.5 0 1 .1 1.8.4 2.6.3.8.7 1.4 1.3 1.9.6.5 1.3.7 2.2.7Zm13-6.6V42h-2.9V27.3h2.8v2.4h.1c.4-.8.9-1.4 1.6-2a5 5 0 0 1 2.8-.6c1 0 1.9.2 2.6.6.8.4 1.4 1 1.8 1.9.4.8.6 1.8.6 3V42H189v-9c0-1-.3-2-.8-2.5a3 3 0 0 0-2.3-1c-.7 0-1.3.2-1.8.5s-.9.7-1.2 1.3c-.3.5-.4 1.2-.4 2Z" />
+  <path fill="#28AE5B"
+    d="M205.5 18a1 1 0 0 0-1 1v26a1 1 0 0 0 1 1h74a1 1 0 0 0 1-1V19a1 1 0 0 0-1-1h-74Zm4 4h2a1 1 0 0 1 1 1v6a1 1 0 0 0 1 1h6a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1v-3h-7a1 1 0 0 0-1 1v6a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1V23a1 1 0 0 1 1-1Zm12 0h3a1 1 0 0 1 1 1v3a1 1 0 0 1-1 1h-3a1 1 0 0 1-1-1v-3a1 1 0 0 1 1-1Zm12.8 0h2.4a1 1 0 0 1 .8.5l5 7.8 5-7.8a1 1 0 0 1 .8-.5h2.4a1 1 0 0 1 .8 1.5l-6.8 10.8a1 1 0 0 0-.2.6V41a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-6.1c0-.2 0-.4-.2-.6l-6.8-10.8a1 1 0 0 1 .3-1.4l.5-.1Zm27.2 0h14a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-15v12h15a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-14a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1V27a1 1 0 0 1 1-1h3v-3a1 1 0 0 1 1-1Zm24 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V25.6l9.2 15.9c.2.3.5.5.8.5h5a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-2a1 1 0 0 0-1 1v15.4l-9.2-15.9a1 1 0 0 0-.8-.5h-5Zm29 0a1 1 0 0 0-1 1v3h12v-3a1 1 0 0 0-1-1h-10Zm11 4v12h3a1 1 0 0 0 1-1V27a1 1 0 0 0-1-1h-3Zm0 12h-12v3a1 1 0 0 0 1 1h10a1 1 0 0 0 1-1v-3Zm-12 0V26h-3a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h3Zm21-16a1 1 0 0 0-1 1v6a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-3h4v15a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V26h4v3a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-6a1 1 0 0 0-1-1h-18Zm27 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V29.4l5.5 12a1 1 0 0 0 1 .6h3a1 1 0 0 0 1-.6l5.5-12V41a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-3.4a1 1 0 0 0-.9.6l-6.7 14.6-6.7-14.6a1 1 0 0 0-1-.6h-3.3Zm32 0a1 1 0 0 0-1 1v3h15a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14Zm-1 4h-3a1 1 0 0 0-1 1v14a1 1 0 0 0 1 1h18a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14a1 1 0 0 1-1-1v-3h7a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-7v-4Zm-38 12a1 1 0 0 0-1 1v2a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-2Z" />
+</svg>

web/src/assets/review-badge/short-black.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" height="48" width="128" viewBox="0 0 256 96">
+  <rect width="255" height="95" x=".5" y=".5" fill="#101413" stroke="#292B2A" rx="7.5" />
+  <path fill="#3BDB78" d="m56.5 16 4.1 8.3 9.2 1.4-6.6 6.5 1.5 9.1-8.2-4.3-8.2 4.3 1.5-9.1-6.6-6.5 9.2-1.4 4.1-8.3Z" />
+  <path fill="#BEBEBE"
+    d="M82.7 40V20.4h7c1.5 0 2.7.2 3.7.7 1 .6 1.8 1.3 2.3 2.2.5 1 .8 2 .8 3.2 0 1.2-.3 2.3-.8 3.2-.5.9-1.3 1.6-2.3 2.1-1 .5-2.2.8-3.8.8h-5.3V30h5c1 0 1.8-.1 2.4-.4.6-.3 1-.7 1.4-1.2a4 4 0 0 0 .4-1.9 4 4 0 0 0-.5-2c-.2-.5-.7-.9-1.3-1.2-.6-.2-1.4-.4-2.4-.4h-3.7V40h-3Zm9.7-8.9 4.8 8.9h-3.4l-4.7-8.9h3.3Zm13.6 9.2c-1.5 0-2.7-.3-3.8-1-1-.6-1.8-1.4-2.4-2.6a9 9 0 0 1-.8-4 9 9 0 0 1 .8-4c.6-1.1 1.4-2 2.4-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.3 1 .5 2 .5 3.4v1h-11.7v-2.1h8.9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.8 0-1.5.2-2.1.6a4 4 0 0 0-1.4 1.6c-.3.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.6 2.5.3.7.8 1.2 1.4 1.6.7.4 1.4.5 2.2.5.6 0 1 0 1.5-.2l1.2-.7c.3-.3.5-.7.7-1.2l2.7.5a5 5 0 0 1-1.1 2.1c-.6.6-1.3 1-2.1 1.4-.9.3-1.8.5-3 .5Zm21.7-15L122.3 40h-3l-5.4-14.7h3l3.8 11.3h.2l3.7-11.3h3Zm2.7 14.7V25.3h2.8V40h-2.8Zm1.4-17c-.5 0-1-.2-1.3-.5-.3-.3-.5-.7-.5-1.2s.2-.9.5-1.2c.4-.4.8-.5 1.3-.5s1 .1 1.3.5c.3.3.5.7.5 1.2s-.2.9-.5 1.2c-.4.3-.8.5-1.3.5Zm11.6 17.3c-1.4 0-2.7-.3-3.7-1-1-.6-1.9-1.4-2.4-2.6a9 9 0 0 1-.9-4 9 9 0 0 1 .9-4c.5-1.1 1.3-2 2.3-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.4 1 .6 2 .6 3.4v1H138v-2.1h9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.9 0-1.6.2-2.2.6a4 4 0 0 0-1.3 1.6c-.4.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.5 2.5.4.7.8 1.2 1.5 1.6.6.4 1.3.5 2.2.5.5 0 1 0 1.4-.2.5-.2.9-.4 1.2-.7.3-.3.6-.7.8-1.2l2.7.5a5 5 0 0 1-1.2 2.1c-.6.6-1.3 1-2.1 1.4-.8.3-1.8.5-2.9.5Zm12.7-.3-4.3-14.7h3l2.8 10.8h.2l2.9-10.8h3l2.8 10.7h.1l2.9-10.7h3L168 40h-2.9l-3-10.6h-.2L159 40h-2.9Zm32.4.3c-1.3 0-2.6-.3-3.6-1-1-.6-1.8-1.5-2.4-2.6a8.8 8.8 0 0 1-.8-4c0-1.5.3-2.9.8-4a6.4 6.4 0 0 1 6-3.6c1.4 0 2.6.3 3.7 1 1 .6 1.8 1.5 2.3 2.6.6 1.1.9 2.5.9 4s-.3 2.9-.9 4a6.4 6.4 0 0 1-6 3.6Zm0-2.4c1 0 1.7-.2 2.3-.7.6-.5 1-1.1 1.3-2 .3-.7.4-1.6.4-2.5 0-1-.1-1.8-.4-2.6-.3-.8-.7-1.4-1.3-1.9-.6-.5-1.4-.7-2.3-.7-.9 0-1.6.2-2.2.7-.6.5-1 1.1-1.3 2-.3.7-.4 1.6-.4 2.5 0 1 .1 1.8.4 2.6.3.8.7 1.4 1.3 1.9.6.5 1.3.7 2.2.7Zm13-6.6V40h-2.9V25.3h2.8v2.4h.1c.4-.8.9-1.4 1.6-2a5 5 0 0 1 2.8-.6c1 0 1.9.2 2.6.6.8.4 1.4 1 1.8 1.9.4.8.6 1.8.6 3V40H208v-9c0-1-.3-2-.8-2.5a3 3 0 0 0-2.3-1c-.7 0-1.3.2-1.8.5s-.9.7-1.2 1.3c-.3.5-.4 1.2-.4 2Z" />
+  <path fill="#3BDB78"
+    d="M27 52a1 1 0 0 0-1 1v26a1 1 0 0 0 1 1h74a1 1 0 0 0 1-1V53a1 1 0 0 0-1-1H27Zm4 4h2a1 1 0 0 1 1 1v6a1 1 0 0 0 1 1h6a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1v-3h-7a1 1 0 0 0-1 1v6a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1V57a1 1 0 0 1 1-1Zm12 0h3a1 1 0 0 1 1 1v3a1 1 0 0 1-1 1h-3a1 1 0 0 1-1-1v-3a1 1 0 0 1 1-1Zm12.8 0h2.4a1 1 0 0 1 .8.5l5 7.8 5-7.8a1 1 0 0 1 .8-.5h2.4a1 1 0 0 1 .8 1.5l-6.8 10.8a1 1 0 0 0-.2.6V75a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-6.1c0-.2 0-.4-.2-.6L55 57.5a1 1 0 0 1 .8-1.5ZM83 56h14a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H82v12h15a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H83a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1V61a1 1 0 0 1 1-1h3v-3a1 1 0 0 1 1-1Zm24 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V59.6l9.2 15.9c.2.3.5.5.8.5h5a1 1 0 0 0 1-1V57a1 1 0 0 0-1-1h-2a1 1 0 0 0-1 1v15.4l-9.2-15.9a1 1 0 0 0-.8-.5h-5Zm29 0a1 1 0 0 0-1 1v3h12v-3a1 1 0 0 0-1-1h-10Zm11 4v12h3a1 1 0 0 0 1-1V61a1 1 0 0 0-1-1h-3Zm0 12h-12v3a1 1 0 0 0 1 1h10a1 1 0 0 0 1-1v-3Zm-12 0V60h-3a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h3Zm21-16a1 1 0 0 0-1 1v6a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-3h4v15a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V60h4v3a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-6a1 1 0 0 0-1-1h-18Zm27 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V63.4l5.5 12a1 1 0 0 0 1 .6h3a1 1 0 0 0 1-.6l5.5-12V75a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V57a1 1 0 0 0-1-1h-3.4a1 1 0 0 0-.9.6L194 71.2l-6.7-14.6a1 1 0 0 0-1-.6H183Zm32 0a1 1 0 0 0-1 1v3h15a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14Zm-1 4h-3a1 1 0 0 0-1 1v14a1 1 0 0 0 1 1h18a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14a1 1 0 0 1-1-1v-3h7a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-7v-4Zm-38 12a1 1 0 0 0-1 1v2a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-2Z" />
+</svg>

web/src/assets/review-badge/short-white.svg

@@ -0,0 +1,8 @@
+<svg xmlns="http://www.w3.org/2000/svg" fill="none" height="48" width="128" viewBox="0 0 256 96">
+  <rect width="255" height="95" x=".5" y=".5" fill="#fff" stroke="#ECF0EE" rx="7.5" />
+  <path fill="#28AE5B" d="m56.5 16 4.1 8.3 9.2 1.4-6.6 6.5 1.5 9.1-8.2-4.3-8.2 4.3 1.5-9.1-6.6-6.5 9.2-1.4 4.1-8.3Z" />
+  <path fill="#3F3F3F"
+    d="M82.7 40V20.4h7c1.5 0 2.7.2 3.7.7 1 .6 1.8 1.3 2.3 2.2.5 1 .8 2 .8 3.2 0 1.2-.3 2.3-.8 3.2-.5.9-1.3 1.6-2.3 2.1-1 .5-2.2.8-3.8.8h-5.3V30h5c1 0 1.8-.1 2.4-.4.6-.3 1-.7 1.4-1.2a4 4 0 0 0 .4-1.9 4 4 0 0 0-.5-2c-.2-.5-.7-.9-1.3-1.2-.6-.2-1.4-.4-2.4-.4h-3.7V40h-3Zm9.7-8.9 4.8 8.9h-3.4l-4.7-8.9h3.3Zm13.6 9.2c-1.5 0-2.7-.3-3.8-1-1-.6-1.8-1.4-2.4-2.6a9 9 0 0 1-.8-4 9 9 0 0 1 .8-4c.6-1.1 1.4-2 2.4-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.3 1 .5 2 .5 3.4v1h-11.7v-2.1h8.9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.8 0-1.5.2-2.1.6a4 4 0 0 0-1.4 1.6c-.3.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.6 2.5.3.7.8 1.2 1.4 1.6.7.4 1.4.5 2.2.5.6 0 1 0 1.5-.2l1.2-.7c.3-.3.5-.7.7-1.2l2.7.5a5 5 0 0 1-1.1 2.1c-.6.6-1.3 1-2.1 1.4-.9.3-1.8.5-3 .5Zm21.7-15L122.3 40h-3l-5.4-14.7h3l3.8 11.3h.2l3.7-11.3h3Zm2.7 14.7V25.3h2.8V40h-2.8Zm1.4-17c-.5 0-1-.2-1.3-.5-.3-.3-.5-.7-.5-1.2s.2-.9.5-1.2c.4-.4.8-.5 1.3-.5s1 .1 1.3.5c.3.3.5.7.5 1.2s-.2.9-.5 1.2c-.4.3-.8.5-1.3.5Zm11.6 17.3c-1.4 0-2.7-.3-3.7-1-1-.6-1.9-1.4-2.4-2.6a9 9 0 0 1-.9-4 9 9 0 0 1 .9-4c.5-1.1 1.3-2 2.3-2.7a7.2 7.2 0 0 1 6-.6 5.9 5.9 0 0 1 3.6 3.7c.4 1 .6 2 .6 3.4v1H138v-2.1h9c0-.8-.2-1.5-.5-2a3.5 3.5 0 0 0-3.2-2c-.9 0-1.6.2-2.2.6a4 4 0 0 0-1.3 1.6c-.4.6-.5 1.3-.5 2v1.7c0 1 .2 1.8.5 2.5.4.7.8 1.2 1.5 1.6.6.4 1.3.5 2.2.5.5 0 1 0 1.4-.2.5-.2.9-.4 1.2-.7.3-.3.6-.7.8-1.2l2.7.5a5 5 0 0 1-1.2 2.1c-.6.6-1.3 1-2.1 1.4-.8.3-1.8.5-2.9.5Zm12.7-.3-4.3-14.7h3l2.8 10.8h.2l2.9-10.8h3l2.8 10.7h.1l2.9-10.7h3L168 40h-2.9l-3-10.6h-.2L159 40h-2.9Zm32.4.3c-1.3 0-2.6-.3-3.6-1-1-.6-1.8-1.5-2.4-2.6a8.8 8.8 0 0 1-.8-4c0-1.5.3-2.9.8-4a6.4 6.4 0 0 1 6-3.6c1.4 0 2.6.3 3.7 1 1 .6 1.8 1.5 2.3 2.6.6 1.1.9 2.5.9 4s-.3 2.9-.9 4a6.4 6.4 0 0 1-6 3.6Zm0-2.4c1 0 1.7-.2 2.3-.7.6-.5 1-1.1 1.3-2 .3-.7.4-1.6.4-2.5 0-1-.1-1.8-.4-2.6-.3-.8-.7-1.4-1.3-1.9-.6-.5-1.4-.7-2.3-.7-.9 0-1.6.2-2.2.7-.6.5-1 1.1-1.3 2-.3.7-.4 1.6-.4 2.5 0 1 .1 1.8.4 2.6.3.8.7 1.4 1.3 1.9.6.5 1.3.7 2.2.7Zm13-6.6V40h-2.9V25.3h2.8v2.4h.1c.4-.8.9-1.4 1.6-2a5 5 0 0 1 2.8-.6c1 0 1.9.2 2.6.6.8.4 1.4 1 1.8 1.9.4.8.6 1.8.6 3V40H208v-9c0-1-.3-2-.8-2.5a3 3 0 0 0-2.3-1c-.7 0-1.3.2-1.8.5s-.9.7-1.2 1.3c-.3.5-.4 1.2-.4 2Z" />
+  <path fill="#28AE5B"
+    d="M27 52a1 1 0 0 0-1 1v26a1 1 0 0 0 1 1h74a1 1 0 0 0 1-1V53a1 1 0 0 0-1-1H27Zm4 4h2a1 1 0 0 1 1 1v6a1 1 0 0 0 1 1h6a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1v-3h-7a1 1 0 0 0-1 1v6a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1V57a1 1 0 0 1 1-1Zm12 0h3a1 1 0 0 1 1 1v3a1 1 0 0 1-1 1h-3a1 1 0 0 1-1-1v-3a1 1 0 0 1 1-1Zm12.8 0h2.4a1 1 0 0 1 .8.5l5 7.8 5-7.8a1 1 0 0 1 .8-.5h2.4a1 1 0 0 1 .8 1.5l-6.8 10.8a1 1 0 0 0-.2.6V75a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-6.1c0-.2 0-.4-.2-.6L55 57.5a1 1 0 0 1 .8-1.5ZM83 56h14a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H82v12h15a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H83a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1V61a1 1 0 0 1 1-1h3v-3a1 1 0 0 1 1-1Zm24 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V59.6l9.2 15.9c.2.3.5.5.8.5h5a1 1 0 0 0 1-1V57a1 1 0 0 0-1-1h-2a1 1 0 0 0-1 1v15.4l-9.2-15.9a1 1 0 0 0-.8-.5h-5Zm29 0a1 1 0 0 0-1 1v3h12v-3a1 1 0 0 0-1-1h-10Zm11 4v12h3a1 1 0 0 0 1-1V61a1 1 0 0 0-1-1h-3Zm0 12h-12v3a1 1 0 0 0 1 1h10a1 1 0 0 0 1-1v-3Zm-12 0V60h-3a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h3Zm21-16a1 1 0 0 0-1 1v6a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-3h4v15a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V60h4v3a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-6a1 1 0 0 0-1-1h-18Zm27 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V63.4l5.5 12a1 1 0 0 0 1 .6h3a1 1 0 0 0 1-.6l5.5-12V75a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V57a1 1 0 0 0-1-1h-3.4a1 1 0 0 0-.9.6L194 71.2l-6.7-14.6a1 1 0 0 0-1-.6H183Zm32 0a1 1 0 0 0-1 1v3h15a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14Zm-1 4h-3a1 1 0 0 0-1 1v14a1 1 0 0 0 1 1h18a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14a1 1 0 0 1-1-1v-3h7a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-7v-4Zm-38 12a1 1 0 0 0-1 1v2a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-2Z" />
+</svg>

web/src/components/BaseHead.astro

@@ -2,12 +2,19 @@
 import LoadingIndicator from 'astro-loading-indicator/component'
 import { Schema } from 'astro-seo-schema'
 import { ClientRouter } from 'astro:transitions'
+import { pwaAssetsHead } from 'virtual:pwa-assets/head'
+import { pwaInfo } from 'virtual:pwa-info'
 
 import { isNotArray } from '../lib/arrays'
 import { DEPLOYMENT_MODE } from '../lib/envVariables'
 
+import DevToolsMessageScript from './DevToolsMessageScript.astro'
+import DynamicFavicon from './DynamicFavicon.astro'
 import HtmxScript from './HtmxScript.astro'
+import NotificationEventsScript from './NotificationEventsScript.astro'
 import { makeOgImageUrl } from './OgImage'
+import ServerEventsScript from './ServerEventsScript.astro'
+import ServiceWorkerScript from './ServiceWorkerScript.astro'
 import TailwindJsPluggin from './TailwindJsPluggin.astro'
 
 import type { ComponentProps } from 'astro/types'
@@ -70,12 +77,6 @@ const fullTitle = `${pageTitle} | KYCnot.me ${modeName}`
 const ogImageUrl = makeOgImageUrl(ogImage, Astro.url)
 ---
 
-<!-- Favicon -->
-<link rel="icon" type="image/svg+xml" href="/favicon.svg" />
-<link rel="icon" type="image/svg+xml" href="/favicon-lightmode.svg" media="(prefers-color-scheme: light)" />
-{DEPLOYMENT_MODE === 'development' && <link rel="icon" type="image/svg+xml" href="/favicon-dev.svg" />}
-{DEPLOYMENT_MODE === 'staging' && <link rel="icon" type="image/svg+xml" href="/favicon-stage.svg" />}
-
 <!-- Primary Meta Tags -->
 <meta name="generator" content={Astro.generator} />
 <meta name="description" content={description} />
@@ -98,10 +99,20 @@ const ogImageUrl = makeOgImageUrl(ogImage, Astro.url)
 
 <!-- Other -->
 <link rel="sitemap" href="/sitemap-index.xml" />
-<meta name="theme-color" content="#040505" />
+
+<!-- PWA -->
+{pwaAssetsHead.themeColor && <meta name="theme-color" content={pwaAssetsHead.themeColor.content} />}
+{pwaAssetsHead.links.filter((link) => link.rel !== 'icon').map((link) => <link {...link} />)}
+{pwaInfo && <Fragment set:html={pwaInfo.webManifest.linkTag} />}
+
+<DynamicFavicon />
 
 <!-- Components -->
-<ClientRouter />
+{
+  !Astro.url.pathname.startsWith('/admin') && (
+    <ClientRouter />
+  ) /* Disable to prevent bugs in important admin forms */
+}
 <LoadingIndicator color="green" />
 <TailwindJsPluggin />
 {htmx && <HtmxScript />}
@@ -131,3 +142,15 @@ const ogImageUrl = makeOgImageUrl(ogImage, Astro.url)
     />
   ))
 }
+
+{
+  Astro.locals.user && (
+    <>
+      <ServerEventsScript />
+      <ServiceWorkerScript />
+      <NotificationEventsScript />
+    </>
+  )
+}
+
+<DevToolsMessageScript />

web/src/components/Button.astro

@@ -288,6 +288,7 @@ const ActualTag = disabled && Tag === 'a' ? 'span' : Tag
   class={base({ class: cn({ 'opacity-20 hover:opacity-50': disabled }, className) })}
   role={role ?? (Tag === 'button' || Tag === 'label' || (disabled && Tag === 'a') ? undefined : 'button')}
   aria-disabled={disabled}
+  aria-label={label}
   {...dataAstroReload && { 'data-astro-reload': dataAstroReload }}
   {...htmlProps}
 >

web/src/components/CommentItem.astro

@@ -150,13 +150,13 @@ const commentUrl = makeCommentUrl({ serviceSlug, commentId: comment.id, origin:
     checked={comment.suspicious}
   />
 
-  <div class="comment-header scrollbar-w-none flex items-center gap-2 overflow-auto text-sm">
+  <div class="comment-header flex items-center gap-2 text-sm">
     <label for={`collapse-${comment.id.toString()}`} class="cursor-pointer text-zinc-500 hover:text-zinc-300">
       <span class="collapse-symbol text-xs"></span>
       <span class="sr-only">Toggle comment visibility</span>
     </label>
 
-    <span class="flex items-center gap-1">
+    <span class="flex min-w-16 items-center gap-1">
       <UserBadge
         user={comment.author}
         size="md"
@@ -179,7 +179,7 @@ const commentUrl = makeCommentUrl({ serviceSlug, commentId: comment.id, origin:
     </span>
 
     {/* User badges - more compact but still with text */}
-    <div class="flex flex-wrap items-center gap-1">
+    <div class="flex w-min grow flex-wrap items-center gap-1">
       {
         comment.author.admin && (
           <BadgeSmall icon="ri:shield-star-fill" color="green" text="Admin" variant="faded" inlineIcon />
@@ -240,15 +240,17 @@ const commentUrl = makeCommentUrl({ serviceSlug, commentId: comment.id, origin:
       }
 
       {
-        comment.author.serviceAffiliations.map((affiliation) => {
-          const roleInfo = getServiceUserRoleInfo(affiliation.role)
-          return (
-            <BadgeSmall icon={roleInfo.icon} color={roleInfo.color} variant="faded" inlineIcon>
-              {roleInfo.label} at
-              <a href={`/service/${affiliation.service.slug}`}>{affiliation.service.name}</a>
-            </BadgeSmall>
-          )
-        })
+        comment.author.serviceAffiliations
+          .filter((affiliation) => affiliation.service.slug === serviceSlug)
+          .map((affiliation) => {
+            const roleInfo = getServiceUserRoleInfo(affiliation.role)
+            return (
+              <BadgeSmall icon={roleInfo.icon} color={roleInfo.color} variant="faded" inlineIcon>
+                {roleInfo.label} at
+                <a href={`/service/${affiliation.service.slug}`}>{affiliation.service.name}</a>
+              </BadgeSmall>
+            )
+          })
       }
     </div>
   </div>

web/src/components/DevToolsMessageScript.astro

@@ -0,0 +1,51 @@
+---
+
+---
+
+<script>
+  import { SOURCE_CODE_URL } from 'astro:env/client'
+
+  const logoStyle = `
+  padding: 0 119.5px;
+  display: block;
+  line-height: 64px;
+  background-size: auto 64px;
+  background-repeat: no-repeat;
+  background-position: 50% 0;
+  background-image: url("data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' fill='none' viewBox='0 0 240 64'%3E%3Crect width='239' height='63' x='.5' y='.5' fill='%23101413' stroke='%23292B2A' rx='7.5'/%3E%3Cpath fill='%233BDB78' d='M19 18a1 1 0 0 0-1 1v26a1 1 0 0 0 1 1h74a1 1 0 0 0 1-1V19a1 1 0 0 0-1-1H19Zm4 4h2a1 1 0 0 1 1 1v6a1 1 0 0 0 1 1h6a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v3h3a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1v-3h-7a1 1 0 0 0-1 1v6a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1V23a1 1 0 0 1 1-1Zm12 0h3a1 1 0 0 1 1 1v3a1 1 0 0 1-1 1h-3a1 1 0 0 1-1-1v-3a1 1 0 0 1 1-1Zm12.8 0h2.4a1 1 0 0 1 .8.5l5 7.8 5-7.8a1 1 0 0 1 .8-.5h2.4a1 1 0 0 1 .8 1.5l-6.9 10.8a1 1 0 0 0-.1.6V41a1 1 0 0 1-1 1h-2a1 1 0 0 1-1-1v-6.1c0-.2 0-.4-.2-.6L47 23.5a1 1 0 0 1 .8-1.5ZM75 22h14a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H74v12h15a1 1 0 0 1 1 1v2a1 1 0 0 1-1 1H75a1 1 0 0 1-1-1v-3h-3a1 1 0 0 1-1-1V27a1 1 0 0 1 1-1h3v-3a1 1 0 0 1 1-1Zm24 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V25.6l9.2 15.9c.2.3.5.5.8.5h5a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-2a1 1 0 0 0-1 1v15.4l-9.2-15.9a1 1 0 0 0-.8-.5h-5Zm29 0a1 1 0 0 0-1 1v3h12v-3a1 1 0 0 0-1-1h-10Zm11 4v12h3a1 1 0 0 0 1-1V27a1 1 0 0 0-1-1h-3Zm0 12h-12v3a1 1 0 0 0 1 1h10a1 1 0 0 0 1-1v-3Zm-12 0V26h-3a1 1 0 0 0-1 1v10a1 1 0 0 0 1 1h3Zm21-16a1 1 0 0 0-1 1v6a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-3h4v15a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V26h4v3a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-6a1 1 0 0 0-1-1h-18Zm27 0a1 1 0 0 0-1 1v18a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V29.4l5.5 12a1 1 0 0 0 1 .6h3a1 1 0 0 0 1-.6l5.5-12V41a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1V23a1 1 0 0 0-1-1h-3.4a1 1 0 0 0-.9.6L186 37.2l-6.7-14.6a1 1 0 0 0-1-.6H175Zm32 0a1 1 0 0 0-1 1v3h15a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14Zm-1 4h-3a1 1 0 0 0-1 1v14a1 1 0 0 0 1 1h18a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-14a1 1 0 0 1-1-1v-3h7a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-7v-4Zm-38 12a1 1 0 0 0-1 1v2a1 1 0 0 0 1 1h2a1 1 0 0 0 1-1v-2a1 1 0 0 0-1-1h-2Z'/%3E%3C/svg%3E");
+  `
+
+  setTimeout(
+    console.log.bind(
+      console,
+      `\n%c \n%c\n    👋%c  Hi there! %c\n\n‣ We included source maps, so you can easily inspect the code. 🕵🏻‍♂️\n‣ Everything works with JavaScript disabled.\n‣ Source code: ${SOURCE_CODE_URL}`,
+      logoStyle,
+      `
+        font-family: cursive;
+        font-size: 2rem;
+        font-weight: bold;
+      `,
+      `
+        font-family: cursive;
+        font-size: 2rem;
+        font-weight: bold;	
+        background: repeating-linear-gradient(
+          90deg,
+          #d97706 0%,
+          #f59e0b 20%,
+          #f97316 40%,
+          #ea580c 60%,
+          #f97316 80%,
+          #f59e0b 100%
+        ) -100%/ 200%;
+      	-webkit-background-clip: text;
+      	background-clip: text;
+      	color: transparent;
+      `,
+      `
+        font-size: 1rem;
+        font-family: system-ui, -apple-system, sans-serif;
+      `
+    )
+  )
+</script>

web/src/components/DynamicFavicon.astro

@@ -0,0 +1,79 @@
+---
+import { DEPLOYMENT_MODE } from '../lib/envVariables'
+import { prisma } from '../lib/prisma'
+
+const user = Astro.locals.user
+
+const hasUnreadNotifications = await Astro.locals.banners.try(
+  'Error getting unread notification count',
+  async () =>
+    user
+      ? !!(await prisma.notification.findFirst({
+          where: { userId: user.id, read: false },
+          select: { id: true },
+        }))
+      : false,
+  false
+)
+
+function addBadgeIfUnread(href: string) {
+  if (hasUnreadNotifications) return href.replace('.svg', '-badge.svg')
+  return href
+}
+---
+
+{
+  DEPLOYMENT_MODE === 'production' && (
+    <>
+      <link rel="icon" type="image/svg+xml" sizes="any" href={addBadgeIfUnread('/favicon.svg')} />
+      <link
+        rel="icon"
+        type="image/svg+xml"
+        sizes="any"
+        href={addBadgeIfUnread('/favicon-lightmode.svg')}
+        media="(prefers-color-scheme: light)"
+      />
+    </>
+  )
+}
+{
+  DEPLOYMENT_MODE === 'development' && (
+    <>
+      <link rel="icon" type="image/svg+xml" sizes="any" href={addBadgeIfUnread('/favicon-dev.svg')} />
+      <link
+        rel="icon"
+        type="image/svg+xml"
+        sizes="any"
+        href={addBadgeIfUnread('/favicon-dev-lightmode.svg')}
+        media="(prefers-color-scheme: light)"
+      />
+    </>
+  )
+}
+{
+  DEPLOYMENT_MODE === 'staging' && (
+    <>
+      <link rel="icon" type="image/svg+xml" sizes="any" href={addBadgeIfUnread('/favicon-stage.svg')} />
+      <link
+        rel="icon"
+        type="image/svg+xml"
+        sizes="any"
+        href={addBadgeIfUnread('/favicon-stage-lightmode.svg')}
+        media="(prefers-color-scheme: light)"
+      />
+    </>
+  )
+}
+
+<script>
+  document.addEventListener('sse:new-notification', () => {
+    const links = document.querySelectorAll('link[rel="icon"]')
+    links.forEach((link) => {
+      const href = link.getAttribute('href')
+      if (href && href.includes('favicon') && !href.endsWith('-badge.svg')) {
+        const newHref = href.replace('.svg', '-badge.svg')
+        link.setAttribute('href', newHref)
+      }
+    })
+  })
+</script>

web/src/components/Footer.astro

@@ -1,6 +1,7 @@
 ---
 import { Icon } from 'astro-icon/components'
-import { SOURCE_CODE_URL, I2P_ADDRESS, ONION_ADDRESS } from 'astro:env/server'
+import { SOURCE_CODE_URL } from 'astro:env/client'
+import { I2P_ADDRESS, ONION_ADDRESS } from 'astro:env/server'
 
 import { cn } from '../lib/cn'
 
@@ -33,6 +34,12 @@ const links = [
     icon: 'ri:plug-line',
     external: false,
   },
+  {
+    href: '/feeds',
+    label: 'RSS',
+    icon: 'ri:rss-line',
+    external: false,
+  },
   {
     href: '/about',
     label: 'About',
@@ -49,7 +56,10 @@ const links = [
 const { class: className, ...htmlProps } = Astro.props
 ---
 
-<footer class={cn('flex items-center justify-center gap-6 p-4', className)} {...htmlProps}>
+<footer
+  class={cn('xs:gap-x-6 flex flex-wrap items-center justify-center gap-x-3 gap-y-2 p-4', className)}
+  {...htmlProps}
+>
   {
     links.map(
       ({ href, label, icon, external }) =>
@@ -58,9 +68,9 @@ const { class: className, ...htmlProps } = Astro.props
             href={href}
             target={external ? '_blank' : undefined}
             rel={external ? 'noopener noreferrer' : undefined}
-            class="text-day-500 flex items-center gap-1 text-sm transition-colors hover:text-gray-200 hover:underline"
+            class="text-day-500 xs:gap-1 flex items-center gap-0.5 text-sm transition-colors hover:text-gray-200 hover:underline"
           >
-            <Icon name={icon} class="h-4 w-4" />
+            <Icon name={icon} class="xs:opacity-100 h-4 w-4 opacity-40" />
             {label}
           </a>
         )

web/src/components/Header.astro

@@ -123,6 +123,7 @@ const splashText = showSplashText ? sample(splashTexts) : null
           transition:name="header-admin-link"
           text="Admin Dashboard"
           position="left"
+          aria-label="Admin Dashboard"
         >
           <Icon name="ri:home-gear-line" class="size-10" />
         </Tooltip>

web/src/components/HeaderNotificationIndicator.astro

@@ -27,6 +27,8 @@ const count =
   user && (
     <a
       href="/notifications"
+      data-notification-count-link
+      data-current-count={count}
       class={cn(
         'group relative flex cursor-pointer items-center justify-center text-gray-400 transition-colors duration-100 hover:text-white',
         className
@@ -35,11 +37,32 @@ const count =
       {...htmlProps}
     >
       <Icon name="material-symbols:notifications-outline" class="size-5" />
-      {count > 0 && (
-        <span class="absolute top-[calc(50%-var(--spacing)*3.5)] right-[calc(50%-var(--spacing)*3.5)] flex size-3.5 items-center justify-center rounded-full bg-blue-600 text-[10px] font-bold tracking-tighter text-white group-hover:bg-blue-500">
-          {count > 99 ? '★' : count.toLocaleString()}
-        </span>
-      )}
+      <span
+        data-notification-count-badge
+        class="absolute top-[calc(50%-var(--spacing)*3.5)] right-[calc(50%-var(--spacing)*3.5)] flex size-3.5 items-center justify-center rounded-full bg-blue-600 text-[10px] font-bold tracking-tighter text-white group-hover:bg-blue-500 empty:hidden"
+      >
+        {count > 0 ? (count > 99 ? '★' : count.toLocaleString()) : ''}
+      </span>
     </a>
   )
 }
+
+<script>
+  document.addEventListener('sse:new-notification', () => {
+    document.querySelectorAll<HTMLElement>('[data-notification-count-link]').forEach((link) => {
+      const currentCount = Number(link.getAttribute('data-current-count') || 0)
+      const newCount = currentCount + 1
+
+      link.querySelectorAll<HTMLElement>('[data-notification-count-badge]').forEach((badge) => {
+        badge.textContent = newCount > 0 ? (newCount > 99 ? '★' : newCount.toLocaleString()) : ''
+      })
+
+      link.setAttribute(
+        'aria-label',
+        `Go to notifications${newCount > 0 ? ` (${newCount.toLocaleString()} unread)` : ''}`
+      )
+
+      link.setAttribute('data-current-count', String(newCount))
+    })
+  })
+</script>

web/src/components/InputCheckbox.astro

@@ -0,0 +1,61 @@
+---
+import { cn } from '../lib/cn'
+
+import type InputWrapper from './InputWrapper.astro'
+import type { AstroChildren } from '../lib/astro'
+import type { ComponentProps } from 'astro/types'
+
+type Props = Pick<ComponentProps<typeof InputWrapper>, 'error' | 'name' | 'required'> & {
+  disabled?: boolean
+  id?: string
+} & (
+    | {
+        label: string
+        children?: undefined
+      }
+    | {
+        label?: undefined
+        children: AstroChildren
+      }
+  )
+
+const { disabled, name, required, error, id, label } = Astro.props
+
+const hasError = !!error && error.length > 0
+---
+
+{}
+
+<div>
+  <label
+    class={cn(
+      'inline-flex cursor-pointer items-center gap-2',
+      hasError && 'text-red-300',
+      disabled && 'cursor-not-allowed opacity-50'
+    )}
+  >
+    <input
+      transition:persist
+      type="checkbox"
+      id={id}
+      name={name}
+      required={required}
+      disabled={disabled}
+      class={cn(disabled && 'opacity-50')}
+    />
+    <span class="text-sm leading-none text-pretty">{label ?? <slot />}</span>
+  </label>
+
+  {
+    hasError &&
+      (typeof error === 'string' ? (
+        <p class="text-sm text-red-500">{error}</p>
+      ) : (
+        <ul class="text-sm text-red-500">
+          {error.map((e) => (
+            <li>{e}</li>
+          ))}
+        </ul>
+      ))
+  }
+</div>

web/src/components/InputSelect.astro

@@ -14,10 +14,11 @@ type Props = Omit<ComponentProps<typeof InputWrapper>, 'children' | 'inputId' |
     value: string
     disabled?: boolean
   }[]
-  selectProps?: Omit<HTMLAttributes<'select'>, 'name'>
+  selectProps?: Omit<HTMLAttributes<'select'>, 'name' | 'value'>
+  selectedValue?: string[] | string
 }
 
-const { options, selectProps, ...wrapperProps } = Astro.props
+const { options, selectProps, selectedValue, ...wrapperProps } = Astro.props
 
 const inputId = selectProps?.id ?? Astro.locals.makeId(`input-${wrapperProps.name}`)
 const hasError = !!wrapperProps.error && wrapperProps.error.length > 0
@@ -39,7 +40,15 @@ const hasError = !!wrapperProps.error && wrapperProps.error.length > 0
   >
     {
       options.map((option) => (
-        <option value={option.value} disabled={option.disabled}>
+        <option
+          value={option.value}
+          disabled={option.disabled}
+          selected={
+            Array.isArray(selectedValue)
+              ? selectedValue.includes(option.value)
+              : selectedValue === option.value
+          }
+        >
           {option.label}
         </option>
       ))

web/src/components/InputTextArea.astro

@@ -27,6 +27,7 @@ const hasError = !!wrapperProps.error && wrapperProps.error.length > 0
     class={cn(
       baseInputClassNames.input,
       baseInputClassNames.textarea,
+      !!inputProps?.rows && 'h-auto',
       inputProps?.class,
       hasError && baseInputClassNames.error,
       !!inputProps?.disabled && baseInputClassNames.disabled

web/src/components/NotificationEventsScript.astro

@@ -0,0 +1,29 @@
+---
+
+---
+
+<script>
+  import { isBrowserNotificationsEnabled, showBrowserNotification } from '../lib/client/browserNotifications'
+  import { makeNotificationOptions } from '../lib/notificationOptions'
+
+  document.addEventListener('sse:new-notification', (event) => {
+    if (isBrowserNotificationsEnabled()) {
+      const payload = event.detail
+      const notification = showBrowserNotification(
+        payload.title,
+        makeNotificationOptions(payload, { removeActions: true })
+      )
+
+      // Handle notification click
+      if (notification) {
+        notification.onclick = () => {
+          const defaultAction = payload.actions.find((a) => a.url) ?? payload.actions[0]
+          if (defaultAction?.url) {
+            window.open(defaultAction.url, '_blank')
+          }
+          notification.close()
+        }
+      }
+    }
+  })
+</script>

web/src/components/PressAssets.astro

@@ -0,0 +1,151 @@
+---
+import favicon from '../../public/favicon.svg'
+import logoMiniFull from '../assets/logo/logo-mini-full.svg'
+import logoNormal from '../assets/logo/logo-normal.svg'
+import logoSmall from '../assets/logo/logo-small.svg'
+import reviewBadgeLongBlack from '../assets/review-badge/long-black.svg'
+import reviewBadgeLongWhite from '../assets/review-badge/long-white.svg'
+import reviewBadgeShortBlack from '../assets/review-badge/short-black.svg'
+import reviewBadgeShortWhite from '../assets/review-badge/short-white.svg'
+
+import Button from './Button.astro'
+import MyPicture from './MyPicture.astro'
+
+const categories: {
+  title: string
+  assets: {
+    name: string
+    path: typeof logoNormal
+    alt: string
+  }[]
+}[] = [
+  {
+    title: 'Logos',
+    assets: [
+      {
+        name: 'Logo',
+        path: logoNormal,
+        alt: 'KYCnot.me logo normal version',
+      },
+      {
+        name: 'Logo small',
+        path: logoSmall,
+        alt: 'KYCnot.me logo small version',
+      },
+      {
+        name: 'Logo mini',
+        path: logoMiniFull,
+        alt: 'KYCnot.me logo mini version',
+      },
+      {
+        name: 'Logo icon',
+        path: favicon,
+        alt: 'KYCnot.me logo icon version',
+      },
+    ],
+  },
+  {
+    title: 'Review badges',
+    assets: [
+      {
+        name: 'Review badge (long black)',
+        path: reviewBadgeLongBlack,
+        alt: 'KYCnot.me review badge long black version',
+      },
+      {
+        name: 'Review badge (long white)',
+        path: reviewBadgeLongWhite,
+        alt: 'KYCnot.me review badge long white version',
+      },
+      {
+        name: 'Review badge (short black)',
+        path: reviewBadgeShortBlack,
+        alt: 'KYCnot.me review badge short black version',
+      },
+      {
+        name: 'Review badge (short white)',
+        path: reviewBadgeShortWhite,
+        alt: 'KYCnot.me review badge short white version',
+      },
+    ],
+  },
+]
+---
+
+<div class="not-prose mb-16 space-y-8">
+  {
+    categories.map((category) => {
+      return (
+        <>
+          <h3 class="font-title mb-2 text-center text-xl font-semibold text-white">{category.title}</h3>
+          <ul class="xs:grid-cols-2 grid grid-cols-1 gap-6">
+            {category.assets.map((asset) => (
+              <li>
+                <div
+                  class="bg-transparency-grid mx-auto flex aspect-[3/1] max-w-sm items-center justify-center rounded-lg p-4"
+                  style={{
+                    '--transparency-grid-color-1': 'var(--color-night-600)',
+                    '--transparency-grid-color-2': 'var(--color-night-500)',
+                    '--transparency-grid-size': 'calc(var(--spacing) * 4)',
+                  }}
+                >
+                  <MyPicture
+                    src={asset.path}
+                    alt={asset.alt}
+                    pictureAttributes={{
+                      class: 'contents',
+                    }}
+                    class="max-h-full min-h-8 max-w-full min-w-8 object-contain"
+                  />
+                </div>
+                <div class="mt-2 text-center">
+                  <Button
+                    as="a"
+                    href={asset.path.src}
+                    download={asset.name}
+                    label={asset.name}
+                    size="sm"
+                    color="white"
+                    variant="faded"
+                    icon="ri:download-line"
+                  />
+                </div>
+              </li>
+            ))}
+          </ul>
+        </>
+      )
+    })
+  }
+</div>
+
+<style>
+  .bg-transparency-grid {
+    --transparency-grid-color-1: #fff;
+    --transparency-grid-color-2: #ccc;
+    --transparency-grid-size: calc(var(--spacing) * 8);
+
+    background-color: var(--transparency-grid-color-1);
+    background-image:
+      linear-gradient(
+        45deg,
+        var(--transparency-grid-color-2) 25%,
+        transparent 25%,
+        transparent 75%,
+        var(--transparency-grid-color-2) 75%,
+        var(--transparency-grid-color-2)
+      ),
+      linear-gradient(
+        45deg,
+        var(--transparency-grid-color-2) 25%,
+        transparent 25%,
+        transparent 75%,
+        var(--transparency-grid-color-2) 75%,
+        var(--transparency-grid-color-2)
+      );
+    background-size: var(--transparency-grid-size) var(--transparency-grid-size);
+    background-position:
+      0 0,
+      calc(var(--transparency-grid-size) / 2) calc(var(--transparency-grid-size) / 2);
+  }
+</style>

web/src/components/PushNotificationBanner.astro

@@ -2,6 +2,7 @@
 import { Icon } from 'astro-icon/components'
 import { VAPID_PUBLIC_KEY } from 'astro:env/server'
 
+import { SUPPORT_EMAIL } from '../constants/project'
 import { cn } from '../lib/cn'
 
 import Button from './Button.astro'
@@ -21,24 +22,24 @@ type Props = HTMLAttributes<'div'> & {
 }
 
 const { class: className, dismissable = false, pushSubscriptions, hideIfEnabled, ...props } = Astro.props
-
-// TODO: Feature flag, enabled only for admins
-if (!Astro.locals.user?.admin) {
-  return null
-}
 ---
 
 <div
   data-push-notification-banner
-  data-dismissed={undefined /* Updated by client script */}
-  data-supports-push-notifications={undefined /* Updated by client script */}
+  data-dismissed={undefined as true | undefined /* Updated by client script */}
+  data-notification-supported={undefined as true | undefined /* Updated by client script */}
   data-push-subscriptions={JSON.stringify(pushSubscriptions)}
-  data-is-enabled={undefined /* Updated by client script */}
+  data-is-enabled={undefined as true | undefined /* Updated by client script */}
+  data-loaded={undefined as true | undefined /* Updated by client script */}
+  data-notification-permissions={undefined as
+    | NotificationPermission
+    | undefined /* Updated by client script */}
+  data-vapid-public-key={VAPID_PUBLIC_KEY}
   class={cn(
-    'no-js:hidden relative isolate flex items-center justify-between gap-x-4 overflow-hidden rounded-xl bg-gradient-to-r from-blue-950/80 to-blue-900/60 p-4',
+    'no-js:hidden xs:grid-cols-[auto_auto] xs:justify-between relative isolate grid items-center justify-stretch gap-4 overflow-hidden rounded-xl bg-gradient-to-r from-blue-950/80 to-blue-900/60 p-4 not-data-loaded:hidden',
     'data-dismissed:hidden',
     hideIfEnabled && 'data-is-enabled:hidden',
-    'not-data-supports-push-notifications:hidden',
+    'not-data-notification-supported:hidden',
     'data-is-enabled:**:data-show-if-disabled:hidden not-data-is-enabled:**:data-show-if-enabled:hidden',
     className
   )}
@@ -60,25 +61,18 @@ if (!Astro.locals.user?.admin) {
       <Icon name="ri:notification-4-line" class="size-5 text-blue-300" />
     </div>
     <div>
-      <h3 class="font-medium text-blue-100">
-        <span data-show-if-enabled>Push notifications enabled</span>
-        <span data-show-if-disabled>Turn on push notifications?</span>
-      </h3>
-      <p class="text-sm text-blue-200/80">
-        <span data-show-if-enabled>Turn notifications off for this device?</span>
-        <span data-show-if-disabled>Get notifications on this device.</span>
-      </p>
+      <h3 class="font-medium text-blue-100" data-banner-title>Turn on push notifications?</h3>
+      <p class="text-sm text-blue-200/80" data-banner-description>Get notifications on this device.</p>
     </div>
   </div>
 
-  <div class="flex items-center gap-2">
+  <div class="xs:justify-end flex shrink flex-wrap items-center justify-center gap-2">
     {dismissable && <Button as="span" label="Skip" variant="faded" data-dismiss-button />}
     <Button
       as="span"
       label="Yes, notify me"
       color="white"
       data-push-action="subscribe"
-      data-vapid-public-key={VAPID_PUBLIC_KEY}
       data-show-if-disabled
     />
     <Button
@@ -87,10 +81,21 @@ if (!Astro.locals.user?.admin) {
       color="white"
       variant="faded"
       data-push-action="unsubscribe"
-      data-vapid-public-key={VAPID_PUBLIC_KEY}
       data-show-if-enabled
     />
   </div>
+
+  <div
+    class="col-span-full flex items-center justify-center gap-2 leading-tight text-red-500 has-[[data-error-message]:empty]:hidden"
+  >
+    <Icon name="ri:error-warning-line" class="size-5 shrink-0" />
+    <span>
+      <span data-error-message></span>
+      <a href={`mailto:${SUPPORT_EMAIL}`} class="text-red-300 underline hover:text-red-200">
+        Contact support
+      </a>
+    </span>
+  </div>
 </div>
 
 <script>
@@ -134,240 +139,128 @@ if (!Astro.locals.user?.admin) {
 </script>
 
 <script>
-  /////////////////////////////////////////////////////////
-  // Script to style when notifications enabled.        //
-  ////////////////////////////////////////////////////////
+  ///////////////////////////////////////////
+  // Script to handle push notifications.  //
+  ///////////////////////////////////////////
 
-  type ServerSubscription = {
-    endpoint: string
-    userAgent: string | null
-  }
+  import {
+    subscribeToPushNotifications,
+    unsubscribeFromPushNotifications,
+    parsePushSubscriptions,
+    isCurrentDeviceSubscribed,
+    supportsPushNotifications,
+    type SafeResult,
+  } from '../lib/client/clientPushNotifications'
 
-  /** Parse push subscriptions from string */
-  function parsePushSubscriptions(subscriptionsAsString: string | undefined) {
-    try {
-      if (typeof subscriptionsAsString !== 'string') throw new Error('Push subscriptions must be a string')
+  import {
+    enableBrowserNotifications,
+    disableBrowserNotifications,
+    isBrowserNotificationsEnabled,
+    supportsBrowserNotifications,
+  } from '../lib/client/browserNotifications'
 
-      const subscriptions = JSON.parse(subscriptionsAsString)
-
-      if (!Array.isArray(subscriptions)) throw new Error('Push subscriptions must be an array')
-      if (!subscriptions.every((s) => typeof s === 'object' && s !== null)) {
-        throw new Error('Push subscriptions must be an array of objects')
-      }
-      if (!subscriptions.every((s) => typeof s.endpoint === 'string')) {
-        throw new Error('Push subscriptions must be an array of objects with endpoint property')
-      }
-      if (!subscriptions.every((s) => typeof s.userAgent === 'string' || s.userAgent === null)) {
-        throw new Error('Push subscriptions must be an array of objects with userAgent property')
-      }
-
-      return subscriptions as ServerSubscription[]
-    } catch (error) {
-      console.error('Failed to parse push subscriptions:', error)
-      return []
+  async function setDataAttributes(banner: HTMLElement) {
+    if (!supportsPushNotifications() && !supportsBrowserNotifications()) {
+      return
     }
-  }
 
-  /** Check if current device has an active push subscription */
-  async function getCurrentPushSubscription() {
-    try {
-      const registration = await navigator.serviceWorker.getRegistration()
-      if (!registration) return null
+    banner.dataset.notificationSupported = ''
+    banner.dataset.notificationPermissions = Notification.permission
 
-      return await registration.pushManager.getSubscription()
-    } catch (error) {
-      console.error('Error getting current push subscription:', error)
-      return null
+    const serverSubscriptions = parsePushSubscriptions(banner.dataset.pushSubscriptions)
+    const titleElement = banner.querySelector<HTMLElement>('[data-banner-title]')
+    const descriptionElement = banner.querySelector<HTMLElement>('[data-banner-description]')
+
+    if (await isCurrentDeviceSubscribed(serverSubscriptions)) {
+      if (titleElement) titleElement.textContent = 'Push notifications enabled'
+      if (descriptionElement) descriptionElement.textContent = 'Turn push notifications off for this device?'
+      banner.dataset.isEnabled = ''
+      banner.dataset.loaded = ''
+      return
     }
-  }
 
-  /** Check if current subscription matches any server subscription */
-  function isCurrentDeviceSubscribed(
-    currentSubscription: PushSubscription | null,
-    serverSubscriptions: ServerSubscription[]
-  ) {
-    if (!currentSubscription || serverSubscriptions.length === 0) return false
+    if (isBrowserNotificationsEnabled()) {
+      if (titleElement) titleElement.textContent = 'Browser notifications enabled'
+      if (descriptionElement)
+        descriptionElement.textContent = 'Turn off notifications? (They only work while the tab is open.)'
+      banner.dataset.isEnabled = ''
+      banner.dataset.loaded = ''
+      return
+    }
 
-    const currentEndpoint = currentSubscription.endpoint
-    const currentUserAgent = navigator.userAgent
-
-    return serverSubscriptions.some(
-      (sub) =>
-        sub.endpoint === currentEndpoint && (sub.userAgent === currentUserAgent || sub.userAgent === null)
-    )
+    // Default state (disabled)
+    if (titleElement) titleElement.textContent = 'Turn on push notifications?'
+    if (descriptionElement) descriptionElement.textContent = 'Get notifications on this device.'
+    banner.dataset.loaded = ''
   }
 
   document.addEventListener('astro:page-load', async () => {
     document.querySelectorAll<HTMLElement>('[data-push-notification-banner]').forEach(async (banner) => {
-      const serverSubscriptions = parsePushSubscriptions(banner.dataset.pushSubscriptions)
-      const currentSubscription = await getCurrentPushSubscription()
-      const isSubscribed = isCurrentDeviceSubscribed(currentSubscription, serverSubscriptions)
+      await setDataAttributes(banner)
 
-      if (isSubscribed) banner.dataset.isEnabled = ''
-    })
-  })
-</script>
+      const vapidPublicKey = banner.dataset.vapidPublicKey
 
-<script>
-  /////////////////////////////////////////////////////////////
-  // Script to handle push notification subscription.        //
-  /////////////////////////////////////////////////////////////
+      banner.querySelectorAll<HTMLElement>('[data-push-action]').forEach((button) => {
+        button.addEventListener('click', async (event) => {
+          event.preventDefault()
+          event.stopPropagation()
 
-  import type { actions } from 'astro:actions'
-  import type { ActionInput } from '../lib/astroActions'
+          const action = button.dataset.pushAction
+          if (action !== 'subscribe' && action !== 'unsubscribe') {
+            console.error('Invalid push action:', action)
+            return
+          }
 
-  /** Utility function to convert VAPID key */
-  function urlB64ToUint8Array(base64String: string) {
-    const cleaned = base64String.trim().replace(/\s+/g, '').replace(/\-/g, '+').replace(/_/g, '/')
-    const padding = '='.repeat((4 - (cleaned.length % 4)) % 4)
-    const base64 = cleaned + padding
+          let result: SafeResult
 
-    const rawData = window.atob(base64)
-    const outputArray = new Uint8Array(rawData.length)
+          if (action === 'subscribe') {
+            const pushResult = vapidPublicKey
+              ? await subscribeToPushNotifications(vapidPublicKey)
+              : { success: false as const, error: 'VAPID public key not found' }
 
-    for (let i = 0; i < rawData.length; ++i) {
-      outputArray[i] = rawData.charCodeAt(i)
-    }
-    return outputArray
-  }
+            if (pushResult.success) {
+              result = pushResult
+            } else {
+              console.error(
+                "Can't enable push notifications, trying browser notifications.",
+                pushResult.error
+              )
+              const browserResult = await enableBrowserNotifications()
 
-  /** Check for browser support */
-  function checkSupport() {
-    const isSecure =
-      window.isSecureContext ||
-      window.location.hostname === 'localhost' ||
-      window.location.hostname === '127.0.0.1'
-    return isSecure && 'serviceWorker' in navigator && 'PushManager' in window && 'Notification' in window
-  }
+              if (browserResult.success) {
+                result = browserResult
+              } else {
+                console.error("Can't enable browser notifications:", browserResult.error)
+                result = {
+                  success: false,
+                  error: `Can't enable either push or browser notifications. Push: ${pushResult.error}. Browser: ${browserResult.error}`,
+                }
+              }
+            }
+          } else {
+            const pushResult = await unsubscribeFromPushNotifications()
+            const browserResult = disableBrowserNotifications()
 
-  async function registerServiceWorker() {
-    try {
-      const registration = await navigator.serviceWorker.register('/sw.js')
-      console.log('Service Worker registered:', registration)
+            const success = pushResult.success || browserResult.success
 
-      const readyRegistration = await navigator.serviceWorker.ready
-      console.log('Service Worker is active and ready:', readyRegistration)
+            result = success
+              ? { success: true }
+              : { success: false, error: `${pushResult.error} | ${browserResult.error}` }
+          }
 
-      return readyRegistration
-    } catch (error) {
-      console.error('Service Worker registration failed:', error)
-      throw error
-    }
-  }
+          if (!result.success) {
+            console.error(result.error)
 
-  async function subscribeToPush(vapidPublicKey: string) {
-    try {
-      if (!checkSupport()) return
+            const errorMessageElement = banner.querySelector<HTMLElement>('[data-error-message]')
+            if (errorMessageElement) {
+              errorMessageElement.textContent = `Failed to ${action === 'subscribe' ? 'enable' : 'disable'} notifications.`
+            }
 
-      // Request notification permission
-      const permission = await Notification.requestPermission()
-      if (permission !== 'granted') {
-        alert('Push notifications permission denied')
-        return
-      }
+            return
+          }
 
-      const registration = await registerServiceWorker()
-
-      // Subscribe to push manager
-      const subscription = await registration.pushManager.subscribe({
-        userVisibleOnly: true,
-        applicationServerKey: urlB64ToUint8Array(vapidPublicKey),
-      })
-
-      const p256dh = subscription.getKey('p256dh')
-      const auth = subscription.getKey('auth')
-
-      // Send subscription to server
-      const response = await fetch('/internal-api/notifications/subscribe', {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify({
-          endpoint: subscription.endpoint,
-          userAgent: navigator.userAgent,
-          p256dhKey: p256dh ? btoa(String.fromCharCode(...new Uint8Array(p256dh))) : '',
-          authKey: auth ? btoa(String.fromCharCode(...new Uint8Array(auth))) : '',
-        } satisfies ActionInput<typeof actions.notification.webPush.subscribe>),
-      })
-
-      if (!response.ok) {
-        throw new Error(`HTTP error! status: ${response.status}`)
-      }
-
-      console.log('Push subscription successful')
-
-      // Reload page to update UI
-      window.location.reload()
-    } catch (error) {
-      console.error('Push subscription failed:', error)
-      alert('Error enabling push notifications. This may be due to browser settings or other restrictions.')
-    }
-  }
-
-  async function unsubscribeFromPush() {
-    try {
-      const registration = await navigator.serviceWorker.getRegistration()
-      if (!registration) {
-        console.log('No service worker registration found')
-        return
-      }
-
-      const subscription = await registration.pushManager.getSubscription()
-      if (!subscription) {
-        console.log('No push subscription found')
-        return
-      }
-
-      // Unsubscribe from browser
-      await subscription.unsubscribe()
-
-      // Remove from server
-      const response = await fetch('/internal-api/notifications/unsubscribe', {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body: JSON.stringify({
-          endpoint: subscription.endpoint,
-        } satisfies ActionInput<typeof actions.notification.webPush.unsubscribe>),
-      })
-
-      if (!response.ok) {
-        throw new Error(`HTTP error! status: ${response.status}`)
-      }
-
-      console.log('Push unsubscription successful')
-
-      // Reload page to update UI
-      window.location.reload()
-    } catch (error) {
-      console.error('Push unsubscription failed:', error)
-      alert('Failed to unsubscribe from push notifications')
-    }
-  }
-
-  document.addEventListener('astro:page-load', () => {
-    const supportsPushNotifications = checkSupport()
-    if (supportsPushNotifications) {
-      document.querySelectorAll<HTMLElement>('[data-push-notification-banner]').forEach((element) => {
-        element.dataset.supportsPushNotifications = ''
-      })
-    }
-
-    document.querySelectorAll<HTMLElement>('[data-push-action]').forEach((button) => {
-      const vapidPublicKey = button.dataset.vapidPublicKey
-      if (!vapidPublicKey) {
-        console.error('Environment variable VAPID_PUBLIC_KEY is not set')
-        return
-      }
-
-      button.addEventListener('click', async (event) => {
-        event.preventDefault()
-        event.stopPropagation()
-
-        const action = button.dataset.pushAction
-        if (action === 'subscribe') {
-          await subscribeToPush(vapidPublicKey)
-        } else if (action === 'unsubscribe') {
-          await unsubscribeFromPush()
-        }
+          window.location.reload()
+        })
       })
     })
   })

web/src/components/ServerEventsScript.astro

@@ -0,0 +1,108 @@
+---
+if (!Astro.locals.user) return
+---
+
+<script>
+  import type { ServerEventsEvent, SSEEventMap } from '../lib/serverEventsTypes'
+
+  const MAX_RECONNECT_ATTEMPTS = 5
+  const RECONNECT_DELAY = 2_000
+
+  let eventSource: EventSource | null = null
+  let reconnectTimeout: number | null = null
+  let reconnectAttempts = 0
+
+  startServerEventsListener()
+
+  // ------------------------------------------------------------
+
+  export function startServerEventsListener() {
+    stopServerEventsListener()
+
+    try {
+      eventSource = new EventSource('/internal-api/server-events')
+
+      eventSource.onopen = () => {
+        reconnectAttempts = 0
+      }
+
+      eventSource.onmessage = (event) => {
+        try {
+          const data = JSON.parse(event.data as string)
+
+          if (isServerEventsEvent(data)) {
+            const eventType = `sse:${data.type}` as const
+            document.dispatchEvent(
+              new CustomEvent(eventType, { detail: data.data }) as SSEEventMap[typeof eventType]
+            )
+          } else {
+            console.error('Invalid server events event:', data)
+          }
+        } catch (error) {
+          console.error('Error parsing server events data:', error)
+        }
+      }
+
+      eventSource.onerror = (error) => {
+        console.error('Server events error:', error)
+
+        if (eventSource?.readyState === EventSource.CLOSED) {
+          scheduleReconnect()
+        }
+      }
+    } catch (error) {
+      console.error('Failed to start server events listener:', error)
+      scheduleReconnect()
+    }
+  }
+
+  export function stopServerEventsListener() {
+    if (reconnectTimeout) {
+      clearTimeout(reconnectTimeout)
+      reconnectTimeout = null
+    }
+
+    if (eventSource) {
+      eventSource.close()
+      eventSource = null
+      console.info('Disconnected from server events listener')
+    }
+
+    reconnectAttempts = 0
+  }
+
+  function scheduleReconnect() {
+    if (reconnectAttempts >= MAX_RECONNECT_ATTEMPTS) {
+      console.error('Max reconnection attempts reached, giving up')
+      return
+    }
+
+    if (reconnectTimeout) {
+      clearTimeout(reconnectTimeout)
+    }
+
+    const delay = RECONNECT_DELAY * Math.pow(2, reconnectAttempts)
+    reconnectAttempts++
+
+    const delayStr = String(delay)
+    const attemptsStr = String(reconnectAttempts)
+    const maxAttemptsStr = String(MAX_RECONNECT_ATTEMPTS)
+    console.info(`Attempting to reconnect in ${delayStr}ms (attempt ${attemptsStr}/${maxAttemptsStr})`)
+
+    reconnectTimeout = window.setTimeout(() => {
+      startServerEventsListener()
+    }, delay)
+  }
+
+  function isServerEventsEvent(event: unknown): event is ServerEventsEvent {
+    if (typeof event !== 'object' || event === null) return false
+    const e = event as Record<string, unknown>
+    return (
+      'type' in e &&
+      typeof e.type === 'string' &&
+      'data' in e &&
+      typeof e.data === 'object' &&
+      e.data !== null
+    )
+  }
+</script>

web/src/components/ServiceWorkerScript.astro

@@ -0,0 +1,51 @@
+---
+
+---
+
+<script>
+  import { registerSW } from 'virtual:pwa-register'
+
+  const NO_AUTO_RELOAD_ROUTES = ['/account/welcome', '/500', '/404'] as const satisfies `/${string}`[]
+
+  let hasPendingUpdate = false
+
+  const updateSW = registerSW({
+    immediate: true,
+    onRegisteredSW: (_swScriptUrl, registration) => {
+      if (registration) window.__SW_REGISTRATION__ = registration
+
+      document.addEventListener('astro:after-swap', checkAndApplyPendingUpdate, { passive: true })
+      window.addEventListener('popstate', checkAndApplyPendingUpdate, { passive: true })
+    },
+    onNeedRefresh: () => {
+      if (shouldSkipAutoReload()) {
+        void updateSW(false)
+        hasPendingUpdate = true
+        return
+      }
+
+      void updateSW(true)
+    },
+    onRegisterError: (error) => {
+      console.error('Service Worker registration error', error)
+    },
+  })
+
+  function shouldSkipAutoReload() {
+    const currentPath = window.location.pathname
+    const isErrorPage = document.querySelector('[data-is-error-page]') !== null
+
+    return isErrorPage || NO_AUTO_RELOAD_ROUTES.some((route) => currentPath === route)
+  }
+
+  function checkAndApplyPendingUpdate() {
+    if (hasPendingUpdate && !shouldSkipAutoReload()) {
+      hasPendingUpdate = false
+      void updateSW(true)
+    }
+  }
+
+  window.addEventListener('beforeinstallprompt', (event) => {
+    event.preventDefault()
+  })
+</script>

web/src/components/VerificationWarningBanner.astro

@@ -3,6 +3,7 @@ import { Icon } from 'astro-icon/components'
 import { differenceInDays, isPast } from 'date-fns'
 
 import { verificationStatusesByValue } from '../constants/verificationStatus'
+import { verificationStepStatusesByValue } from '../constants/verificationStepStatus'
 import { cn } from '../lib/cn'
 
 import TimeFormatted from './TimeFormatted.astro'
@@ -67,7 +68,7 @@ const wasRecentlyAdded = isPast(listedDate) && differenceInDays(new Date(), list
       </span>
     </div>
   ) : wasRecentlyAdded ? (
-    <div class="mb-3 rounded-md bg-red-900/50 p-2 text-sm text-red-400">
+    <div class="mb-3 rounded-md bg-yellow-900/50 p-2 text-sm text-yellow-400">
       This service was {service.listedAt === null ? 'added ' : 'listed '}{' '}
       <TimeFormatted date={listedDate} daysUntilDate={RECENTLY_ADDED_DAYS} />
       {service.verificationStatus !== 'VERIFICATION_SUCCESS' && ' and it is not verified'}. Proceed with
@@ -98,14 +99,29 @@ const wasRecentlyAdded = isPast(listedDate) && differenceInDays(new Date(), list
 {
   service.verificationStatus !== 'VERIFICATION_FAILED' &&
     service.verificationSteps.some((step) => step.status === 'FAILED') && (
-      <div class="mb-3 flex items-center gap-2 rounded-md bg-red-900/50 p-2 text-sm text-red-400">
+      <a
+        href="#verification"
+        class="mb-3 flex items-center gap-2 rounded-md bg-red-900/50 p-2 text-sm text-red-400 transition-colors hover:bg-red-900/60"
+      >
         <Icon
           name={verificationStatusesByValue.VERIFICATION_FAILED.icon}
           class={cn('size-5', verificationStatusesByValue.VERIFICATION_FAILED.classNames.icon)}
         />
-        <span>
-          This service has failed one or more verification steps. Review the verification details carefully.
-        </span>
-      </div>
+        <span>Some verification steps failed. Please review the details below.</span>
+      </a>
+    )
+}
+
+{
+  service.verificationStatus !== 'VERIFICATION_FAILED' &&
+    !service.verificationSteps.some((step) => step.status === 'FAILED') &&
+    service.verificationSteps.some((step) => step.status === 'WARNING') && (
+      <a
+        href="#verification"
+        class="mb-3 flex items-center gap-2 rounded-md bg-yellow-600/30 p-2 text-sm text-yellow-200 transition-colors hover:bg-yellow-600/40"
+      >
+        <Icon name={verificationStepStatusesByValue.WARNING.icon} class={cn('size-5 text-yellow-400')} />
+        <span>Some verification steps are marked as warnings.</span>
+      </a>
     )
 }

web/src/constants/attributeTypes.ts

@@ -108,3 +108,19 @@ export const {
     },
   ] as const satisfies AttributeTypeInfo<AttributeType>[]
 )
+
+export const baseScoreType = {
+  value: 'BASE_SCORE',
+  slug: 'base-score',
+  label: 'Base score',
+  icon: 'ri:information-line',
+  order: 5,
+  classNames: {
+    container: 'bg-night-500',
+    subcontainer: '',
+    text: 'text-day-200',
+    textLight: '',
+    icon: '',
+    button: '',
+  },
+} as const satisfies AttributeTypeInfo

web/src/constants/commentStatus.ts

@@ -1,15 +1,14 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { CommentStatus } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type CommentStatusInfo<T extends string | null | undefined = string> = {
   id: T
   icon: string
   label: string
-  color: ComponentProps<typeof BadgeSmall>['color']
+  color: TailwindColor
   creativeWorkStatus: string | undefined
 }
 

web/src/constants/commentStatusFilters.ts

@@ -3,14 +3,13 @@ import { transformCase } from '../lib/strings'
 
 import { commentStatusById } from './commentStatus'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { Prisma } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type CommentStatusFilterInfo<T extends string | null | undefined = string> = {
   value: T
   label: string
-  color: ComponentProps<typeof BadgeSmall>['color']
+  color: TailwindColor
   icon: string
   whereClause: Prisma.CommentWhereInput
   classNames: {

web/src/constants/contactMethods.ts

@@ -106,7 +106,7 @@ export const {
       type: 'matrix',
       label: 'Matrix',
       matcher: /^https?:\/\/(?:www\.)?matrix\.to\/#\/(.+)/,
-      formatter: ([, value]) => (value ? `#${value}` : 'Matrix'),
+      formatter: ([, value]) => value ?? 'Matrix',
       icon: 'ri:hashtag',
       urlType: 'url',
     },
@@ -121,7 +121,7 @@ export const {
     {
       type: 'simplex',
       label: 'SimpleX Chat',
-      matcher: /^https?:\/\/(?:www\.)?(simplex\.chat)\//,
+      matcher: /^https?:\/\/(?:www\.)?((?:simplex\.chat|smp\d+\.simplex\.im))\//,
       formatter: () => 'SimpleX Chat',
       icon: 'simplex',
       urlType: 'url',

web/src/constants/eventTypes.ts

@@ -1,9 +1,8 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { EventType } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type EventTypeInfo<T extends string | null | undefined = string> = {
   id: T
@@ -12,9 +11,10 @@ type EventTypeInfo<T extends string | null | undefined = string> = {
   description: string
   classNames: {
     dot: string
+    banner?: string
   }
   icon: string
-  color: ComponentProps<typeof BadgeSmall>['color']
+  color: TailwindColor
   isSolved: boolean
   showBanner: boolean
 }
@@ -35,6 +35,7 @@ export const {
     description: '',
     classNames: {
       dot: 'bg-zinc-700 text-zinc-300 ring-zinc-700/50',
+      banner: 'bg-zinc-900/50 text-zinc-300 hover:bg-zinc-800/60 focus-visible:bg-zinc-800/60',
     },
     icon: 'ri:question-fill',
     color: 'gray',
@@ -49,6 +50,7 @@ export const {
       description: 'Potential issues that users should be aware of',
       classNames: {
         dot: 'bg-amber-900 text-amber-300 ring-amber-900/50',
+        banner: 'bg-yellow-900/50 text-yellow-300 hover:bg-yellow-800/60 focus-visible:bg-yellow-800/60',
       },
       icon: 'ri:alert-fill',
       color: 'yellow',
@@ -62,6 +64,7 @@ export const {
       description: 'A previously reported warning has been solved',
       classNames: {
         dot: 'bg-amber-900 text-amber-300 ring-amber-900/50',
+        banner: 'bg-yellow-900/50 text-yellow-300 hover:bg-yellow-800/60 focus-visible:bg-yellow-800/60',
       },
       icon: 'ri:alert-fill',
       color: 'green',
@@ -75,6 +78,7 @@ export const {
       description: 'Critical issues affecting service functionality',
       classNames: {
         dot: 'bg-red-900 text-red-300 ring-red-900/50',
+        banner: 'bg-red-900/50 text-red-300 hover:bg-red-800/60 focus-visible:bg-red-800/60',
       },
       icon: 'ri:spam-fill',
       color: 'red',
@@ -88,6 +92,7 @@ export const {
       description: 'A previously reported alert has been solved',
       classNames: {
         dot: 'bg-red-900 text-red-300 ring-red-900/50',
+        banner: 'bg-red-900/50 text-red-300 hover:bg-red-800/60 focus-visible:bg-red-800/60',
       },
       icon: 'ri:spam-fill',
       color: 'green',
@@ -101,6 +106,7 @@ export const {
       description: 'General information about the service',
       classNames: {
         dot: 'bg-blue-900 text-blue-300 ring-blue-900/50',
+        banner: 'bg-blue-900/50 text-blue-300 hover:bg-blue-800/60 focus-visible:bg-blue-800/60',
       },
       icon: 'ri:information-fill',
       color: 'sky',
@@ -114,6 +120,7 @@ export const {
       description: 'Regular service update or announcement',
       classNames: {
         dot: 'bg-zinc-700 text-zinc-300 ring-zinc-700/50',
+        banner: 'bg-zinc-900/50 text-zinc-300 hover:bg-zinc-800/60 focus-visible:bg-zinc-800/60',
       },
       icon: 'ri:notification-fill',
       color: 'green',
@@ -127,6 +134,7 @@ export const {
       description: 'Service details were updated on kycnot.me',
       classNames: {
         dot: 'bg-sky-900 text-sky-300 ring-sky-900/50',
+        banner: 'bg-sky-900/50 text-sky-300 hover:bg-sky-800/60 focus-visible:bg-sky-800/60',
       },
       icon: 'ri:pencil-fill',
       color: 'sky',

web/src/constants/kycLevelClarifications.ts

@@ -1,13 +1,16 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type { KycLevelClarification } from '@prisma/client'
+import type { AttributeType, KycLevelClarification } from '@prisma/client'
 
 type KycLevelClarificationInfo<T extends string | null | undefined = string> = {
   value: T
+  slug: string
   label: string
   description: string
   icon: string
+  privacyPoints: number
+  attributeType: AttributeType
 }
 
 export const {
@@ -18,22 +21,31 @@ export const {
   'value',
   (value): KycLevelClarificationInfo<typeof value> => ({
     value,
+    slug: value ? value.toLowerCase().replace('_', '-') : '',
     label: value ? transformCase(value.replace('_', ' '), 'title') : String(value),
     description: '',
     icon: 'ri:question-line',
+    privacyPoints: 0,
+    attributeType: 'INFO',
   }),
   [
     {
       value: 'NONE',
+      slug: 'none',
       label: 'None',
       description: 'No clarification needed.',
       icon: 'ri:file-copy-line',
+      privacyPoints: 0,
+      attributeType: 'INFO',
     },
     {
       value: 'DEPENDS_ON_PARTNERS',
+      slug: 'depends-on-partners',
       label: 'Depends on partners',
       description: 'May vary across partners.',
       icon: 'ri:share-forward-line',
+      privacyPoints: -5,
+      attributeType: 'WARNING',
     },
   ] as const satisfies KycLevelClarificationInfo<KycLevelClarification>[]
 )

web/src/constants/kycLevels.ts

@@ -2,12 +2,16 @@ import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { parseIntWithFallback } from '../lib/numbers'
 import { transformCase } from '../lib/strings'
 
+import type { AttributeType } from '@prisma/client'
+
 type KycLevelInfo<T extends string | null | undefined = string> = {
   id: T
   value: number
   icon: string
   name: string
   description: string
+  privacyPoints: number
+  attributeType: AttributeType
 }
 
 export const {
@@ -22,6 +26,8 @@ export const {
     icon: 'diamond-question',
     name: `KYC ${id ? transformCase(id, 'title') : String(id)}`,
     description: '',
+    privacyPoints: 0,
+    attributeType: 'INFO',
   }),
   [
     {
@@ -30,6 +36,8 @@ export const {
       icon: 'anonymous-mask',
       name: 'Guaranteed no KYC',
       description: 'Terms explicitly state KYC will never be requested.',
+      privacyPoints: 25,
+      attributeType: 'GOOD',
     },
     {
       id: '1',
@@ -37,6 +45,8 @@ export const {
       icon: 'diamond-question',
       name: 'No KYC mention',
       description: 'No mention of current or future KYC requirements.',
+      privacyPoints: 15,
+      attributeType: 'GOOD',
     },
     {
       id: '2',
@@ -45,6 +55,8 @@ export const {
       name: 'KYC on authorities request',
       description:
         'No routine KYC, but may cooperate with authorities, block funds or implement future KYC requirements.',
+      privacyPoints: -5,
+      attributeType: 'WARNING',
     },
     {
       id: '3',
@@ -52,6 +64,8 @@ export const {
       icon: 'gun',
       name: 'Shotgun KYC',
       description: 'May request KYC and block funds based on automated triggers.',
+      privacyPoints: -15,
+      attributeType: 'WARNING',
     },
     {
       id: '4',
@@ -59,6 +73,8 @@ export const {
       icon: 'fingerprint-detailed',
       name: 'Mandatory KYC',
       description: 'Required for key features and can be required arbitrarily at any time.',
+      privacyPoints: -25,
+      attributeType: 'BAD',
     },
   ] as const satisfies KycLevelInfo<'0' | '1' | '2' | '3' | '4'>[]
 )

web/src/constants/notificationTypes.ts

@@ -40,6 +40,11 @@ export const {
       label: 'New comment/rating',
       icon: 'ri:chat-4-line',
     },
+    {
+      id: 'SUGGESTION_CREATED',
+      label: 'New suggestion',
+      icon: 'ri:lightbulb-line',
+    },
     {
       id: 'SUGGESTION_MESSAGE',
       label: 'New message in suggestion',

web/src/constants/serviceSuggestionType.ts

@@ -1,18 +1,18 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { ServiceSuggestionType } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type ServiceSuggestionTypeInfo<T extends string | null | undefined = string> = {
   value: T
   slug: string
   label: string
+  labelAlt: string
   icon: string
   order: number
   default: boolean
-  color: ComponentProps<typeof BadgeSmall>['color']
+  color: TailwindColor
 }
 
 export const {
@@ -34,12 +34,14 @@ export const {
     order: Infinity,
     default: false,
     color: 'zinc',
+    labelAlt: value ? transformCase(value.replace('_', ' '), 'title') : String(value),
   }),
   [
     {
       value: 'CREATE_SERVICE',
       slug: 'create',
       label: 'Create',
+      labelAlt: 'service',
       icon: 'ri:add-line',
       order: 1,
       default: true,
@@ -49,6 +51,7 @@ export const {
       value: 'EDIT_SERVICE',
       slug: 'edit',
       label: 'Edit',
+      labelAlt: 'edit',
       icon: 'ri:pencil-line',
       order: 2,
       default: false,

web/src/constants/serviceUserRoles.ts

@@ -1,9 +1,8 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { ServiceUserRole } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type ServiceUserRoleInfo<T extends string | null | undefined = string> = {
   value: T
@@ -11,7 +10,7 @@ type ServiceUserRoleInfo<T extends string | null | undefined = string> = {
   label: string
   icon: string
   order: number
-  color: NonNullable<ComponentProps<typeof BadgeSmall>['color']>
+  color: NonNullable<TailwindColor>
 }
 
 export const {

web/src/constants/verificationStepStatus.ts

@@ -1,15 +1,14 @@
 import { makeHelpersForOptions } from '../lib/makeHelpersForOptions'
 import { transformCase } from '../lib/strings'
 
-import type BadgeSmall from '../components/BadgeSmall.astro'
+import type { TailwindColor } from '../lib/colors'
 import type { VerificationStepStatus } from '@prisma/client'
-import type { ComponentProps } from 'astro/types'
 
 type VerificationStepStatusInfo<T extends string | null | undefined = string> = {
   value: T
   label: string
   icon: string
-  color: ComponentProps<typeof BadgeSmall>['color']
+  color: TailwindColor
 }
 
 export const {
@@ -43,6 +42,12 @@ export const {
       icon: 'ri:alert-line',
       color: 'red',
     },
+    {
+      value: 'WARNING',
+      label: 'Warning',
+      icon: 'ri:alert-line',
+      color: 'yellow',
+    },
     {
       value: 'PENDING',
       label: 'Pending',

web/src/env.d.ts

@@ -1,6 +1,7 @@
+/* eslint-disable @typescript-eslint/consistent-type-definitions */
+
 import type { ErrorBanners } from './lib/errorBanners'
 import type { KarmaUnlocks } from './lib/karmaUnlocks'
-/* eslint-disable @typescript-eslint/consistent-type-definitions */
 import type { Prisma } from '@prisma/client'
 import type * as htmx from 'htmx.org'
 
@@ -16,6 +17,7 @@ declare global {
 
   interface Window {
     htmx?: typeof htmx
+    __SW_REGISTRATION__?: ServiceWorkerRegistration
   }
 
   namespace PrismaJson {

web/src/layouts/BaseLayout.astro

@@ -16,7 +16,7 @@ type Props = ComponentProps<typeof BaseHead> & {
   children: AstroChildren
   errors?: string[]
   success?: string[]
-  className?: {
+  classNames?: {
     body?: string
     main?: string
     footer?: string
@@ -31,14 +31,16 @@ type Props = ComponentProps<typeof BaseHead> & {
     | 'max-w-screen-sm'
     | 'max-w-screen-xl'
     | 'max-w-screen-xs'
+  isErrorPage?: boolean
 }
 
 const {
   errors = [],
   success = [],
-  className,
+  classNames,
   widthClassName = 'max-w-screen-2xl',
   showSplashText,
+  isErrorPage,
   ...baseHeadProps
 } = Astro.props
 
@@ -77,7 +79,10 @@ const announcement = await Astro.locals.banners.try(
     <meta name="viewport" content="width=device-width, initial-scale=1" />
     <BaseHead {...baseHeadProps} />
   </head>
-  <body class={cn('bg-night-700 text-day-300 flex min-h-dvh flex-col *:shrink-0', className?.body)}>
+  <body
+    class={cn('bg-night-700 text-day-300 flex min-h-dvh flex-col *:shrink-0', classNames?.body)}
+    data-is-error-page={isErrorPage}
+  >
     {announcement && <AnnouncementBanner announcement={announcement} transition:name="header-announcement" />}
     <Header
       classNames={{
@@ -116,7 +121,7 @@ const announcement = await Astro.locals.banners.try(
     <main
       class={cn(
         'container mx-auto mt-4 mb-12 grow px-4',
-        className?.main,
+        classNames?.main,
         (widthClassName === 'max-w-none' || widthClassName === 'max-w-screen-2xl') && 'lg:px-8 2xl:px-12',
         widthClassName
       )}
@@ -124,6 +129,6 @@ const announcement = await Astro.locals.banners.try(
       <slot />
     </main>
 
-    <Footer class={className?.footer} />
+    <Footer class={classNames?.footer} />
   </body>
 </html>

web/src/layouts/MarkdownLayout.astro

@@ -1,5 +1,6 @@
 ---
 import { makeOgImageUrl, type OgImageAllTemplatesWithProps } from '../components/OgImage'
+import TimeFormatted from '../components/TimeFormatted.astro'
 import { KYCNOTME_SCHEMA_MINI } from '../lib/schema'
 
 import BaseLayout from './BaseLayout.astro'
@@ -13,21 +14,19 @@ type Props = ComponentProps<typeof BaseLayout> &
   MarkdownLayoutProps<{
     children: AstroChildren
     title: string
-    author: string
-    pubDate: string
+    updatedAt?: string
     description: string
     icon?: string
   }>
 
 const { frontmatter, schemas, ...baseLayoutProps } = Astro.props
-const publishDate = frontmatter.pubDate ? new Date(frontmatter.pubDate) : null
+const publishDate = frontmatter.updatedAt ? new Date(frontmatter.updatedAt) : null
 const ogImageTemplateData = {
   template: 'generic',
   title: frontmatter.title,
   description: frontmatter.description,
   icon: frontmatter.icon,
 } satisfies OgImageAllTemplatesWithProps
-const weAreAuthor = frontmatter.author.toLowerCase().trim() === 'kycnot.me'
 ---
 
 <BaseLayout
@@ -44,14 +43,7 @@ const weAreAuthor = frontmatter.author.toLowerCase().trim() === 'kycnot.me'
       datePublished: publishDate?.toISOString(),
       dateModified: publishDate?.toISOString(),
       image: makeOgImageUrl(ogImageTemplateData, Astro.url),
-      author: frontmatter.author
-        ? weAreAuthor
-          ? KYCNOTME_SCHEMA_MINI
-          : {
-              '@type': 'Person',
-              name: frontmatter.author,
-            }
-        : undefined,
+      author: KYCNOTME_SCHEMA_MINI,
       publisher: KYCNOTME_SCHEMA_MINI,
       mainEntityOfPage: {
         '@type': 'WebPage',
@@ -61,15 +53,26 @@ const weAreAuthor = frontmatter.author.toLowerCase().trim() === 'kycnot.me'
     ...(schemas ?? []),
   ]}
 >
+  <div class="bg-dots-fade absolute inset-x-0 top-0 -z-1 h-128 opacity-15"></div>
   <div
     class="prose prose-invert prose-headings:text-green-400 prose-h1:text-[2.5rem] prose-h1:font-bold prose-h1:my-8 prose-h1:drop-shadow-[0_0_10px_rgba(0,255,0,0.3)] prose-h2:text-green-500 prose-h2:text-[1.8rem] prose-h2:font-semibold prose-h2:my-6 prose-h2:border-b prose-h2:border-green-900 prose-h2:pb-1 prose-h3:text-green-600 prose-h3:text-[1.4rem] prose-h3:font-semibold prose-h3:my-4 prose-h4:text-green-700 prose-h4:text-[1.2rem] prose-h4:font-semibold prose-h4:my-3 prose-strong:font-semibold prose-strong:drop-shadow-[0_0_5px_rgba(0,255,0,0.2)] prose-p:text-gray-300 prose-p:my-4 prose-p:leading-relaxed prose-a:text-green-400 prose-a:no-underline prose-a:transition-all prose-a:border-b prose-a:border-green-900 prose-a:hover:text-green-400 prose-a:hover:drop-shadow-[0_0_8px_rgba(0,255,0,0.4)] prose-a:hover:border-green-400 prose-ul:text-gray-300 prose-ol:text-gray-300 prose-li:my-2 prose-li:leading-relaxed mx-auto"
   >
-    <h1>{frontmatter.title}</h1>
-    <p class="text-gray-500">
-      {frontmatter.author && `by ${frontmatter.author}`}
-      {frontmatter.pubDate && ` | ${new Date(frontmatter.pubDate).toLocaleDateString()}`}
+    <h1 class="mb-0!">{frontmatter.title}</h1>
+    <p class="mt-2! opacity-70">
+      Updated {frontmatter.updatedAt && <TimeFormatted date={new Date(frontmatter.updatedAt)} />}
     </p>
 
     <slot />
   </div>
 </BaseLayout>
+
+<style>
+  .bg-dots-fade {
+    background:
+      radial-gradient(closest-side, #777, #fff) 0/ 1em 1em space,
+      linear-gradient(to bottom, #888, #fff);
+    background-blend-mode: multiply;
+    mix-blend-mode: multiply;
+    filter: contrast(21);
+  }
+</style>

web/src/layouts/MiniLayout.astro

@@ -9,20 +9,30 @@ import type { ComponentProps } from 'astro/types'
 
 type Props = Omit<ComponentProps<typeof BaseLayout>, 'widthClassName'> & {
   layoutHeader: { icon: string; title: string; subtitle?: string }
+  size?: 'md' | 'xs'
 }
 
-const { layoutHeader, ...baseLayoutProps } = Astro.props
+const { layoutHeader, size = 'xs', ...baseLayoutProps } = Astro.props
 ---
 
 <BaseLayout
-  className={{
-    ...baseLayoutProps.className,
-    main: cn('xs:items-center-safe flex grow flex-col justify-center-safe', baseLayoutProps.className?.main),
+  classNames={{
+    main: cn(
+      'flex grow flex-col justify-center-safe',
+      {
+        'xs:items-center-safe': size === 'xs',
+        'md:items-center-safe': size === 'md',
+      },
+      baseLayoutProps.classNames?.main
+    ),
   }}
   {...baseLayoutProps}
 >
   <div
-    class="bg-night-800 border-night-500 xs:block xs:max-w-screen-xs contents w-full rounded-xl border p-8"
+    class={cn('bg-night-800 border-night-500 contents w-full rounded-xl border p-8', {
+      'xs:block xs:max-w-screen-xs': size === 'xs',
+      'md:block md:max-w-screen-md': size === 'md',
+    })}
   >
     <div class="bg-day-200 mx-auto flex size-12 items-center justify-center rounded-lg">
       <Icon name={layoutHeader.icon} class="text-night-800 size-8" />
@@ -31,14 +41,24 @@ const { layoutHeader, ...baseLayoutProps } = Astro.props
     <h1
       class={cn(
         'font-title text-day-200 mt-1 text-center text-3xl font-semibold',
-        !layoutHeader.subtitle && 'xs:mb-8 mb-6'
+        !layoutHeader.subtitle && {
+          'xs:mb-8 mb-6': size === 'xs',
+          'mb-6 md:mb-8': size === 'md',
+        }
       )}
     >
       {layoutHeader.title}
     </h1>
     {
       !!layoutHeader.subtitle && (
-        <p class="text-day-500 xs:mb-8 mt-1 mb-6 text-center">{layoutHeader.subtitle}</p>
+        <p
+          class={cn('text-day-500 mt-1 mb-6 text-center', {
+            'xs:mb-8': size === 'xs',
+            'md:mb-8': size === 'md',
+          })}
+        >
+          {layoutHeader.subtitle}
+        </p>
       )
     }
 

web/src/lib/attributes.ts

@@ -2,6 +2,8 @@ import { orderBy } from 'lodash-es'
 
 import { getAttributeCategoryInfo } from '../constants/attributeCategories'
 import { getAttributeTypeInfo } from '../constants/attributeTypes'
+import { kycLevelClarifications } from '../constants/kycLevelClarifications'
+import { kycLevels } from '../constants/kycLevels'
 import { serviceVisibilitiesById } from '../constants/serviceVisibility'
 import { READ_MORE_SENTENCE_LINK, verificationStatusesByValue } from '../constants/verificationStatus'
 
@@ -9,6 +11,271 @@ import { formatDateShort } from './timeAgo'
 
 import type { Prisma } from '@prisma/client'
 
+type NonDbAttribute = Prisma.AttributeGetPayload<{
+  select: {
+    title: true
+    type: true
+    category: true
+    description: true
+    privacyPoints: true
+    trustPoints: true
+  }
+}> & {
+  slug: string
+  links: {
+    url: string
+    label: string
+    icon: string
+  }[]
+}
+
+type NonDbAttributeFull = NonDbAttribute & {
+  customize: (
+    service: Prisma.ServiceGetPayload<{
+      select: {
+        verificationStatus: true
+        serviceVisibility: true
+        isRecentlyListed: true
+        listedAt: true
+        createdAt: true
+        tosReviewAt: true
+        tosReview: true
+        onionUrls: true
+        i2pUrls: true
+        acceptedCurrencies: true
+        kycLevel: true
+        kycLevelClarification: true
+      }
+    }>
+  ) => Partial<Pick<NonDbAttribute, 'description' | 'title'>> & {
+    show: boolean
+  }
+}
+
+export const nonDbAttributes: NonDbAttributeFull[] = [
+  {
+    slug: 'verification-verified',
+    title: 'Verified',
+    type: 'GOOD',
+    category: 'TRUST',
+    description: `${verificationStatusesByValue.VERIFICATION_SUCCESS.description} ${READ_MORE_SENTENCE_LINK}`,
+    privacyPoints: verificationStatusesByValue.VERIFICATION_SUCCESS.privacyPoints,
+    trustPoints: verificationStatusesByValue.VERIFICATION_SUCCESS.trustPoints,
+    links: [
+      {
+        url: '/?verification=verified',
+        label: 'Search with this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.verificationStatus === 'VERIFICATION_SUCCESS',
+      description: `${verificationStatusesByValue.VERIFICATION_SUCCESS.description} ${READ_MORE_SENTENCE_LINK}\n\nCheck out the [proof](#verification).`,
+    }),
+  },
+  {
+    slug: 'verification-approved',
+    title: 'Approved',
+    type: 'INFO',
+    category: 'TRUST',
+    description: `${verificationStatusesByValue.APPROVED.description} ${READ_MORE_SENTENCE_LINK}`,
+    privacyPoints: verificationStatusesByValue.APPROVED.privacyPoints,
+    trustPoints: verificationStatusesByValue.APPROVED.trustPoints,
+    links: [
+      {
+        url: '/?verification=verified&verification=approved',
+        label: 'Search with this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.verificationStatus === 'APPROVED',
+    }),
+  },
+  {
+    slug: 'verification-community-contributed',
+    title: 'Community contributed',
+    type: 'WARNING',
+    category: 'TRUST',
+    description: `${verificationStatusesByValue.COMMUNITY_CONTRIBUTED.description} ${READ_MORE_SENTENCE_LINK}`,
+    privacyPoints: verificationStatusesByValue.COMMUNITY_CONTRIBUTED.privacyPoints,
+    trustPoints: verificationStatusesByValue.COMMUNITY_CONTRIBUTED.trustPoints,
+    links: [
+      {
+        url: '/?verification=community',
+        label: 'With this',
+        icon: 'ri:search-line',
+      },
+      {
+        url: '/?verification=verified&verification=approved',
+        label: 'Without this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.verificationStatus === 'COMMUNITY_CONTRIBUTED',
+    }),
+  },
+  {
+    slug: 'verification-scam',
+    title: 'Is SCAM',
+    type: 'BAD',
+    category: 'TRUST',
+    description: `${verificationStatusesByValue.VERIFICATION_FAILED.description} ${READ_MORE_SENTENCE_LINK}`,
+    privacyPoints: verificationStatusesByValue.VERIFICATION_FAILED.privacyPoints,
+    trustPoints: verificationStatusesByValue.VERIFICATION_FAILED.trustPoints,
+    links: [
+      {
+        url: '/?verification=scam',
+        label: 'With this',
+        icon: 'ri:search-line',
+      },
+      {
+        url: '/?verification=verified&verification=approved',
+        label: 'Without this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.verificationStatus === 'VERIFICATION_FAILED',
+      description: `${verificationStatusesByValue.VERIFICATION_FAILED.description} ${READ_MORE_SENTENCE_LINK}\n\nCheck out the [proof](#verification).`,
+    }),
+  },
+  ...kycLevels.map<NonDbAttributeFull>((kycLevel) => ({
+    slug: `kyc-level-${kycLevel.id}`,
+    title: kycLevel.name,
+    type: kycLevel.attributeType,
+    category: 'PRIVACY',
+    description: kycLevel.description,
+    privacyPoints: kycLevel.privacyPoints,
+    trustPoints: 0,
+    links: [
+      {
+        url: `/?max-kyc=${kycLevel.id}`,
+        label: 'With this or better',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.kycLevel === kycLevel.value,
+    }),
+  })),
+  ...kycLevelClarifications
+    .filter((clarification) => clarification.value !== 'NONE')
+    .map<NonDbAttributeFull>((clarification) => ({
+      slug: `kyc-clarification-${clarification.slug}`,
+      title: `KYC ${clarification.label}`,
+      type: clarification.attributeType,
+      category: 'PRIVACY',
+      description: clarification.description,
+      privacyPoints: clarification.privacyPoints,
+      trustPoints: 0,
+      links: [],
+      customize: (service) => ({
+        show: service.kycLevelClarification === clarification.value,
+      }),
+    })),
+  {
+    slug: 'archived',
+    title: serviceVisibilitiesById.ARCHIVED.label,
+    type: 'WARNING',
+    category: 'TRUST',
+    description: serviceVisibilitiesById.ARCHIVED.longDescription,
+    privacyPoints: 0,
+    trustPoints: 0,
+    links: [],
+    customize: (service) => ({
+      show: service.serviceVisibility === 'ARCHIVED',
+    }),
+  },
+  {
+    slug: 'recently-listed',
+    title: 'Recently listed',
+    type: 'WARNING',
+    category: 'TRUST',
+    description: 'Listed on KYCnot.me less than 15 days ago. Proceed with caution.',
+    privacyPoints: 0,
+    trustPoints: -5,
+    links: [],
+    customize: (service) => ({
+      show: service.isRecentlyListed,
+      description: `Listed on KYCnot.me ${formatDateShort(service.listedAt ?? service.createdAt)}. Proceed with caution.`,
+    }),
+  },
+  {
+    slug: 'cannot-analyse-tos',
+    title: "Can't analyse ToS",
+    type: 'WARNING',
+    category: 'TRUST',
+    description:
+      'The Terms of Service page is not analyable by our AI. Possible reasons may be: captchas, client side rendering, DDoS protections, or non-text format.',
+    privacyPoints: 0,
+    trustPoints: -3,
+    links: [],
+    customize: (service) => ({
+      show: service.tosReviewAt !== null && service.tosReview === null,
+    }),
+  },
+  {
+    slug: 'has-onion-urls',
+    title: 'Has Onion URLs',
+    type: 'GOOD',
+    category: 'PRIVACY',
+    description: 'Onion (Tor) URLs enhance privacy and anonymity.',
+    privacyPoints: 5,
+    trustPoints: 0,
+    links: [
+      {
+        url: '/?onion=true',
+        label: 'Search with this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.onionUrls.length > 0,
+    }),
+  },
+  {
+    slug: 'has-i2p-urls',
+    title: 'Has I2P URLs',
+    type: 'GOOD',
+    category: 'PRIVACY',
+    description: 'I2P URLs enhance privacy and anonymity.',
+    privacyPoints: 5,
+    trustPoints: 0,
+    links: [
+      {
+        url: '/?i2p=true',
+        label: 'Search with this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.i2pUrls.length > 0,
+    }),
+  },
+  {
+    slug: 'monero-accepted',
+    title: 'Accepts Monero',
+    type: 'GOOD',
+    category: 'PRIVACY',
+    description:
+      'This service accepts Monero, a privacy-focused cryptocurrency that provides enhanced anonymity.',
+    privacyPoints: 5,
+    trustPoints: 0,
+    links: [
+      {
+        url: '/?currency=monero',
+        label: 'Search with this',
+        icon: 'ri:search-line',
+      },
+    ],
+    customize: (service) => ({
+      show: service.acceptedCurrencies.includes('MONERO'),
+    }),
+  },
+]
+
 export function sortAttributes<
   T extends Prisma.AttributeGetPayload<{
     select: {
@@ -34,131 +301,15 @@ export function sortAttributes<
 }
 
 export function makeNonDbAttributes(
-  service: Prisma.ServiceGetPayload<{
-    select: {
-      verificationStatus: true
-      serviceVisibility: true
-      isRecentlyListed: true
-      listedAt: true
-      createdAt: true
-    }
-  }>,
+  service: Parameters<NonDbAttributeFull['customize']>[0],
   { filter = false }: { filter?: boolean } = {}
 ) {
-  const nonDbAttributes: (Prisma.AttributeGetPayload<{
-    select: {
-      title: true
-      type: true
-      category: true
-      description: true
-      privacyPoints: true
-      trustPoints: true
-    }
-  }> & {
-    show: boolean
-    links: {
-      url: string
-      label: string
-      icon: string
-    }[]
-  })[] = [
-    {
-      title: 'Verified',
-      show: service.verificationStatus === 'VERIFICATION_SUCCESS',
-      type: 'GOOD',
-      category: 'TRUST',
-      description: `${verificationStatusesByValue.VERIFICATION_SUCCESS.description} ${READ_MORE_SENTENCE_LINK}\n\nCheck out the [proof](#verification).`,
-      privacyPoints: verificationStatusesByValue.VERIFICATION_SUCCESS.privacyPoints,
-      trustPoints: verificationStatusesByValue.VERIFICATION_SUCCESS.trustPoints,
-      links: [
-        {
-          url: '/?verification=verified',
-          label: 'Search with this',
-          icon: 'ri:search-line',
-        },
-      ],
-    },
-    {
-      title: 'Approved',
-      show: service.verificationStatus === 'APPROVED',
-      type: 'INFO',
-      category: 'TRUST',
-      description: `${verificationStatusesByValue.APPROVED.description} ${READ_MORE_SENTENCE_LINK}`,
-      privacyPoints: verificationStatusesByValue.APPROVED.privacyPoints,
-      trustPoints: verificationStatusesByValue.APPROVED.trustPoints,
-      links: [
-        {
-          url: '/?verification=verified&verification=approved',
-          label: 'Search with this',
-          icon: 'ri:search-line',
-        },
-      ],
-    },
-    {
-      title: 'Community contributed',
-      show: service.verificationStatus === 'COMMUNITY_CONTRIBUTED',
-      type: 'WARNING',
-      category: 'TRUST',
-      description: `${verificationStatusesByValue.COMMUNITY_CONTRIBUTED.description} ${READ_MORE_SENTENCE_LINK}`,
-      privacyPoints: verificationStatusesByValue.COMMUNITY_CONTRIBUTED.privacyPoints,
-      trustPoints: verificationStatusesByValue.COMMUNITY_CONTRIBUTED.trustPoints,
-      links: [
-        {
-          url: '/?verification=community',
-          label: 'With this',
-          icon: 'ri:search-line',
-        },
-        {
-          url: '/?verification=verified&verification=approved',
-          label: 'Without this',
-          icon: 'ri:search-line',
-        },
-      ],
-    },
-    {
-      title: 'Is SCAM',
-      show: service.verificationStatus === 'VERIFICATION_FAILED',
-      type: 'BAD',
-      category: 'TRUST',
-      description: `${verificationStatusesByValue.VERIFICATION_FAILED.description} ${READ_MORE_SENTENCE_LINK}\n\nCheck out the [proof](#verification).`,
-      privacyPoints: verificationStatusesByValue.VERIFICATION_FAILED.privacyPoints,
-      trustPoints: verificationStatusesByValue.VERIFICATION_FAILED.trustPoints,
-      links: [
-        {
-          url: '/?verification=scam',
-          label: 'With this',
-          icon: 'ri:search-line',
-        },
-        {
-          url: '/?verification=verified&verification=approved',
-          label: 'Without this',
-          icon: 'ri:search-line',
-        },
-      ],
-    },
-    {
-      title: serviceVisibilitiesById.ARCHIVED.label,
-      show: service.serviceVisibility === 'ARCHIVED',
-      type: 'WARNING',
-      category: 'TRUST',
-      description: serviceVisibilitiesById.ARCHIVED.longDescription,
-      privacyPoints: 0,
-      trustPoints: 0,
-      links: [],
-    },
-    {
-      title: 'Recently listed',
-      show: service.isRecentlyListed,
-      type: 'WARNING',
-      category: 'TRUST',
-      description: `Listed on KYCnot.me ${formatDateShort(service.listedAt ?? service.createdAt)}. Proceed with caution.`,
-      privacyPoints: 0,
-      trustPoints: -5,
-      links: [],
-    },
-  ]
+  const attributes = nonDbAttributes.map(({ customize, ...attribute }) => ({
+    ...attribute,
+    ...customize(service),
+  }))
 
-  if (filter) return nonDbAttributes.filter(({ show }) => show)
+  if (filter) return attributes.filter(({ show }) => show)
 
-  return nonDbAttributes
+  return attributes
 }

web/src/lib/client/browserNotifications.ts

@@ -0,0 +1,60 @@
+import { typedLocalStorage } from '../localstorage'
+
+type SafeResult = { success: false; error: string } | { success: true; error?: undefined }
+
+export function supportsBrowserNotifications() {
+  return 'Notification' in window
+}
+
+export function isBrowserNotificationsEnabled() {
+  return (
+    supportsBrowserNotifications() &&
+    Notification.permission === 'granted' &&
+    typedLocalStorage.browserNotificationsEnabled.get()
+  )
+}
+
+export async function enableBrowserNotifications(): Promise<SafeResult> {
+  try {
+    if (!supportsBrowserNotifications()) {
+      return { success: false, error: 'Browser notifications are not supported' }
+    }
+
+    const permission = await Notification.requestPermission()
+    if (permission !== 'granted') {
+      return { success: false, error: 'Notification permission denied' }
+    }
+
+    typedLocalStorage.browserNotificationsEnabled.set(true)
+    return { success: true }
+  } catch (error) {
+    console.error('Browser notification setup failed:', error)
+    const errorMessage = error instanceof Error ? error.message : String(error)
+    return { success: false, error: `Browser notification setup failed: ${errorMessage}` }
+  }
+}
+
+export function disableBrowserNotifications(): SafeResult {
+  try {
+    typedLocalStorage.browserNotificationsEnabled.set(false)
+    return { success: true }
+  } catch (error) {
+    console.error('Browser notification disable failed:', error)
+    const errorMessage = error instanceof Error ? error.message : String(error)
+    return { success: false, error: `Browser notification disable failed: ${errorMessage}` }
+  }
+}
+
+export function showBrowserNotification(title: string, options?: NotificationOptions) {
+  if (!isBrowserNotificationsEnabled()) {
+    console.warn('Browser notifications are not enabled')
+    return null
+  }
+
+  try {
+    return new Notification(title, options)
+  } catch (error) {
+    console.error('Failed to show browser notification:', error)
+    return null
+  }
+}

web/src/lib/client/clientPushNotifications.ts

@@ -0,0 +1,187 @@
+/// <reference types="vite/client" />
+
+import type { ActionInput } from '../astroActions'
+import type { actions } from 'astro:actions'
+
+type ServerSubscription = {
+  endpoint: string
+  userAgent: string | null
+}
+
+export type SafeResult =
+  | {
+      success: false
+      error: string
+    }
+  | {
+      success: true
+      error?: undefined
+    }
+
+export async function subscribeToPushNotifications(vapidPublicKey: string): Promise<SafeResult> {
+  try {
+    if (!supportsPushNotifications()) {
+      return { success: false, error: 'Push notifications are not supported in this browser' }
+    }
+
+    const registration = await getServiceWorkerRegistration()
+    if (!registration) return { success: false, error: 'Service worker not available' }
+
+    const permission = await Notification.requestPermission()
+    if (permission !== 'granted') {
+      return { success: false, error: 'Notification permission denied' }
+    }
+
+    const subscription = await registration.pushManager.subscribe({
+      userVisibleOnly: true,
+      applicationServerKey: urlB64ToUint8Array(vapidPublicKey),
+    })
+
+    const p256dh = subscription.getKey('p256dh')
+    const auth = subscription.getKey('auth')
+
+    const response = await fetch('/internal-api/notifications/subscribe', {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({
+        endpoint: subscription.endpoint,
+        userAgent: navigator.userAgent,
+        p256dhKey: p256dh ? btoa(String.fromCharCode(...new Uint8Array(p256dh))) : '',
+        authKey: auth ? btoa(String.fromCharCode(...new Uint8Array(auth))) : '',
+      } satisfies ActionInput<typeof actions.notification.webPush.subscribe>),
+    })
+
+    if (!response.ok) {
+      const errorText = await response.text()
+      return { success: false, error: `Server error: ${response.statusText} ${errorText}` }
+    }
+
+    return { success: true }
+  } catch (error) {
+    console.error('Push subscription failed:', error)
+    const errorMessage = error instanceof Error ? error.message : String(error)
+    return { success: false, error: `Subscription failed: ${errorMessage}` }
+  }
+}
+
+export async function unsubscribeFromPushNotifications(): Promise<SafeResult> {
+  try {
+    const registration = await getServiceWorkerRegistration()
+    if (!registration) return { success: false, error: 'Service worker not available' }
+
+    const subscription = await registration.pushManager.getSubscription()
+    if (!subscription) return { success: false, error: 'No push subscription found' }
+
+    const unsubscribed = await subscription.unsubscribe()
+    if (!unsubscribed) return { success: false, error: 'Failed to unsubscribe from browser' }
+
+    const response = await fetch('/internal-api/notifications/unsubscribe', {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({
+        endpoint: subscription.endpoint,
+      } satisfies ActionInput<typeof actions.notification.webPush.unsubscribe>),
+    })
+
+    if (!response.ok) {
+      const errorText = await response.text()
+      return { success: false, error: `Server error: ${response.statusText} ${errorText}` }
+    }
+
+    return { success: true }
+  } catch (error) {
+    console.error('Push unsubscription failed:', error)
+    const errorMessage = error instanceof Error ? error.message : String(error)
+    return { success: false, error: `Unsubscription failed: ${errorMessage}` }
+  }
+}
+
+export function supportsPushNotifications() {
+  const isSecure =
+    window.isSecureContext ||
+    window.location.hostname === 'localhost' ||
+    window.location.hostname === '127.0.0.1'
+
+  return isSecure && 'serviceWorker' in navigator && 'PushManager' in window && 'Notification' in window
+}
+
+async function getServiceWorkerRegistration() {
+  try {
+    if (window.__SW_REGISTRATION__) return window.__SW_REGISTRATION__
+    return (await navigator.serviceWorker.getRegistration()) ?? null
+  } catch (error) {
+    console.error('Error getting service worker registration:', error)
+    return null
+  }
+}
+
+async function getCurrentSubscription() {
+  try {
+    const registration = await getServiceWorkerRegistration()
+    if (!registration) return null
+
+    return await registration.pushManager.getSubscription()
+  } catch (error) {
+    console.error('Error getting current push subscription:', error)
+    return null
+  }
+}
+
+export async function isCurrentDeviceSubscribed(serverSubscriptions: ServerSubscription[]) {
+  const currentSubscription = await getCurrentSubscription()
+  if (!currentSubscription || serverSubscriptions.length === 0) return false
+
+  const currentEndpoint = currentSubscription.endpoint
+  const currentUserAgent = navigator.userAgent
+
+  return serverSubscriptions.some(
+    (sub) =>
+      sub.endpoint === currentEndpoint && (sub.userAgent === currentUserAgent || sub.userAgent === null)
+  )
+}
+
+function urlB64ToUint8Array(base64String: string) {
+  const cleaned = base64String.trim().replace(/\s+/g, '').replace(/-/g, '+').replace(/_/g, '/')
+  const padding = '='.repeat((4 - (cleaned.length % 4)) % 4)
+  const base64 = cleaned + padding
+
+  const rawData = window.atob(base64)
+  const outputArray = new Uint8Array(rawData.length)
+
+  for (let i = 0; i < rawData.length; ++i) {
+    outputArray[i] = rawData.charCodeAt(i)
+  }
+  return outputArray
+}
+
+export function parsePushSubscriptions(subscriptionsAsString: string | undefined) {
+  try {
+    if (typeof subscriptionsAsString !== 'string') {
+      console.error('Push subscriptions are not a string')
+      return []
+    }
+
+    const subscriptions = JSON.parse(subscriptionsAsString)
+
+    if (!Array.isArray(subscriptions)) {
+      console.error('Push subscriptions are not an array')
+      return []
+    }
+
+    if (!subscriptions.every(isServerSubscription)) {
+      console.error('Push subscriptions are not valid')
+      return subscriptions.filter(isServerSubscription)
+    }
+
+    return subscriptions
+  } catch (error) {
+    console.error('Failed to parse push subscriptions:', error)
+    return []
+  }
+}
+
+function isServerSubscription(subscription: unknown): subscription is ServerSubscription {
+  if (typeof subscription !== 'object' || subscription === null) return false
+  const s = subscription as Record<string, unknown>
+  return typeof s.endpoint === 'string' && (typeof s.userAgent === 'string' || s.userAgent === null)
+}

web/src/lib/colors.ts

@@ -0,0 +1,25 @@
+export type TailwindColor =
+  | 'amber'
+  | 'black'
+  | 'blue'
+  | 'cyan'
+  | 'emerald'
+  | 'fuchsia'
+  | 'gray'
+  | 'green'
+  | 'indigo'
+  | 'lime'
+  | 'neutral'
+  | 'orange'
+  | 'pink'
+  | 'purple'
+  | 'red'
+  | 'rose'
+  | 'sky'
+  | 'slate'
+  | 'stone'
+  | 'teal'
+  | 'violet'
+  | 'white'
+  | 'yellow'
+  | 'zinc'

web/src/lib/feeds.ts

@@ -0,0 +1,323 @@
+import { prisma } from './prisma'
+
+import type { Prisma } from '@prisma/client'
+
+type SafeResult<T> =
+  | {
+      success: false
+      error: { message: string; responseInit: ResponseInit }
+      data?: undefined
+    }
+  | {
+      success: true
+      error?: undefined
+      data: T
+    }
+
+export const takeCounts = {
+  serviceComments: 100,
+  serviceEvents: 100,
+  allEvents: 100,
+  userNotifications: 50,
+} as const satisfies Record<string, number>
+
+const serviceSelect = {
+  id: true,
+  name: true,
+  slug: true,
+} as const satisfies Prisma.ServiceSelect
+
+export async function getService(slug: string | undefined): Promise<
+  SafeResult<{
+    service: Prisma.ServiceGetPayload<{ select: typeof serviceSelect }>
+  }>
+> {
+  if (!slug || typeof slug !== 'string') {
+    return { success: false, error: { message: 'Invalid slug', responseInit: { status: 400 } } }
+  }
+
+  const service =
+    (await prisma.service.findFirst({
+      where: {
+        listedAt: { lte: new Date() },
+        serviceVisibility: { in: ['PUBLIC', 'ARCHIVED', 'UNLISTED'] },
+        slug,
+      },
+      select: serviceSelect,
+    })) ??
+    (await prisma.service.findFirst({
+      where: {
+        listedAt: { lte: new Date() },
+        serviceVisibility: { in: ['PUBLIC', 'ARCHIVED', 'UNLISTED'] },
+        previousSlugs: { has: slug },
+      },
+      select: serviceSelect,
+    }))
+
+  if (!service) {
+    return { success: false, error: { message: 'Service not found', responseInit: { status: 404 } } }
+  }
+
+  return { success: true, data: { service } }
+}
+
+const serviceCommentSelect = {
+  id: true,
+  content: true,
+  rating: true,
+  ratingActive: true,
+  createdAt: true,
+  updatedAt: true,
+  author: {
+    select: {
+      name: true,
+      displayName: true,
+      verified: true,
+      admin: true,
+      moderator: true,
+      spammer: true,
+      serviceAffiliations: {
+        select: {
+          role: true,
+          service: { select: { name: true, slug: true } },
+        },
+      },
+    },
+  },
+} as const satisfies Prisma.CommentSelect
+
+export async function getCommentsForService(slug: string | undefined): Promise<
+  SafeResult<{
+    service: Prisma.ServiceGetPayload<{ select: typeof serviceSelect }>
+    comments: Prisma.CommentGetPayload<{ select: typeof serviceCommentSelect }>[]
+  }>
+> {
+  const result = await getService(slug)
+  if (!result.success) return result
+  const { service } = result.data
+
+  const comments = await prisma.comment.findMany({
+    where: {
+      serviceId: service.id,
+      status: { in: ['APPROVED', 'VERIFIED'] },
+      suspicious: false,
+      parentId: null, // Only root comments for the main feed
+    },
+    select: serviceCommentSelect,
+    orderBy: {
+      createdAt: 'desc',
+    },
+    take: takeCounts.serviceComments,
+  })
+
+  return { success: true, data: { service, comments } }
+}
+
+const eventSelect = {
+  id: true,
+  title: true,
+  content: true,
+  type: true,
+  startedAt: true,
+  endedAt: true,
+  source: true,
+  createdAt: true,
+  service: {
+    select: {
+      name: true,
+      slug: true,
+    },
+  },
+} as const satisfies Prisma.EventSelect
+
+const serviceEventSelect = {
+  id: true,
+  title: true,
+  content: true,
+  type: true,
+  startedAt: true,
+  endedAt: true,
+  source: true,
+  createdAt: true,
+} as const satisfies Prisma.EventSelect
+
+export async function getEventsForService(slug: string | undefined): Promise<
+  SafeResult<{
+    service: Prisma.ServiceGetPayload<{ select: typeof serviceSelect }>
+    events: Prisma.EventGetPayload<{ select: typeof serviceEventSelect }>[]
+  }>
+> {
+  const result = await getService(slug)
+  if (!result.success) return result
+  const { service } = result.data
+
+  const events = await prisma.event.findMany({
+    where: {
+      serviceId: service.id,
+      visible: true,
+    },
+    select: serviceEventSelect,
+    orderBy: {
+      createdAt: 'desc',
+    },
+    take: takeCounts.serviceEvents,
+  })
+
+  return { success: true, data: { service, events } }
+}
+
+export async function getEvents(): Promise<
+  SafeResult<{
+    events: Prisma.EventGetPayload<{ select: typeof eventSelect }>[]
+  }>
+> {
+  const events = await prisma.event.findMany({
+    where: {
+      visible: true,
+      service: {
+        listedAt: { lte: new Date() },
+        serviceVisibility: { in: ['PUBLIC', 'ARCHIVED'] },
+      },
+    },
+    select: eventSelect,
+    orderBy: {
+      createdAt: 'desc',
+    },
+    take: takeCounts.allEvents,
+  })
+
+  return { success: true, data: { events } }
+}
+
+const userSelect = {
+  id: true,
+  name: true,
+  displayName: true,
+} as const satisfies Prisma.UserSelect
+
+const notificationSelect = {
+  id: true,
+  type: true,
+  createdAt: true,
+  aboutAccountStatusChange: true,
+  aboutCommentStatusChange: true,
+  aboutServiceVerificationStatusChange: true,
+  aboutSuggestionStatusChange: true,
+  aboutServiceSuggestionId: true,
+  aboutComment: {
+    select: {
+      id: true,
+      content: true,
+      communityNote: true,
+      status: true,
+      author: {
+        select: {
+          id: true,
+        },
+      },
+      parent: {
+        select: {
+          author: {
+            select: {
+              id: true,
+            },
+          },
+        },
+      },
+      service: {
+        select: {
+          slug: true,
+          name: true,
+        },
+      },
+    },
+  },
+  aboutEvent: {
+    select: {
+      title: true,
+      content: true,
+      type: true,
+      service: {
+        select: {
+          slug: true,
+          name: true,
+        },
+      },
+    },
+  },
+  aboutService: {
+    select: {
+      slug: true,
+      name: true,
+      verificationStatus: true,
+    },
+  },
+  aboutServiceSuggestion: {
+    select: {
+      id: true,
+      type: true,
+      status: true,
+      service: {
+        select: {
+          name: true,
+        },
+      },
+    },
+  },
+  aboutServiceSuggestionMessage: {
+    select: {
+      id: true,
+      content: true,
+      suggestion: {
+        select: {
+          id: true,
+          service: {
+            select: {
+              name: true,
+            },
+          },
+        },
+      },
+    },
+  },
+  aboutKarmaTransaction: {
+    select: {
+      points: true,
+      action: true,
+      description: true,
+    },
+  },
+} as const satisfies Prisma.NotificationSelect
+
+export async function getUserNotifications(feedId: string | undefined): Promise<
+  SafeResult<{
+    user: Prisma.UserGetPayload<{ select: typeof userSelect }>
+    notifications: Prisma.NotificationGetPayload<{ select: typeof notificationSelect }>[]
+  }>
+> {
+  if (!feedId || typeof feedId !== 'string') {
+    return { success: false, error: { message: 'Invalid feed ID', responseInit: { status: 400 } } }
+  }
+
+  const user = await prisma.user.findFirst({
+    where: { feedId, spammer: false },
+    select: userSelect,
+  })
+
+  if (!user) {
+    return { success: false, error: { message: 'User not found', responseInit: { status: 404 } } }
+  }
+
+  const notifications = await prisma.notification.findMany({
+    where: {
+      userId: user.id,
+    },
+    select: notificationSelect,
+    orderBy: {
+      createdAt: 'desc',
+    },
+    take: takeCounts.userNotifications,
+  })
+
+  return { success: true, data: { user, notifications } }
+}

web/src/lib/json.ts

@@ -1,4 +1,4 @@
-import type { z } from 'astro:content'
+import type { z } from 'astro/zod'
 
 // eslint-disable-next-line @typescript-eslint/consistent-type-definitions
 interface JSONObject {

web/src/lib/localstorage.ts

@@ -50,4 +50,8 @@ export const typedLocalStorage = makeTypedLocalStorage({
   pushNotificationsBannerDismissedAt: {
     schema: z.coerce.date(),
   },
+  browserNotificationsEnabled: {
+    schema: z.boolean(),
+    default: false,
+  },
 })

web/src/lib/notificationOptions.ts

@@ -0,0 +1,56 @@
+import type { NotificationData, NotificationPayload } from './serverEventsTypes'
+
+export type CustomNotificationOptions = NotificationOptions & {
+  actions?: { action: string; title: string; icon?: string }[]
+  timestamp: number
+  data: NotificationData
+}
+
+export function makeNotificationOptions(
+  payload: NotificationPayload | null,
+  options: { removeActions?: boolean } = {}
+) {
+  const defaultOptions: CustomNotificationOptions = {
+    body: 'You have a new notification',
+    lang: 'en-US',
+    icon: '/favicon.svg',
+    badge: '/notification-icon.svg',
+    requireInteraction: false,
+    silent: false,
+    actions: options.removeActions
+      ? undefined
+      : [
+          {
+            action: 'view',
+            title: 'View',
+            icon: 'https://api.iconify.design/ri/arrow-right-line.svg',
+          },
+        ],
+    timestamp: Date.now(),
+    data: {
+      defaultActionUrl: '/notifications',
+      payload: null,
+    },
+  }
+
+  if (!payload) {
+    return defaultOptions
+  }
+
+  return {
+    ...defaultOptions,
+    // eslint-disable-next-line @typescript-eslint/prefer-nullish-coalescing
+    body: payload.body || undefined,
+    actions: options.removeActions
+      ? undefined
+      : payload.actions.map((action) => ({
+          action: action.action,
+          title: action.title,
+          icon: action.icon,
+        })),
+    data: {
+      ...defaultOptions.data,
+      payload,
+    },
+  } as CustomNotificationOptions
+}

web/src/lib/notifications.ts

@@ -3,11 +3,12 @@ import { commentStatusChangesById } from '../constants/commentStatusChange'
 import { eventTypesById } from '../constants/eventTypes'
 import { getKarmaTransactionActionInfo } from '../constants/karmaTransactionActions'
 import { serviceVerificationStatusChangesById } from '../constants/serviceStatusChange'
+import { getServiceSuggestionTypeInfo } from '../constants/serviceSuggestionType'
 import { serviceSuggestionStatusChangesById } from '../constants/suggestionStatusChange'
 
 import { makeCommentUrl } from './commentsWithReplies'
 
-import type { NotificationAction } from './webPush'
+import type { NotificationAction } from './serverEventsTypes'
 import type { Prisma } from '@prisma/client'
 
 export function makeNotificationTitle(
@@ -48,6 +49,7 @@ export function makeNotificationTitle(
       aboutServiceSuggestion: {
         select: {
           status: true
+          type: true
           service: {
             select: {
               name: true
@@ -131,6 +133,12 @@ export function makeNotificationTitle(
         ? `New unmoderated comment on ${service}`
         : `New comment on ${service}`
     }
+    case 'SUGGESTION_CREATED': {
+      if (!notification.aboutServiceSuggestion) return 'New service suggestion'
+      const typeInfo = getServiceSuggestionTypeInfo(notification.aboutServiceSuggestion.type)
+      const service = notification.aboutServiceSuggestion.service.name
+      return `New ${typeInfo.labelAlt} suggestion for ${service}`
+    }
     case 'SUGGESTION_MESSAGE': {
       if (!notification.aboutServiceSuggestionMessage) return 'New message on your suggestion'
       const service = notification.aboutServiceSuggestionMessage.suggestion.service.name
@@ -219,6 +227,7 @@ export function makeNotificationContent(
       if (!notification.aboutKarmaTransaction) return null
       return notification.aboutKarmaTransaction.description
     }
+    case 'SUGGESTION_CREATED':
     case 'SUGGESTION_STATUS_CHANGE':
     case 'ACCOUNT_STATUS_CHANGE':
     case 'SERVICE_VERIFICATION_STATUS_CHANGE': {
@@ -323,6 +332,17 @@ export function makeNotificationActions(
         },
       ]
     }
+    case 'SUGGESTION_CREATED': {
+      if (!notification.aboutServiceSuggestionId) return []
+      return [
+        {
+          action: 'view',
+          title: 'View',
+          ...iconNameAndUrl('ri:arrow-right-line'),
+          url: `${origin}/service-suggestion/${String(notification.aboutServiceSuggestionId)}`,
+        },
+      ]
+    }
     case 'SUGGESTION_MESSAGE': {
       if (!notification.aboutServiceSuggestionMessage) return []
       return [

web/src/lib/postgresListenerIntegration.ts

@@ -1,100 +1,21 @@
-import { z } from 'astro/zod'
-import { Client } from 'pg'
+import { startListener, stopListener } from './postgresListeners'
 
-import { zodParseJSON } from './json'
-import { sendNotification } from './sendNotifications'
-import { getServerEnvVariable } from './serverEnvVariables'
-
-import type { AstroIntegration, HookParameters } from 'astro'
-
-const DATABASE_URL = getServerEnvVariable('DATABASE_URL')
-
-let pgClient: Client | null = null
+import type { AstroIntegration } from 'astro'
 
 const INTEGRATION_NAME = 'postgres-listener'
 
-async function handleNotificationCreated(
-  notificationId: number,
-  options: HookParameters<'astro:server:start'>
-) {
-  const logger = options.logger.fork(INTEGRATION_NAME)
-  try {
-    logger.info(`Processing notification with ID: ${String(notificationId)}`)
-
-    const results = await sendNotification(notificationId, logger)
-
-    logger.info(
-      `Sent push notifications for notification ${String(notificationId)} to ${String(results.success)} devices, ${String(results.failure)} failed`
-    )
-  } catch (error) {
-    logger.error(`Error processing notification ${String(notificationId)}: ${getErrorMessage(error)}`)
-  }
-}
-
 export function postgresListener(): AstroIntegration {
   return {
     name: 'postgres-listener',
     hooks: {
-      'astro:server:start': async (options) => {
+      'astro:server:start': (options) => {
         const logger = options.logger.fork(INTEGRATION_NAME)
-
-        try {
-          logger.info('Starting PostgreSQL notification listener...')
-
-          pgClient = new Client({ connectionString: DATABASE_URL })
-
-          await pgClient.connect()
-          logger.info('Connected to PostgreSQL for notifications')
-
-          await pgClient.query('LISTEN notification_created')
-          logger.info('Listening for notification_created events')
-
-          pgClient.on('notification', (msg) => {
-            if (msg.channel === 'notification_created') {
-              const payload = zodParseJSON(z.object({ id: z.number().int().positive() }), msg.payload)
-              if (!payload) {
-                logger.warn(`Invalid notification ID in payload: ${String(msg.payload)}`)
-                return
-              }
-
-              // NOTE: Don't await to avoid blocking
-              void handleNotificationCreated(payload.id, options)
-            }
-          })
-
-          pgClient.on('error', (error) => {
-            logger.error(`PostgreSQL client error: ${getErrorMessage(error)}`)
-          })
-
-          pgClient.on('end', () => {
-            logger.info('PostgreSQL client connection ended')
-          })
-        } catch (error) {
-          logger.error(`Failed to start PostgreSQL listener: ${getErrorMessage(error)}`)
-        }
+        void startListener(logger)
       },
-
-      'astro:server:done': async ({ logger: originalLogger }) => {
-        const logger = originalLogger.fork(INTEGRATION_NAME)
-
-        if (pgClient) {
-          try {
-            logger.info('Stopping PostgreSQL notification listener...')
-            await pgClient.end()
-            pgClient = null
-            logger.info('PostgreSQL listener stopped')
-          } catch (error) {
-            logger.error(`Error stopping PostgreSQL listener: ${getErrorMessage(error)}`)
-          }
-        }
+      'astro:server:done': (options) => {
+        const logger = options.logger.fork(INTEGRATION_NAME)
+        void stopListener(logger)
       },
     },
   }
 }
-
-function getErrorMessage(error: unknown) {
-  if (error instanceof Error) {
-    return error.message
-  }
-  return String(error)
-}

web/src/lib/postgresListeners.ts

@@ -0,0 +1,112 @@
+import { Client } from 'pg'
+
+import { getRedisServerEvents, type RedisServerEvents } from './redis/redisServerEvents'
+import { sendNotification } from './sendNotifications'
+import { getServerEnvVariable } from './serverEnvVariables'
+
+import type { AstroIntegrationLogger } from 'astro'
+
+const DATABASE_URL = getServerEnvVariable('DATABASE_URL')
+
+let pgClient: Client | null = null
+
+export async function startListener(
+  logger: Pick<AstroIntegrationLogger, 'debug' | 'error' | 'info' | 'warn'>
+) {
+  try {
+    logger.info('Starting PostgreSQL notification listener...')
+
+    pgClient = new Client({ connectionString: DATABASE_URL })
+
+    await pgClient.connect()
+    logger.info('Connected to PostgreSQL for notifications')
+
+    await pgClient.query('LISTEN notification_created')
+    logger.info('Listening for notification_created events')
+
+    const redisServerEvents = await getRedisServerEvents()
+
+    pgClient.on('notification', (msg) => {
+      if (msg.channel === 'notification_created') {
+        const payload = parseJSON(msg.payload)
+        if (
+          !payload ||
+          typeof payload !== 'object' ||
+          !('id' in payload) ||
+          typeof payload.id !== 'number' ||
+          payload.id <= 0 ||
+          !Number.isFinite(payload.id) ||
+          !Number.isInteger(payload.id)
+        ) {
+          logger.warn(`Invalid notification ID in payload: ${String(msg.payload)}`)
+          return
+        }
+
+        // NOTE: Don't await to avoid blocking
+        void handleNotificationCreated(payload.id, logger, redisServerEvents)
+      }
+    })
+
+    pgClient.on('error', (error) => {
+      logger.error(`PostgreSQL client error: ${getErrorMessage(error)}`)
+    })
+
+    pgClient.on('end', () => {
+      logger.info('PostgreSQL client connection ended')
+    })
+  } catch (error) {
+    logger.error(`Failed to start PostgreSQL listener: ${getErrorMessage(error)}`)
+  }
+}
+
+async function handleNotificationCreated(
+  notificationId: number,
+  logger: Pick<AstroIntegrationLogger, 'debug' | 'error' | 'info' | 'warn'>,
+  redisServerEvents: RedisServerEvents
+) {
+  try {
+    logger.info(`Processing notification with ID: ${String(notificationId)}`)
+
+    const results = await sendNotification(notificationId, logger, redisServerEvents)
+
+    logger.info(
+      `Sent push notifications for notification ${String(notificationId)} to ${String(results.success)} devices, ${String(results.failure)} failed`
+    )
+  } catch (error) {
+    logger.error(`Error processing notification ${String(notificationId)}: ${getErrorMessage(error)}`)
+  }
+}
+
+export async function stopListener(logger: AstroIntegrationLogger) {
+  if (pgClient) {
+    try {
+      logger.info('Stopping PostgreSQL notification listener...')
+      await pgClient.end()
+      pgClient = null
+      logger.info('PostgreSQL listener stopped')
+    } catch (error) {
+      logger.error(`Error stopping PostgreSQL listener: ${getErrorMessage(error)}`)
+    }
+  }
+}
+
+function parseJSON<T = unknown, D extends T | undefined = undefined>(
+  stringValue: string | null | undefined,
+  defaultValue?: D
+): D | T {
+  if (!stringValue) return defaultValue as D
+
+  try {
+    return JSON.parse(stringValue) as T
+  } catch (error) {
+    console.error(error)
+    return defaultValue as D
+  }
+}
+
+function getErrorMessage(error: unknown) {
+  if (error instanceof Error) {
+    return error.message
+  }
+  return String(error)
+}

web/src/lib/redis/redisActionsSessions.ts

@@ -2,7 +2,6 @@ import { randomUUID } from 'node:crypto'
 
 import { deserializeActionResult } from 'astro:actions'
 import { z } from 'astro:content'
-import { REDIS_ACTIONS_SESSION_EXPIRY_SECONDS } from 'astro:env/server'
 
 import { RedisGenericManager } from './redisGenericManager'
 
@@ -29,11 +28,13 @@ const dataSchema = z.object({
 })
 
 class RedisActionsSessions extends RedisGenericManager {
+  private readonly prefix = 'actions_session:'
+
   async store(data: z.input<typeof dataSchema>) {
     const sessionId = randomUUID()
 
     const parsedData = dataSchema.parse(data)
-    await this.redisClient.set(`actions-session:${sessionId}`, JSON.stringify(parsedData), {
+    await this.redisClient.set(`${this.prefix}${sessionId}`, JSON.stringify(parsedData), {
       EX: this.expirationTime,
     })
 
@@ -43,7 +44,7 @@ class RedisActionsSessions extends RedisGenericManager {
   async get(sessionId: string | null | undefined) {
     if (!sessionId) return null
 
-    const key = `actions-session:${sessionId}`
+    const key = `${this.prefix}${sessionId}`
 
     const rawData = await this.redisClient.get(key)
     if (!rawData) return null
@@ -60,10 +61,10 @@ class RedisActionsSessions extends RedisGenericManager {
   async delete(sessionId: string | null | undefined) {
     if (!sessionId) return
 
-    await this.redisClient.del(`actions-session:${sessionId}`)
+    await this.redisClient.del(`${this.prefix}${sessionId}`)
   }
 }
 
 export const redisActionsSessions = await RedisActionsSessions.createAndConnect({
-  expirationTime: REDIS_ACTIONS_SESSION_EXPIRY_SECONDS,
+  expirationTime: 60 * 5, // 5 minutes in seconds
 })

web/src/lib/redis/redisGenericManager.ts

@@ -1,6 +1,9 @@
-import { REDIS_URL } from 'astro:env/server'
 import { createClient } from 'redis'
 
+import { getServerEnvVariable } from '../serverEnvVariables'
+
+const REDIS_URL = getServerEnvVariable('REDIS_URL')
+
 type RedisGenericManagerOptions = {
   expirationTime: number
 }

web/src/lib/redis/redisImpersonationSessions.ts

@@ -1,7 +1,6 @@
 import { randomUUID } from 'node:crypto'
 
 import { z } from 'astro:content'
-import { REDIS_IMPERSONATION_SESSION_EXPIRY_SECONDS } from 'astro:env/server'
 
 import { RedisGenericManager } from './redisGenericManager'
 
@@ -11,11 +10,13 @@ const dataSchema = z.object({
 })
 
 class RedisImpersonationSessions extends RedisGenericManager {
+  private readonly prefix = 'impersonation_session:'
+
   async store(data: z.input<typeof dataSchema>) {
     const sessionId = randomUUID()
 
     const parsedData = dataSchema.parse(data)
-    await this.redisClient.set(`impersonation-session:${sessionId}`, JSON.stringify(parsedData), {
+    await this.redisClient.set(`${this.prefix}${sessionId}`, JSON.stringify(parsedData), {
       EX: this.expirationTime,
     })
 
@@ -25,7 +26,7 @@ class RedisImpersonationSessions extends RedisGenericManager {
   async get(sessionId: string | null | undefined) {
     if (!sessionId) return null
 
-    const key = `impersonation-session:${sessionId}`
+    const key = `${this.prefix}${sessionId}`
 
     const rawData = await this.redisClient.get(key)
     if (!rawData) return null
@@ -36,10 +37,10 @@ class RedisImpersonationSessions extends RedisGenericManager {
   async delete(sessionId: string | null | undefined) {
     if (!sessionId) return
 
-    await this.redisClient.del(`impersonation-session:${sessionId}`)
+    await this.redisClient.del(`${this.prefix}${sessionId}`)
   }
 }
 
 export const redisImpersonationSessions = await RedisImpersonationSessions.createAndConnect({
-  expirationTime: REDIS_IMPERSONATION_SESSION_EXPIRY_SECONDS,
+  expirationTime: 60 * 60 * 24, // 24 hours in seconds
 })

web/src/lib/redis/redisPreGeneratedSecretTokens.ts

@@ -1,14 +1,14 @@
-import { REDIS_PREGENERATED_TOKEN_EXPIRY_SECONDS } from 'astro:env/server'
-
 import { RedisGenericManager } from './redisGenericManager'
 
 class RedisPreGeneratedSecretTokens extends RedisGenericManager {
+  private readonly prefix = 'pregenerated_user_secret_token:'
+
   /**
    * Stores a pre-generated token with expiration
    * @param token The pre-generated token
    */
   async storePreGeneratedToken(token: string): Promise<void> {
-    await this.redisClient.set(`pregenerated-user-secret-token:${token}`, '1', {
+    await this.redisClient.set(`${this.prefix}${token}`, '1', {
       EX: this.expirationTime,
     })
   }
@@ -19,7 +19,7 @@ class RedisPreGeneratedSecretTokens extends RedisGenericManager {
    * @returns true if token was valid and consumed, false otherwise
    */
   async validateAndConsumePreGeneratedToken(token: string): Promise<boolean> {
-    const key = `pregenerated-user-secret-token:${token}`
+    const key = `${this.prefix}${token}`
     const exists = await this.redisClient.exists(key)
     if (exists) {
       await this.redisClient.del(key)
@@ -30,5 +30,5 @@ class RedisPreGeneratedSecretTokens extends RedisGenericManager {
 }
 
 export const redisPreGeneratedSecretTokens = await RedisPreGeneratedSecretTokens.createAndConnect({
-  expirationTime: REDIS_PREGENERATED_TOKEN_EXPIRY_SECONDS,
+  expirationTime: 60 * 5, // 5 minutes in seconds
 })

web/src/lib/redis/redisServerEvents.ts

@@ -0,0 +1,72 @@
+import { allServerEventsData, type ServerEventsData, type ServerEventsEvent } from '../serverEventsTypes'
+
+import { RedisGenericManager } from './redisGenericManager'
+
+export class RedisServerEvents extends RedisGenericManager {
+  private readonly prefix = 'server_events:'
+
+  /**
+   * Broadcast an event to a user's server events listener.
+   *
+   * @param eventName - The event name to broadcast.
+   * @param userId - The user ID to broadcast to.
+   * @param data - The event to broadcast.
+   */
+  async send<T extends keyof ServerEventsData>(
+    userId: number,
+    eventName: T,
+    data: ServerEventsData[T]
+  ): Promise<void> {
+    const channel = `${this.prefix}${String(userId)}:${eventName}` as const
+    await this.redisClient.publish(channel, JSON.stringify(data))
+  }
+
+  /**
+   * Subscribe to server events for a user.
+   *
+   * @param eventName - The event name to subscribe to.
+   * @param userId - The user ID to subscribe to.
+   * @param callback - The callback to call when the event is received.
+   * @returns A cleanup function to unsubscribe.
+   */
+  async addListener<T extends keyof ServerEventsData | 'all'>(
+    eventName: T,
+    userId: number,
+    callback: (event: T extends 'all' ? ServerEventsEvent : Extract<ServerEventsEvent, { type: T }>) => void
+  ): Promise<() => Promise<void>> {
+    const subscriber = this.redisClient.duplicate()
+    await subscriber.connect()
+
+    const channel =
+      eventName === 'all'
+        ? allServerEventsData.map((eventName) => `${this.prefix}${String(userId)}:${eventName}` as const)
+        : (`${this.prefix}${String(userId)}:${eventName}` as const)
+
+    await subscriber.subscribe(channel, (message, channelKey) => {
+      try {
+        const data = JSON.parse(message) as ServerEventsData[T extends 'all' ? keyof ServerEventsData : T]
+        const type = channelKey.split(':')[2] as T extends 'all' ? keyof ServerEventsData : T
+        const event = { type, data } as T extends 'all'
+          ? ServerEventsEvent
+          : Extract<ServerEventsEvent, { type: T }>
+        callback(event)
+      } catch (error) {
+        console.error('Failed to parse notification stream event:', error)
+      }
+    })
+
+    return async () => {
+      await subscriber.unsubscribe(channel)
+      subscriber.destroy()
+    }
+  }
+}
+
+let redisServerEvents: RedisServerEvents | null = null
+
+export async function getRedisServerEvents() {
+  redisServerEvents ??= await RedisServerEvents.createAndConnect({
+    expirationTime: 60 * 60 * 24, // 24 hours in seconds
+  })
+  return redisServerEvents
+}

web/src/lib/redis/redisSessions.ts

@@ -1,7 +1,5 @@
 import { randomBytes } from 'crypto'
 
-import { REDIS_USER_SESSION_EXPIRY_SECONDS } from 'astro:env/server'
-
 import { RedisGenericManager } from './redisGenericManager'
 
 class RedisSessions extends RedisGenericManager {
@@ -74,5 +72,5 @@ class RedisSessions extends RedisGenericManager {
 }
 
 export const redisSessions = await RedisSessions.createAndConnect({
-  expirationTime: REDIS_USER_SESSION_EXPIRY_SECONDS,
+  expirationTime: 60 * 60 * 24, // 24 hours in seconds
 })

web/src/lib/sendNotifications.ts

@@ -1,15 +1,18 @@
 import { makeNotificationActions, makeNotificationContent, makeNotificationTitle } from './notifications'
 import { prisma } from './prisma'
 import { getServerEnvVariable } from './serverEnvVariables'
-import { type NotificationPayload, sendPushNotification } from './webPush'
+import { sendPushNotification } from './webPush'
 
+import type { RedisServerEvents } from './redis/redisServerEvents'
+import type { NotificationPayload } from './serverEventsTypes'
 import type { AstroIntegrationLogger } from 'astro'
 
 const SITE_URL = getServerEnvVariable('SITE_URL')
 
 export async function sendNotification(
   notificationId: number,
-  logger: AstroIntegrationLogger | Console = console
+  logger: Pick<AstroIntegrationLogger, 'debug' | 'error' | 'info' | 'warn'>,
+  redisServerEvents: RedisServerEvents
 ) {
   const notification = await prisma.notification.findUnique({
     where: { id: notificationId },
@@ -50,6 +53,7 @@ export async function sendNotification(
       aboutServiceSuggestion: {
         select: {
           status: true,
+          type: true,
           service: {
             select: {
               name: true,
@@ -123,17 +127,14 @@ export async function sendNotification(
     },
   })
 
-  if (subscriptions.length === 0) {
-    logger.info(`No push subscriptions found for user ${notification.user.name}`)
-    return { success: 0, failure: 0, total: 0 }
-  }
-
   const notificationPayload = {
     title: makeNotificationTitle(notification, notification.user),
     body: makeNotificationContent(notification),
     actions: makeNotificationActions(notification, SITE_URL),
   } satisfies NotificationPayload
 
+  await redisServerEvents.send(notification.userId, 'new-notification', notificationPayload)
+
   const subscriptionResults = await Promise.allSettled(
     subscriptions.map(async (subscription) => {
       const result = await sendPushNotification(

web/src/lib/serverEventsTypes.ts

@@ -0,0 +1,60 @@
+import type { Assert } from './assert'
+import type { Equals } from 'ts-toolbelt/out/Any/Equals'
+
+export type NotificationAction = {
+  action: string
+  title: string
+  icon?: string
+
+  url: string | null
+  iconName?: string
+}
+
+export type NotificationPayload = {
+  title: string
+  body: string | null
+  actions: NotificationAction[]
+}
+
+export type NotificationData = {
+  defaultActionUrl: string
+  payload: NotificationPayload | null
+}
+
+export type ServerEventsData = {
+  'new-notification': NotificationPayload
+  'new-connection': {
+    timestamp: string
+  }
+}
+
+export const allServerEventsData = [
+  'new-notification',
+  'new-connection',
+] as const satisfies (keyof ServerEventsData)[]
+
+type _ExpectServerEventsDataToHaveAllValues = Assert<
+  Equals<(typeof allServerEventsData)[number], keyof ServerEventsData>
+>
+
+export type ServerEventsEvent = {
+  [K in keyof ServerEventsData]: {
+    type: K
+    data: ServerEventsData[K]
+  }
+}[keyof ServerEventsData]
+
+export type SSEEventMap = {
+  [K in keyof ServerEventsData as `sse:${K}`]: CustomEvent<ServerEventsData[K]>
+}
+
+declare global {
+  // eslint-disable-next-line @typescript-eslint/consistent-type-definitions
+  interface Document {
+    addEventListener<K extends keyof SSEEventMap>(
+      type: K,
+      listener: (this: Document, ev: SSEEventMap[K]) => void
+    ): void
+    dispatchEvent<K extends keyof SSEEventMap>(ev: SSEEventMap[K]): void
+  }
+}

web/src/lib/webPush.ts

@@ -3,30 +3,17 @@ import webpush, { WebPushError } from 'web-push'
 
 import { getServerEnvVariable } from './serverEnvVariables'
 
+import type { NotificationPayload } from './serverEventsTypes'
+
+const VAPID_SUBJECT = getServerEnvVariable('VAPID_SUBJECT')
 const VAPID_PUBLIC_KEY = getServerEnvVariable('VAPID_PUBLIC_KEY')
 const VAPID_PRIVATE_KEY = getServerEnvVariable('VAPID_PRIVATE_KEY')
-const VAPID_SUBJECT = getServerEnvVariable('VAPID_SUBJECT')
 
 // Configure VAPID keys
 webpush.setVapidDetails(VAPID_SUBJECT, VAPID_PUBLIC_KEY, VAPID_PRIVATE_KEY)
 
 export { webpush }
 
-export type NotificationAction = {
-  action: string
-  title: string
-  icon?: string
-
-  url: string | null
-  iconName?: string
-}
-
-export type NotificationPayload = {
-  title: string
-  body: string | null
-  actions: NotificationAction[]
-}
-
 export async function sendPushNotification(
   subscription: {
     endpoint: string

web/src/lib/zodUtils.ts

@@ -21,7 +21,7 @@ const cleanUrl = (input: unknown) => {
 
 export const zodUrlOptionalProtocol = z.preprocess(
   cleanUrl,
-  z.string().refine((value) => /^(https?):\/\/(?=.*\.[a-z0-9]{2,})[^\s$.?#].[^\s]*$/i.test(value), {
+  z.string().refine((value) => /^(https?:\/\/)?[^\s$.?#]+(\.[^\s$.?#])*(\.[a-z0-9]{2,}).*$/i.test(value), {
     message: 'Invalid URL',
   })
 )
@@ -42,7 +42,7 @@ export const zodContactMethod = z.preprocess(
     .trim()
     .refine(
       (value) =>
-        /^((https?):\/\/(?=.*\.[a-z0-9]{2,})[^\s$.?#].[^\s]|([\d\s+\-_/()[\]*#.,]|ext|x){7,}|[0-9\s+-_\\/()[\]*#.]|[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,})*$/i.test(
+        /^((https?:\/\/)?[^\s$.?#]+(\.[^\s$.?#])*(\.[a-z0-9]{2,}).*|([\d\s+\-_/()[\]*#.,]|ext|x){7,}|[0-9\s+-_\\/()[\]*#.]|[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,})*$/i.test(
           value
         ),
       {

web/src/pages/404.astro

@@ -7,11 +7,12 @@ import BaseLayout from '../layouts/BaseLayout.astro'
 <BaseLayout
   pageTitle="404: Page Not Found"
   description="The page doesn't exist, double check the URL."
-  className={{
+  classNames={{
     main: 'm-0 -mt-16 flex max-w-none flex-col items-center justify-center bg-[#737373] pt-16 text-[#fafafa] [--speed:2s] perspective-distant [&_*]:[transform-style:preserve-3d]',
     footer: 'bg-black',
   }}
   widthClassName="max-w-none"
+  isErrorPage
 >
   <h1
     data-text="404"

web/src/pages/500.astro

@@ -1,6 +1,7 @@
 ---
 import { z } from 'astro/zod'
 import { Icon } from 'astro-icon/components'
+import { LOGS_UI_URL } from 'astro:env/server'
 
 import { SUPPORT_EMAIL } from '../constants/project'
 import BaseLayout from '../layouts/BaseLayout.astro'
@@ -21,9 +22,10 @@ const {
 <BaseLayout
   pageTitle="500: Server Error"
   description="Sorry, something crashed on the server."
-  className={{
+  classNames={{
     main: 'relative my-0 flex flex-col items-center justify-center px-6 py-24 text-center sm:py-32 lg:px-8',
   }}
+  isErrorPage
 >
   <Icon
     name="ri:bug-line"
@@ -93,6 +95,20 @@ const {
       />
       Contact support
     </a>
+    {
+      Astro.locals.user?.admin && !!LOGS_UI_URL && (
+        <a
+          href={LOGS_UI_URL}
+          class="focus-visible:outline-primary group flex items-center gap-2 px-3.5 py-2.5 text-white"
+        >
+          <Icon
+            name="ri:menu-search-line"
+            class="size-5 transition-transform group-hover:-translate-y-1 group-active:translate-y-0"
+          />
+          View logs <span class="text-xs text-gray-400">(admin only)</span>
+        </a>
+      )
+    }
   </div>
 </BaseLayout>
 

web/src/pages/about.mdx

@@ -1,8 +1,7 @@
 ---
 layout: ../layouts/MarkdownLayout.astro
 title: About
-author: KYCnot.me
-pubDate: 2025-05-15
+updatedAt: 2025-05-15
 description: 'Learn how KYCnot.me website works and about our mission to protect privacy in cryptocurrency.'
 icon: 'ri:information-line'
 ---
@@ -61,58 +60,72 @@ Users can also be **affiliated** with a service if they're related to it, such a
 
 ### Suggesting a new listing
 
-To suggest a new listing, visit the [service suggestion form](/service-suggestion/new) and provide the most accurate information possible for higher chances to get approved.
+Suggest a new listing by visiting the [service suggestion form](/service-suggestion/new). Provide the most accurate information for higher chances of getting approved.
 
-Once submitted, you get a unique tracking page where you can monitor its status and communicate directly with moderators.
+Once submitted, you will get a **unique tracking page** where you can monitor the suggestion status and communicate directly with moderators.
 
-All new listings begin as **unlisted** — they're only accessible via direct link and won't appear in search results. After a brief admin review to confirm the request isn't spam or inappropriate, the listing will be marked as **Community Contributed**.
-
-#### Requirements
+#### Listing Requirements
 
 To list a new service, it must fulfill these requirements:
 
-- Offer a service.
+- Offer a service
 - Publicly available website explaining what the service is about
 - Terms of service or FAQ document
 
-For examples:
+Examples of non-valid services:
 
-- Just a Telegram link or a criptocurrency itself is not a valid service.
+- Just a Telegram link
+- A cryptocurrency project
+- A cryptocurrency wallet
 
-### Suggestion Review Process
+#### Suggestion Review Process
 
-#### First Review
+When you submit a new service, it gets the `COMMUNITY_CONTRIBUTED` status and the `unlisted` visibility level. The service **will not appear in search results**, but it can be viewed with a direct link.
+
+##### First Review (Unlisted -> Public)
 
 - A member of the **KYCnot.me team** reviews the submission to ensure it isn't spam or inappropriate.
 - If the listing passes this initial check, it becomes **publicly visible** to all users.
 - At this stage, the listing is **Community Contributed** and will show a disclaimer.
 
-#### Second Review (APPROVED)
+> Allow up to a week for the initial review. As a small team of two volunteers, we have to handle a large number of suggestions alongside our other life commitments.
 
-- The service is tested and investigated again.
-- If it proves to be reliable, it is granted the `APPROVED` status, which means:
-  - The information is accurate.
-  - The service works as described (at the time of the testing).
-  - Basic functionality has been tested.
-  - Communication with the service's support was successful.
-  - A brief investigation found no obvious red flags.
+##### Second Review (Community Contributed -> Approved)
 
-#### Final Review (VERIFIED)
+The service will be tested and investigated more in depth. If:
 
-- After a period of no reported issues, the service will undergo a **third, comprehensive review**.
-  - The service is tested across different dates and under various conditions.
-  - The service administrators and support teams will be contacted for additional verification.
-- If the service meets all requirements, it is granted the **`VERIFIED`** status.
+- Service information is accurate.
+- Works as described (at the time of the testing).
+- Basic functionality is tested successfully.
+- Communication with service's support was successful.
+- No obvious red flags.
+- Platform user reviews will be taken into account.
+- Terms of Service and other documents are briefly reviewed.
+- Other platforms are checked for the service reputation (Trustpilot, Reddit, Bitcointalk, etc.)
 
-#### Failed Verifications
+The service will be granted the `APPROVED` status.
+
+##### Final Review (Approved -> Verified)
+
+After a period of no reported issues, we will do a **third review**.
+
+- The service is tested across different dates and under various conditions.
+- The service administrators and support teams will be contacted for additional verification.
+- User reviews will be checked for any issues and taken into account.
+- Terms of Service and other documents will be reviewed again.
+- Other platforms are checked for the service reputation (Trustpilot, Reddit, Bitcointalk, etc.)
+
+If the service meets all requirements, it is granted the **`VERIFIED`** status.
+
+##### Failed Verifications (Scams)
 
 If the data is not accurate, the service is a scam, or any other checks fail, the service will be rejected and will appear with a disclaimer.
 
-### Verification Steps
+#### Verification Steps
 
 Services will usually show the verification steps that the admins took to reach the verified (or not) status. Each step will have a description and some evidence attached.
 
-### Service Attributes
+#### Service Attributes
 
 An attribute is a feature of a service, categorized as:
 
@@ -126,50 +139,35 @@ You can view all available attributes on the [Attributes page](/attributes).
 Attributes are classified into two main types:
 
 1. **Privacy Attributes** – Related to data protection and anonymity.
-2. **Trust Attributes** – Related to reliability and security.
+1. **Trust Attributes** – Related to reliability and security.
 
 These categories **directly influence** a service's Privacy and Trust scores, which contribute to its **overall rating**.
 
-### Service Scores
+#### Service Scores
 
 Scores are calculated **automatically** using clear, fixed rules. We do not change or adjust scores by hand. The scoring system is **open-source** and anyone can review or suggest improvements.
 
-#### Privacy Score
+##### Privacy Score
 
 The privacy score measures how well a service protects user privacy, using a transparent, rules-based approach:
 
 1. **Base Score:** Every service starts with a neutral score of 50 points.
-2. **KYC Level:** Adjusts the score based on the level of identity verification required:
-   - KYC Level 0 (No KYC): **+25 points**
-   - KYC Level 1 (Minimal KYC): **+10 points**
-   - KYC Level 2 (Moderate KYC): **-5 points**
-   - KYC Level 3 (More KYC): **-15 points**
-   - KYC Level 4 (Full mandatory KYC): **-25 points**
-3. **Onion URL:** **+5 points** if the service offers at least one Onion (Tor) URL.
-4. **I2P URL:** **+5 points** if the service offers at least one I2P URL.
-5. **Monero Acceptance:** **+5 points** if the service accepts Monero as a payment method.
-6. **Privacy Attributes:** The sum of all privacy points from attributes categorized as 'PRIVACY' is added to the score. [See all attributes](/attributes).
-7. **Final Score Range:** The final score is always kept between 0 and 100.
+1. **Privacy Attributes:** The sum of all privacy points from attributes categorized as 'PRIVACY' is added to the score. [See all attributes](/attributes).
+1. **Final Score Range:** The final score is always kept between 0 and 100.
 
-#### Trust Score
+##### Trust Score
 
 The trust score represents how reliable and trustworthy a service is, based on objective, transparent criteria.
 
 1. **Base Score:** Every service begins with a neutral score of 50 points.
-2. **Verification Status Adjustment:**
-   - **Verification Success:** +10 points
-   - **Approved:** +5 points
-   - **Community Contributed:** 0 points
-   - **Verification Failed (SCAM):** -50 points
-3. **Trust Attributes:** The total trust points from all attributes categorized as 'TRUST' are added to the score. [See all attributes](/attributes).
-4. **Recently Listed Penalty & Flag:** If a service was listed within the last 15 days and its status is `APPROVED`, a penalty of -10 points is applied to the trust score, and the service is flagged as recently listed.
-5. **Final Score Range:** The final score is always kept between 0 and 100.
+1. **Trust Attributes:** The total trust points from all attributes categorized as 'TRUST' are added to the score. [See all attributes](/attributes).
+1. **Final Score Range:** The final score is always kept between 0 and 100.
 
-#### Overall Score
+##### Overall Score
 
 The overall score is calculated as `(privacy * 0.6) + (trust * 0.4)` and provides a combined measure of privacy and trust.
 
-### Terms of Service Reviews
+#### Terms of Service Reviews
 
 KYCnot.me automatically reviews and summarizes the Terms of Service (ToS) for every service monthly using AI. You get simple, clear summaries that highlight the most important points, so you can quickly see what matters.
 
@@ -177,7 +175,7 @@ We hash each ToS document and only review it again if it changes. Some services
 
 We aim for accuracy, but the AI may sometimes miss details or highlight less relevant information. If you see any error, contact us.
 
-### Events
+#### Events
 
 There are two types of events:
 
@@ -186,7 +184,7 @@ There are two types of events:
 
 You can also take a look at the [global timeline](/events) where you will find all the service's events sorted by date.
 
-### Reviews and Comments
+## Reviews and Comments
 
 Reviews are comments with a one to five star rating for the service. Each user can leave only one review per service; new reviews replace the old one.
 
@@ -196,7 +194,7 @@ If you've used the service, you can add an **order ID** or proof—this is only
 
 Some reviews may be spam or fake. Read comments carefully and **always do your own research before making decisions**.
 
-#### Note on moderation
+### Note on moderation
 
 **All comments are moderated.** First, an AI checks each comment. If nothing is flagged, the comment is published right away. If something seems off, the comment is held for a human to review. We only remove comments that are spam, nonsense, unsupported accusations, doxxing, or clear rule violations.
 
@@ -224,6 +222,10 @@ You can contact via direct chat:
 
 - [SimpleX Chat](https://simplex.chat/contact#/?v=2&smp=smp%3A%2F%2F0YuTwO05YJWS8rkjn9eLJDjQhFKvIYd8d4xG8X1blIU%3D%40smp8.simplex.im%2FcgKHYUYnpAIVoGb9lxb0qEMEpvYIvc1O%23%2F%3Fv%3D1-2%26dh%3DMCowBQYDK2VuAyEAIW_JSq8wOsLKG4Xv4O54uT2D_l8MJBYKQIFj1FjZpnU%253D%26srv%3Dbeccx4yfxxbvyhqypaavemqurytl6hozr47wfc7uuecacjqdvwpw2xid.onion)
 
+## Downloads and assets
+
+For logos and brand assets, visit our [downloads page](/downloads).
+
 ## Disclaimer
 
 This website is strictly for informational purposes regarding privacy technology in the cryptocurrency space. We unequivocally condemn and do not endorse, support, or facilitate money laundering, terrorist financing, or any other illegal financial activities. The use of any information or service mentioned herein for such purposes is strictly prohibited and contrary to the core principles of this project.

web/src/pages/access-denied.astro

@@ -25,7 +25,7 @@ if (reasonType === 'admin-required' && Astro.locals.user?.admin) {
 <BaseLayout
   pageTitle="403: Access Denied"
   description="You don't have permission to access this page."
-  className={{
+  classNames={{
     main: 'my-0 flex flex-col items-center justify-center px-6 py-24 text-center sm:py-32 lg:px-8',
     body: 'cursor-not-allowed bg-[oklch(0.16_0.07_31.84)] text-red-50',
   }}

web/src/pages/account/index.astro

@@ -169,7 +169,7 @@ if (!user) return Astro.rewrite('/404')
     icon: 'ri:user-3-line',
   }}
   widthClassName="max-w-screen-md"
-  className={{
+  classNames={{
     main: 'space-y-6',
   }}
   breadcrumbs={[