Reviewing files that changed from the base of the PR and between 35798e7 and fcefc52.

• infrastructure/eid-wallet/src-tauri/gen/android/.idea/.gitignore is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/.idea/AndroidProjectSystem.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/.idea/appInsightsSettings.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/.idea/deploymentTargetSelector.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/.idea/gradle.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/.idea/misc.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/.gitignore is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/build.gradle.kts is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/MainActivity.kt is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/Ipc.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/Logger.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/PermissionHelper.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/RustWebChromeClient.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/RustWebView.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/RustWebViewClient.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/TauriActivity.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/WryActivity.kt is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/com/eid_wallet/app/generated/proguard-wry.pro is excluded by !**/generated/**, !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/java/io/tanglelabs/metastate/eid_wallet/MainActivity.kt is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/app/src/main/res/values/strings.xml is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/buildSrc/src/main/java/io/tanglelabs/metastate/eid_wallet/kotlin/BuildTask.kt is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/android/buildSrc/src/main/java/io/tanglelabs/metastate/eid_wallet/kotlin/RustPlugin.kt is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/apple/eid-wallet.xcodeproj/project.pbxproj is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/apple/eid-wallet.xcodeproj/xcshareddata/xcschemes/eid-wallet_iOS.xcscheme is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/apple/eid-wallet_iOS/Info.plist is excluded by !**/gen/**
• infrastructure/eid-wallet/src-tauri/gen/apple/project.yml is excluded by !**/gen/**
• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

• infrastructure/eid-wallet/package.json (1 hunks)
• infrastructure/eid-wallet/src-tauri/tauri.conf.json (1 hunks)
• infrastructure/eid-wallet/src/routes/(auth)/onboarding/+page.svelte (1 hunks)
• infrastructure/eid-wallet/src/routes/(auth)/verify/+page.svelte (1 hunks)
• infrastructure/evault-core/src/db/db.service.spec.ts (2 hunks)
• infrastructure/evault-core/src/db/db.service.ts (1 hunks)
• infrastructure/evault-core/src/db/retry-neo4j.ts (1 hunks)
• infrastructure/evault-core/src/db/types.ts (1 hunks)
• infrastructure/evault-core/src/evault.ts (5 hunks)
• infrastructure/evault-core/src/protocol/examples/examples.ts (2 hunks)
• infrastructure/evault-core/src/protocol/graphql-server.ts (1 hunks)
• infrastructure/evault-core/src/protocol/typedefs.ts (1 hunks)
• infrastructure/evault-core/src/protocol/vault-access-guard.ts (1 hunks)
• infrastructure/evault-provisioner/src/controllers/VerificationController.ts (2 hunks)
• infrastructure/evault-provisioner/src/index.ts (3 hunks)
• infrastructure/evault-provisioner/src/templates/evault.nomad.ts (2 hunks)
• infrastructure/web3-adapter/package.json (1 hunks)
• infrastructure/web3-adapter/src/__tests__/adapter.test.ts (0 hunks)
• infrastructure/web3-adapter/src/__tests__/evault.test.ts (0 hunks)
• infrastructure/web3-adapter/src/adapter.ts (0 hunks)
• infrastructure/web3-adapter/src/db/index.ts (1 hunks)
• infrastructure/web3-adapter/src/db/mapping.db.ts (1 hunks)
• infrastructure/web3-adapter/src/evault/evault.ts (1 hunks)
• infrastructure/web3-adapter/src/index.ts (1 hunks)
• infrastructure/web3-adapter/src/mapper/mapper.ts (1 hunks)
• infrastructure/web3-adapter/src/mapper/mapper.types.ts (1 hunks)
• infrastructure/web3-adapter/tsconfig.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/package.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/controllers/AuthController.ts (0 hunks)
• platforms/blabsy-w3ds-auth-api/src/controllers/WebhookController.ts (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/index.ts (2 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/index.ts (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/chat.mapping.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/message.mapping.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/social-media-post.mapping.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/user.mapping.json (1 hunks)
• platforms/blabsy-w3ds-auth-api/src/web3adapter/watchers/firestoreWatcher.ts (1 hunks)
• platforms/blabsy/.env.development (1 hunks)
• platforms/blabsy/package.json (1 hunks)
• platforms/blabsy/src/components/modal/mobile-sidebar-modal.tsx (1 hunks)
• platforms/blabsy/src/components/sidebar/more-settings.tsx (1 hunks)
• platforms/blabsy/src/components/sidebar/sidebar-profile.tsx (1 hunks)
• platforms/blabsy/src/lib/types/tweet.ts (1 hunks)
• platforms/metagram/project.inlang/.gitignore (1 hunks)
• platforms/metagram/project.inlang/project_id (1 hunks)
• platforms/metagram/project.inlang/settings.json (1 hunks)
• platforms/pictique-api/package.json (1 hunks)
• platforms/pictique-api/src/controllers/MessageController.ts (10 hunks)
• platforms/pictique-api/src/controllers/PostController.ts (1 hunks)
• platforms/pictique-api/src/controllers/WebhookController.ts (1 hunks)
• platforms/pictique-api/src/database/data-source.ts (2 hunks)
• platforms/pictique-api/src/database/migrations/1749561069022-migration.ts (1 hunks)
• platforms/pictique-api/src/index.ts (1 hunks)
• platforms/pictique-api/src/middleware/auth.ts (1 hunks)
• platforms/pictique-api/src/services/ChatService.ts (10 hunks)
• platforms/pictique-api/src/services/CommentService.ts (3 hunks)
• platforms/pictique-api/src/services/MessageService.ts (1 hunks)
• platforms/pictique-api/src/services/PostService.ts (2 hunks)
• platforms/pictique-api/src/services/UserService.ts (1 hunks)
• platforms/pictique-api/src/services/event-emitter.ts (1 hunks)
• platforms/pictique-api/src/web3adapter/config/index.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/controllers/WebhookController.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/entities/MetaEnvelopeMap.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/mappings/chat.mapping.json (1 hunks)
• platforms/pictique-api/src/web3adapter/mappings/comment.mapping.json (1 hunks)
• platforms/pictique-api/src/web3adapter/mappings/message.mapping.json (1 hunks)
• platforms/pictique-api/src/web3adapter/mappings/post.mapping.json (1 hunks)
• platforms/pictique-api/src/web3adapter/mappings/user.mapping.json (1 hunks)
• platforms/pictique-api/src/web3adapter/routes/webhook.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/services/TransformService.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/services/eVaultService.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/subscribers/EntitySubscriber.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/types/index.ts (0 hunks)
• platforms/pictique-api/src/web3adapter/watchers/subscriber.ts (1 hunks)
• platforms/pictique/package.json (1 hunks)
• platforms/pictique/src/lib/fragments/BottomNav/BottomNav.svelte (3 hunks)
• platforms/pictique/src/lib/fragments/Comment/Comment.svelte (0 hunks)
• platforms/pictique/src/lib/fragments/CreatePostModal/CreatePostModal.svelte (4 hunks)
• platforms/pictique/src/lib/fragments/InputFile/InputFile.svelte (1 hunks)
• platforms/pictique/src/lib/fragments/MessageInput/MessageInput.svelte (1 hunks)
• platforms/pictique/src/lib/fragments/Post/Post.svelte (4 hunks)
• platforms/pictique/src/lib/fragments/Profile/Profile.svelte (3 hunks)
• platforms/pictique/src/lib/fragments/SideBar/SideBar.svelte (4 hunks)
• platforms/pictique/src/lib/fragments/UploadedPostView/UploadedPostView.svelte (2 hunks)
• platforms/pictique/src/lib/fragments/UserRequest/UserRequest.svelte (0 hunks)
• platforms/pictique/src/lib/store/store.svelte.ts (1 hunks)
• platforms/pictique/src/lib/stores/auth.ts (1 hunks)
• platforms/pictique/src/lib/stores/comments.ts (2 hunks)
• platforms/pictique/src/lib/stores/posts.ts (2 hunks)
• platforms/pictique/src/lib/stores/users.ts (1 hunks)
• platforms/pictique/src/lib/types.ts (2 hunks)
• platforms/pictique/src/lib/utils/axios.ts (1 hunks)
• platforms/pictique/src/routes/(auth)/auth/+page.svelte (2 hunks)
• platforms/pictique/src/routes/(protected)/+layout.svelte (5 hunks)
• platforms/pictique/src/routes/(protected)/discover/+page.svelte (2 hunks)
• platforms/pictique/src/routes/(protected)/home/+page.svelte (2 hunks)
• platforms/pictique/src/routes/(protected)/messages/+page.svelte (3 hunks)
• platforms/pictique/src/routes/(protected)/messages/[id]/+page.svelte (1 hunks)
• platforms/pictique/src/routes/(protected)/profile/+page.svelte (1 hunks)
• platforms/pictique/src/routes/(protected)/profile/[id]/+page.svelte (4 hunks)
• platforms/pictique/src/routes/(protected)/settings/+page.svelte (2 hunks)
• platforms/pictique/src/routes/(protected)/settings/account/username/+page.svelte (2 hunks)
• platforms/pictique/src/routes/+layout.svelte (1 hunks)
• platforms/pictique/src/routes/store.ts (1 hunks)
• platforms/pictique/svelte.config.js (1 hunks)
• platforms/pictique/vite.config.ts (1 hunks)
• services/ontology/schemas/bookmark.json (1 hunks)

• services/ontology/schemas/chat.json
• services/ontology/schemas/message.json
• services/ontology/schemas/socialMediaPost.json
• services/ontology/schemas/user.json

• platforms/pictique/src/lib/fragments/UserRequest/UserRequest.svelte
• platforms/pictique/src/lib/fragments/Comment/Comment.svelte
• platforms/blabsy-w3ds-auth-api/src/controllers/AuthController.ts
• platforms/pictique-api/src/web3adapter/routes/webhook.ts
• platforms/pictique-api/src/web3adapter/entities/MetaEnvelopeMap.ts
• platforms/pictique-api/src/web3adapter/types/index.ts
• infrastructure/web3-adapter/src/tests/adapter.test.ts
• platforms/pictique-api/src/web3adapter/config/index.ts
• infrastructure/web3-adapter/src/adapter.ts
• platforms/pictique-api/src/web3adapter/services/eVaultService.ts
• infrastructure/web3-adapter/src/tests/evault.test.ts
• platforms/pictique-api/src/web3adapter/subscribers/EntitySubscriber.ts
• platforms/pictique-api/src/web3adapter/controllers/WebhookController.ts
• platforms/pictique-api/src/web3adapter/services/TransformService.ts

platforms/metagram/project.inlang/settings.json (3)

2-2: Validate the $schema reference
Double-check that the JSON Schema URL (https://inlang.com/schema/project-settings) is correct and reachable, and that it matches the Inlang version you’re targeting.

---

7-9: Verify the pathPattern for message files
Confirm that ../messages/{locale}.json correctly resolves from platforms/metagram/project.inlang/. If your message files live elsewhere or the directory structure changes, this will break.

---

10-11: Locale settings align with requirements
The base locale (en) and supported locales (["en", "es"]) match the project’s target languages. No changes needed here.

platforms/metagram/project.inlang/project_id (2)

1-1: Approve addition of Inlang project_id file.
This file is required by Inlang for localization project identification and is correctly placed under platforms/metagram/project.inlang/.

---

1-1: Verify the correctness and exposure of the project ID.
Ensure that 1lExt3FnvpxOpPeeZE is the intended Inlang project identifier and that exposing this ID publicly does not leak any sensitive or private information.

platforms/blabsy/src/components/sidebar/more-settings.tsx (1)

57-58: Align dropdown at the container’s top edge
Switching from -top-44 to top-0 correctly anchors the menu flush with its trigger. Please verify in all layouts (e.g., collapsed sidebar, mobile breakpoints) that it doesn’t overlap adjacent elements or break on narrower viewports.

platforms/blabsy/src/components/modal/mobile-sidebar-modal.tsx (1)

123-123: Branding consistency: updated logout modal title
The ActionModal title has been correctly changed to "Log out of Blabsy?" to align with the platform’s branding.

platforms/blabsy/src/components/sidebar/sidebar-profile.tsx (1)

46-46: Branding consistency: updated logout modal title
The ActionModal title now references "Blabsy" instead of "Twitter," ensuring consistent terminology across the app.

platforms/pictique/src/routes/(protected)/profile/+page.svelte (1)

1-3: Remove explicit TypeScript attribute
Updated the <script> tag from lang="ts" to plain <script>, aligning with the project’s streamlined state management conventions. No functional changes introduced.

platforms/pictique/src/lib/stores/comments.ts (3)

5-13: Consistent indentation: Comment interface
Replaced spaces with tabs in the Comment interface block. Logic and types remain unchanged.

---

22-31: Consistent indentation: fetchComments
Indentation converted to tabs only; the API call, error handling, and reactive store updates are unaffected.

---

35-46: Consistent indentation: createComment
Tab-based indentation applied uniformly. No alterations to the control flow or error propagation.

platforms/pictique/src/lib/store/store.svelte.ts (1)

1-26: Style normalization: quotes & indentation
Normalized import quotes to single quotes and converted spaces to tabs across all $state initializations. Functionality is unchanged.

platforms/pictique/src/routes/+layout.svelte (1)

3-3: Remove unused ownerId import
Dropping the ownerId store import matches the shift to local authentication ID retrieval. No references to ownerId remain in this component.

platforms/pictique-api/src/controllers/PostController.ts (1)

25-25: LGTM: Clean formatting improvement.

The trailing comma removal is a minor but clean formatting improvement. Good job on cleaning up debug statements as mentioned in the summary.

platforms/pictique/package.json (1)

54-54: LGTM: Dependency addition aligns with adapter switch.

The addition of @sveltejs/adapter-node dependency supports the architectural change from static to server-side rendering mentioned in the summary.

infrastructure/eid-wallet/package.json (1)

24-24: LGTM: Appropriate dependency for fake data generation.

The addition of @ngneat/falso dependency is appropriate for generating fake user profile data during development and testing flows.

platforms/pictique-api/package.json (2)

21-21: Verify the graphql-request package version and security status.

The addition of graphql-request dependency should be validated for security vulnerabilities and ensure it's the latest stable version.

What is the latest version of graphql-request npm package and are there any known security vulnerabilities in version 6.1.0?

---

25-25: ```shell
#!/bin/bash
set -e

echo 'Searching for ".update({})" usages:'
rg -n '.update(\s*{\s*}\s*)'

echo
echo 'Searching for ".delete({})" usages:'
rg -n '.delete(\s*{\s*}\s*)'

</details>
<details>
<summary>platforms/pictique/svelte.config.js (1)</summary>

`1-1`: **Verify the adapter change aligns with deployment strategy.**

Switching from `@sveltejs/adapter-static` to `@sveltejs/adapter-node` is a significant architectural change that affects how the application is deployed and hosted. This changes the application from static site generation to requiring a Node.js server environment.

Ensure this change:
- Aligns with your hosting infrastructure 
- Has been tested in the target deployment environment
- Doesn't break existing functionality that relied on static generation



Also applies to: 7-7

</details>
<details>
<summary>platforms/pictique/src/lib/fragments/InputFile/InputFile.svelte (1)</summary>

`29-29`: **LGTM - CSS class reordering has no functional impact.**

The reordering of CSS class names doesn't affect the styling or functionality of the component.

</details>
<details>
<summary>platforms/blabsy/src/lib/types/tweet.ts (1)</summary>

`6-29`: **LGTM!**

The formatting improvements enhance code readability without affecting functionality.

</details>
<details>
<summary>platforms/pictique-api/src/middleware/auth.ts (1)</summary>

`13-15`: ```shell
#!/bin/bash
# Display the contents of index.ts to verify route protection
sed -n '1,200p' platforms/pictique-api/src/index.ts

platforms/pictique/src/routes/(auth)/auth/+page.svelte (2)

4-4: LGTM!

Good addition of the setAuthId import to support storing the authenticated user's ID.

---

24-25: LGTM!

Properly extracts and stores the user ID during the authentication flow. This enhancement allows the application to access the authenticated user's ID throughout the session.

infrastructure/web3-adapter/src/db/index.ts (1)

1-1: LGTM! Clean database module export.

The export statement correctly exposes the mapping database functionality, providing a clean interface for the web3-adapter's new ID mapping persistence features.

infrastructure/web3-adapter/tsconfig.json (1)

2-25: LGTM! Modern TypeScript configuration.

The updated configuration appropriately targets ES2021 with NodeNext module resolution, providing good compatibility for the new web3-adapter architecture while maintaining strict type checking and modern JavaScript features.

platforms/pictique/src/lib/fragments/MessageInput/MessageInput.svelte (1)

55-55: Improved CSS class organization.

The reordering of CSS classes follows a logical grouping pattern (display → sizing → positioning → styling), which enhances code consistency and readability.

infrastructure/evault-core/src/protocol/typedefs.ts (1)

41-41: Well-structured GraphQL mutation addition.

The new updateMetaEnvelopeById mutation follows established patterns and correctly uses existing types, completing the CRUD operations for meta-envelopes in the API.

platforms/pictique-api/src/services/event-emitter.ts (1)

3-3: LGTM! Clean singleton event emitter pattern.

The singleton EventEmitter instance provides a good foundation for centralized event handling across the pictique-api services, promoting decoupled communication patterns.

platforms/pictique/src/lib/stores/users.ts (1)

1-44: LGTM: Consistent formatting changes.

The indentation conversion from spaces to tabs improves code consistency across the codebase without affecting functionality.

infrastructure/web3-adapter/package.json (1)

17-23: Verify these dependency changes belong in this PR.

The addition of new dependencies (@types/node, axios, graphql-request, sqlite3, uuid) and removal of "type": "module" appear to be part of a Web3Adapter refactoring, which seems unrelated to the stated PR objective of fixing the post context menu. Please confirm these changes should be included in this PR or if they should be in a separate infrastructure update.

platforms/pictique/vite.config.ts (1)

7-9: Verify this server configuration change belongs in this PR.

The addition of allowedHosts configuration appears unrelated to fixing the post context menu functionality. This seems like a separate infrastructure/deployment concern that might belong in a different PR.

platforms/pictique-api/src/database/data-source.ts (2)

11-11: Import looks correct for PostgresSubscriber integration.

The import statement follows proper TypeScript import conventions.

---

22-22: Verify this database subscriber change belongs in this PR.

While the PostgresSubscriber addition appears technically correct, this database integration change seems unrelated to fixing the post context menu functionality. This looks like it should be part of a separate Web3Adapter integration PR.

platforms/pictique/src/routes/(protected)/home/+page.svelte (1)

81-81: LGTM: userId prop addition.

Adding the userId prop to the Post component provides necessary user context for the enhanced menu functionality.

platforms/pictique/src/lib/types.ts (2)

21-21: Good addition of timestamp property.

The createdAt property with flexible typing (string | number | Date) provides good flexibility for handling timestamps from different sources.

---

38-38: To catch any remaining references—especially in destructuring or JSX—let’s search for the bare identifier avatar across TS/JS files:

#!/usr/bin/env bash
# Broaden search for any usage of the old `avatar` identifier
rg '\bavatar\b' --glob '*.ts' --glob '*.tsx' --glob '*.js' --glob '*.jsx' -A 3 -B 3

platforms/pictique-api/src/controllers/MessageController.ts (1)

321-324: Helpful debugging additions for SSE events.

The console.log statements provide useful visibility into the SSE event handling flow, which is valuable for debugging real-time messaging functionality.

infrastructure/evault-core/src/db/types.ts (1)

4-9: Good formatting improvements.

The indentation and formatting changes improve code readability without affecting functionality. The any usage in generic type constraints is appropriate for a flexible database abstraction layer.

Also applies to: 14-19, 25-33, 38-47, 52-54

platforms/pictique/src/routes/(protected)/messages/+page.svelte (2)

6-6: Good integration of reactive heading management.

Adding the heading store and setting it before navigation provides better user experience and consistent state management across the app.

Also applies to: 36-39

---

21-22: Excellent defensive programming.

The null-safe handling of latestMessage prevents runtime errors when chats don't have messages yet. Using optional chaining and providing sensible defaults (false for unread, 'No message yet' for text) makes the code more robust.

platforms/pictique-api/src/services/CommentService.ts (1)

9-13: Good formatting and consistency improvements.

The parameter formatting, string literal standardization, and trailing comma additions improve code readability and consistency.

Also applies to: 19-26, 29-34, 36-41, 43-51, 53-60

infrastructure/eid-wallet/src/routes/(auth)/verify/+page.svelte (2)

21-21: Good naming conflict resolution.

Renaming the Selfie store import to SelfiePic effectively resolves the naming conflict with the Selfie component imported on line 24, improving code clarity.

---

63-63: Consistent usage of renamed store.

The usage correctly reflects the renamed store import, maintaining consistency with the change on line 21.

platforms/pictique-api/src/web3adapter/mappings/user.mapping.json (1)

1-24: Well-structured user mapping configuration.

The JSON mapping structure is comprehensive and follows good practices:

• Uses proper UUID for schema identification
• Logical field mappings (e.g., handle → username, name → displayName)
• Includes junction tables for relationship management
• Consistent naming conventions throughout

platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/message.mapping.json (2)

11-12: Correct Firestore timestamp transformation.

The date calculation properly converts Firestore timestamps from seconds to milliseconds format:

• calc(createdAt._seconds * 1000) correctly multiplies seconds by 1000
• Wrapped in __date() function for proper date formatting

This handles the common Firestore timestamp structure appropriately.

---

6-7: Proper entity reference mappings.

The entity reference syntax is correctly implemented:

• chat(chatId),chatId properly references the chat entity
• user(senderId),senderId properly references the user entity

This establishes proper relationships between entities in the mapping system.

platforms/pictique-api/src/database/migrations/1749561069022-migration.ts (2)

7-11: Well-designed mapping table with proper indexing.

The table structure is well-designed for the Web3 adapter:

• UUID primary key with auto-generation
• Proper timestamp columns with defaults
• Indexes on localId, metaEnvelopeId, and entityType for optimal query performance

This will efficiently handle ID mapping lookups in both directions.

---

13-18: Proper rollback implementation.

The down() method correctly reverses all operations from up() in the proper order:

1. Drops indexes first
2. Drops table last

This ensures clean rollback capability.

platforms/pictique-api/src/web3adapter/mappings/chat.mapping.json (2)

4-4: Appropriate ownership model for chat entities.

Setting ownerEnamePath to "null" is correct for chat entities, as chats typically don't have a single owner but rather multiple participants with potentially equal rights.

---

11-11: Correct array mapping syntax for participants.

The participant mapping "users(participants[].id),participantIds" properly handles the many-to-many relationship by:

• Referencing the user entity type
• Using array syntax with participants[].id
• Mapping to participantIds field

This correctly represents the chat-to-users relationship.

platforms/pictique/src/routes/(protected)/settings/account/username/+page.svelte (3)

5-6: LGTM! Good addition of navigation and lifecycle imports.

The imports are properly added to support the new functionality.

---

29-39: Excellent error handling and navigation flow.

The try-catch wrapper provides proper error handling, and navigating to /settings after successful update improves the user experience.

---

47-51: Good use of onMount for initial data loading.

Fetching and pre-populating the form fields with existing user data provides a better user experience.

infrastructure/evault-core/src/db/db.service.spec.ts (1)

55-55: Good defensive programming in tests.

The early return guards prevent null pointer exceptions and ensure tests don't continue with invalid state. This is a solid pattern for robust test execution.

Also applies to: 171-171, 178-178, 184-184, 189-189

platforms/blabsy-w3ds-auth-api/src/index.ts (4)

7-9: Good imports for Firebase and Web3 integration.

The imports properly support the new Firebase and Web3Adapter functionality being introduced.

---

29-39: Excellent initialization and error handling.

Firebase initialization with default credentials is appropriate, and the Web3Adapter initialization includes proper error handling with process exit on failure.

---

43-48: Good webhook endpoint registration.

The webhook controller setup follows proper RESTful conventions and integrates well with the existing route structure.

---

50-55: Excellent graceful shutdown handling.

The SIGTERM handler ensures proper cleanup of the Web3Adapter, which is crucial for maintaining data integrity during shutdowns.

platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/social-media-post.mapping.json (1)

1-14: Well-structured mapping configuration.

The JSON mapping file is properly formatted with consistent field mappings, appropriate date transformations, and a clear schema structure for social media posts.

infrastructure/evault-provisioner/src/controllers/VerificationController.ts (1)

43-45: Good formatting improvement for SSE heartbeat.

The reformatted JSON data improves readability while maintaining the same functionality.

platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/chat.mapping.json (3)

1-14: Inconsistency with PR objectives

This file appears unrelated to the stated PR objective of "Fix/post context menu" for issue #216. The provided files don't contain any Post.svelte component or action menu changes as described in the AI summary.

#!/bin/bash
# Search for Post.svelte and ActionMenu components to verify PR content
fd -t f "Post.svelte"
fd -t f -e svelte | xargs rg -l "ActionMenu"
rg -A 5 -B 5 "options.*prop" --type svelte

Likely an incorrect or invalid review comment.

---

10-11: Timestamp transformation logic is correct

The timestamp conversion from Firestore format to milliseconds using __calc(createdAt._seconds * 1000) properly handles the Firestore timestamp structure.

---

3-3: Verify schema ID uniqueness

The schema ID should be unique across all mapping files to prevent conflicts in the universal schema.

#!/bin/bash
# Check for duplicate schema IDs across mapping files
fd -e json -p "*mapping*" | xargs rg "550e8400-e29b-41d4-a716-446655440003" -c

platforms/pictique/src/lib/fragments/SideBar/SideBar.svelte (1)

7-7: Approve the authentication refactor

The migration from global store to local reactive state using getAuthId() utility is a good architectural improvement for component isolation.

Also applies to: 24-24

platforms/pictique-api/src/web3adapter/mappings/post.mapping.json (3)

5-7: Junction table configuration looks correct

The ownedJunctionTables configuration for post_likes properly handles the many-to-many relationship between posts and users who liked them.

---

13-13: #!/usr/bin/env bash
set -e

echo "🔍 Searching for ORM entity definitions and relation fields in TypeScript files…"

Look for Post entity/table definitions

rg -n "@entity.posts" -g '.ts' || echo "No @entity('posts') annotations found."
rg -n "class Post" -g '*.ts' || echo "No Post classes found."

echo
echo "🔍 Scanning for parentPostId and authorId in entity files…"
rg -nE "parentPostId|authorId" -g '*.ts' || echo "No parentPostId/authorId fields found in TS files."

echo
echo "🔍 Checking migration scripts (if any)…"
fd migrations -t f -e ts -e js | while read -r file; do
echo "----- $file -----"
rg -nE "parentPostId|authorId" "$file" || echo " (no matches)"
done || echo "No migrations directory found."

---

3-3: Verify schema ID uniqueness and format

Ensure this schema ID is unique across all mapping files and follows proper UUID v4 format.

#!/bin/bash
# Check for duplicate schema IDs and validate UUID format
fd -e json -p "*mapping*" | xargs rg "550e8400-e29b-41d4-a716-446655440001" -c
echo "Schema ID: 550e8400-e29b-41d4-a716-446655440001"
python3 -c "import uuid; print('Valid UUID v4:', str(uuid.UUID('550e8400-e29b-41d4-a716-446655440001')).version == 4)"

infrastructure/eid-wallet/src-tauri/tauri.conf.json (1)

37-39: Hardcoded development team ID requires verification

The iOS development team ID "HZ7MLR7Q46" is hardcoded. Ensure this is the correct team ID and consider using environment variables for different deployment contexts.

How to verify an Apple Developer Team ID and best practices for managing team IDs in Tauri configurations?

platforms/pictique-api/src/web3adapter/mappings/comment.mapping.json (1)

1-19: #!/bin/bash

1. List all files under web3adapter to locate TS/JS implementation

fd -I platforms/pictique-api/src/web3adapter -t f

2. Find how .mapping.json files are loaded or referenced

rg -n ".mapping.json" -C2 platforms/pictique-api/src/web3adapter

3. Search for JSON parsing or file‐read calls in mapping logic

rg -n "fs.readFileSync" -C2 platforms/pictique-api/src/web3adapter
rg -n "JSON.parse" -C2 platforms/pictique-api/src/web3adapter

4. Look for functions that handle array notation in mappings

rg -n "[]" -C2 platforms/pictique-api/src/web3adapter

5. Search for junction‐table handling references

rg -n "junction" -C2 platforms/pictique-api/src/web3adapter

platforms/blabsy-w3ds-auth-api/package.json (3)

44-47: Good addition of testing infrastructure.

The addition of Jest testing framework and related packages is a positive improvement for code quality. The configuration looks appropriate for a TypeScript project.

---

22-22: Verify compatibility after downgrading firebase-admin.

The firebase-admin package was downgraded from a potentially newer version to ^12.0.0. Ensure that all Firebase functionality in your codebase is compatible with this version, especially any newer APIs that might have been used.

#!/bin/bash
# Check for potential Firebase API usage that might be incompatible with v12
rg -A 3 "firebase-admin|getFirestore|getAuth" --type ts

---

28-29: Verify GraphQL package versions and compatibility.

The added GraphQL packages (graphql and graphql-request) should be compatible with each other and with your project's requirements.

What are the latest stable versions of graphql and graphql-request packages and are they compatible with each other?

platforms/pictique-api/src/web3adapter/mappings/message.mapping.json (1)

1-12: LGTM! Well-structured mapping configuration.

The JSON mapping file is correctly structured with appropriate field mappings for message entities. The schema ID, owner entity path, and local-to-universal field mappings all follow expected patterns for the web3adapter integration.

platforms/pictique/src/lib/fragments/CreatePostModal/CreatePostModal.svelte (2)

54-54: Verify the intentional change from Svelte to standard DOM events.

The event handlers have been changed from Svelte's reactive syntax (on:click, on:change) to standard HTML attributes (onclick, onchange). This removes Svelte's event handling benefits like automatic cleanup and could impact reactivity.

Ensure this change is intentional and that the functionality still works correctly with standard DOM events.

Also applies to: 83-83, 96-96

---

92-98: UI improvements look good.

The styling updates with gap-2 class, full-width label styling, and smaller button size enhance the user interface appropriately.

Also applies to: 102-102

platforms/pictique/src/routes/(protected)/profile/[id]/+page.svelte (2)

14-14: Good architectural improvement with local reactive state.

The migration from global store-based ownerId to local reactive state using getAuthId() improves the component's self-sufficiency and aligns with the centralized authentication management pattern.

Also applies to: 56-58, 74-74

---

42-42: Excellent defensive programming with optional chaining.

Using optional chaining for profile?.username prevents potential runtime errors and makes the code more robust.

platforms/blabsy-w3ds-auth-api/src/web3adapter/mappings/user.mapping.json (1)

1-17: Well-structured user mapping with proper date transformations.

The JSON mapping file correctly handles user field mappings with appropriate date transformations for Firestore timestamps. The calc() functions properly convert seconds to milliseconds for JavaScript compatibility.

platforms/pictique-api/src/services/PostService.ts (2)

17-19: LGTM - Clean implementation of findById method.

The method follows a clear pattern and provides essential functionality for post retrieval.

---

34-44: Verify the removal of author ID filtering in getFollowingFeed.

The authorIds variable is calculated but no longer used in the query. This means the feed now returns all posts instead of just posts from followed users, which seems like a significant business logic change.

#!/bin/bash
# Check if there are other methods or places where author filtering is handled
rg -A 5 -B 5 "authorIds|following.*feed|feed.*following"

platforms/pictique/src/routes/(protected)/settings/+page.svelte (2)

22-37: Excellent async state management with proper error handling.

The implementation demonstrates good practices with:

• Clear loading and error states
• Proper async error handling
• Reactive updates using $effect

Minor suggestion: Consider adding retry functionality for failed requests:

async function fetchProfile() {
    try {
        loading = true;
        error = null;
+       // Add retry logic here if needed
        const response = await apiClient.get(`/api/users/${ownerId}`);
        profile = response.data;
    } catch (err) {
        error = err instanceof Error ? err.message : 'Failed to load profile';
+       console.error('Profile fetch failed:', err);
    } finally {
        loading = false;
    }
}

---

77-94: Good UI decision to disable unavailable functionality.

The visual feedback with cursor and opacity changes clearly communicates that the Data & Storage feature is not available, improving user experience.

platforms/pictique-api/src/index.ts (2)

37-42: LGTM - Proper CORS configuration for webhook support.

The addition of webhook-specific headers (X-Webhook-Signature, X-Webhook-Timestamp) is essential for secure webhook handling.

---

55-65: Clean webhook integration with proper route organization.

The webhook controller integration follows good patterns with clear separation between authenticated and public routes.

infrastructure/evault-core/src/protocol/examples/examples.ts (2)

82-82: LGTM - Corrected typographic apostrophe.

Good attention to detail in fixing the typography.

---

101-131: Excellent comprehensive example for the new mutation.

The example clearly demonstrates:

• Proper mutation syntax
• Input structure with all required fields
• Expected response format
• Real-world use case scenario

This provides valuable documentation for developers using the API.

services/ontology/schemas/bookmark.json (2)

3-3: Verify the purpose of schemaId field

The schemaId field with a hardcoded UUID value is unusual for a JSON schema. Typically, the $id field is used for schema identification, not a custom schemaId. Please verify if this is intentional and aligns with your schema management system.

---

1-39: Schema structure looks good

The bookmark schema is well-structured with appropriate field types and validation constraints. The use of UUID format for IDs and proper timestamp fields follows best practices.

platforms/pictique/src/lib/fragments/BottomNav/BottomNav.svelte (2)

5-7: Good refactoring of authentication state management

The change from direct store import to using the getAuthId utility function improves encapsulation and centralizes authentication state management.

---

10-11: Ensure getAuthId() handles null/undefined cases

The reactive assignment ownerId = getAuthId() should handle cases where getAuthId() might return null or undefined, especially during initialization or logout scenarios.

#!/bin/bash
# Description: Verify getAuthId implementation and its null handling

# Check the implementation of getAuthId
ast-grep --pattern 'export $_ function getAuthId($_) {
  $$$
}'

# Also check for any TypeScript/JavaScript exports
rg -A 10 'export.*getAuthId'

Also applies to: 50-50

platforms/pictique/src/lib/fragments/UploadedPostView/UploadedPostView.svelte (1)

25-30: Formatting improvements enhance readability

The CSS class formatting changes improve code consistency and readability without affecting functionality.

Also applies to: 33-33, 35-35

infrastructure/evault-core/src/evault.ts (1)

26-53: Excellent refactoring to factory pattern with async initialization

The change to use a static factory method with private constructor ensures proper async initialization of the Neo4j driver with retry logic. This prevents instantiation issues and improves reliability.

infrastructure/evault-core/src/db/db.service.ts (1)

376-505: Well-implemented update functionality with comprehensive error handling

The updateMetaEnvelopeById method provides thorough handling of meta-envelope updates including:

• Proper existence checking
• Updating existing envelopes
• Creating new envelopes
• Removing obsolete envelopes
• Detailed error logging

The implementation follows good practices with try-catch blocks and descriptive error messages.

platforms/pictique/src/lib/fragments/Profile/Profile.svelte (1)

6-18: LGTM on the props destructuring refactor.

The conversion to use $props() with proper TypeScript typing is a good modernization of the Svelte component and improves type safety.

platforms/pictique-api/src/services/ChatService.ts (2)

8-20: LGTM on the shared event emitter implementation.

Using a shared event emitter instance improves consistency across services and enables better coordination for real-time features.

---

312-317: LGTM on the new findById method.

The method implementation is correct and follows the existing patterns in the service.

infrastructure/web3-adapter/src/mapper/mapper.types.ts (1)

3-47: Well-designed interfaces with comprehensive documentation.

The interface definitions are clear, well-documented, and provide good type safety for the mapping operations. The ownerEnamePath documentation with examples is particularly helpful for understanding the nested reference syntax.

platforms/pictique/src/lib/fragments/Post/Post.svelte (2)

15-15: Excellent implementation of the ActionMenu integration.

The replacement of the static menu button with the configurable ActionMenu component using the options prop perfectly addresses the PR objective of fixing the post context menu functionality. This provides much more flexibility for different menu actions.

Also applies to: 33-33, 121-121

---

20-20: Good prop refinements for flexibility.

Making userId and count optional, and the property name consistency improvements enhance the component's reusability and align with the broader refactoring.

Also applies to: 22-22, 23-26

platforms/pictique/src/lib/utils/axios.ts (2)

34-46: LGTM on the auth ID management functions.

The new functions for managing the owner/user ID in localStorage follow the same pattern as the token management functions and provide good consistency.

---

6-17: Good improvement to conditional header construction.

The refactored approach to conditionally build headers only when a token exists is cleaner and avoids potential issues with undefined authorization headers.

platforms/blabsy-w3ds-auth-api/src/web3adapter/watchers/firestoreWatcher.ts (1)

29-75: Well-structured initialization with proper error handling

The start method correctly handles initial data loading followed by real-time listening, with appropriate concurrency control and error recovery.

platforms/pictique/src/routes/(protected)/+layout.svelte (1)

1-11: File changes don't match PR objectives

This file's changes involve profile fetching and heading management, but the PR objectives state this should fix the "action menu for a single post" (issue #216). The expected changes to Post.svelte component with options prop and ActionMenu component are not present in the files under review.

Please verify that the correct files are included for review or update the PR description to accurately reflect these infrastructure changes.

Likely an incorrect or invalid review comment.

infrastructure/web3-adapter/src/evault/evault.ts (1)

135-135: Security concern with universal ACL

The ACL is hardcoded to ["*"] which grants universal access. Is this intentional?

Please confirm that universal access is the intended behavior for all stored envelopes. Consider implementing proper access control based on the w3id or other criteria.

infrastructure/web3-adapter/src/db/mapping.db.ts (1)

1-202: PR objectives don't match the code changes

The PR objectives state this fixes a "post context menu" issue and mentions changes to Post.svelte component, but all the files under review are related to web3 adapter infrastructure, database mappings, and webhook controllers. This appears to be a completely different set of changes than what's described in the PR summary.

Please clarify if:

1. The wrong PR objectives were provided
2. The wrong files were included for review
3. This is actually the correct PR content

Likely an incorrect or invalid review comment.

platforms/pictique-api/src/web3adapter/watchers/subscriber.ts (1)

175-175: Explain or remove hardcoded 2-second delays

The code uses setTimeout with a hardcoded 2-second delay in multiple places. This seems like a workaround for a race condition.

Why is this delay necessary? Consider:

1. Using proper synchronization mechanisms
2. Making the delay configurable
3. Adding a comment explaining the requirement

Also applies to: 234-234

infrastructure/web3-adapter/src/mapper/mapper.ts (1)

157-161: ```shell
#!/bin/bash

Display contents of mapper.types to inspect IMappingConversionOptions definition

sed -n '1,200p' infrastructure/web3-adapter/src/mapper/mapper.types

</details>
<details>
<summary>infrastructure/eid-wallet/src/routes/(auth)/onboarding/+page.svelte (2)</summary>

`1-195`: **File doesn't match PR objectives - Wrong file or PR description?**

This file (`infrastructure/eid-wallet/src/routes/(auth)/onboarding/+page.svelte`) implements an onboarding flow for digital identity provisioning, but the PR objectives state this PR fixes "action menu for a single post" (issue #216). The AI summary also mentions changes to `Post.svelte` component with `options` prop and `ActionMenu`.

This appears to be either:
1. The wrong file was included for review
2. The PR description/objectives are incorrect
3. Multiple unrelated changes were bundled into one PR

Please clarify the actual scope of this PR.




> Likely an incorrect or invalid review comment.

---

`60-72`: **Verify: Is fake data generation intended for production?**

The code generates fake passport numbers and user data for what appears to be a digital identity system. This raises security concerns if this is production code.


Please confirm:
1. Is this demo/test code or production code?
2. Should real identity verification be implemented here?
3. Are there security implications of using fake identity data?

If this is for demo purposes only, consider:
- Adding clear comments indicating this is demo-only code
- Adding environment checks to prevent this in production
- Implementing proper identity verification for production use

</details>

</blockquote></details>

</details>

<!-- This is an auto-generated comment by CodeRabbit for review status -->