ariadna 1.1.3 → 1.1.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a1ed375271ac768caefa266c693b81aabf5721cbe01cba600ba219a25594de3c
-  data.tar.gz: 0253d51a13f639d93785d01bb72459020d42afceac232282c798975faf629bf4
+  metadata.gz: b216fcd72bc73121f1c9129c55c7575ddf50d0ff0d14f34e14f34398a3c6aa23
+  data.tar.gz: 04bad2627d8928f2c2a641f67366764f6d5336ef17fae933923633b675cbd41d
 SHA512:
-  metadata.gz: ae19b2a21a2713c0e15f9dacc0d06a4306d47b3620b0e7c0ea78c87a109e11f35c6f396efb5e2b3b4e7ddf404f1db94cecf01df10144213911eadcb59cc6e360
-  data.tar.gz: 580e4a7376e86aa30f705d1502264729c9be324711b0daa2f54caa1818acd42d67101859811b5d2a46a9ce321fbaacc74ddb08e6746ffd51165588723842843b
+  metadata.gz: 20e330e4c9ca1c1b7bb149efbe12446800c00dd80d6cb299cb38fa1f285244ac05f0b577f196dfa658492c71df5cf697df01885f395998c271008c2e48d105ce
+  data.tar.gz: 2c449bfa9ba635500167fac1019c047559938f89cc8adbfb958e88bb2ea6bf9e3e148b54d62a7d208dfbb6b091b9a53d558406651fc733fc5093689386cb7898

data/data/agents/ariadna-backend-executor.md

@@ -23,7 +23,7 @@ Load and follow the project's backend guide for domain-specific patterns:
 - **Models & Concerns:** Concern-driven architecture, intention-revealing APIs, smart association defaults
 - **Controllers:** Thin controllers delegating to rich models, RESTful resource nesting
 - **Jobs:** Ultra-thin jobs with _now/_later pattern, multi-tenancy context
-- **Migrations:** UUID primary keys, proper foreign key references
+- **Migrations:** Proper foreign key references
 - **Configuration:** Rails conventions, initializers, routing
 
 **When executing backend tasks:**

data/data/agents/ariadna-planner.md

@@ -180,7 +180,7 @@ Each task: **15-60 minutes** Claude execution time.
 | "Create the API" | "Create POST /projects endpoint in ProjectsController#create accepting {name, description}, validates name length 3-50 chars, returns 201 with project JSON" |
 | "Style the dashboard" | "Add CSS classes to dashboard view: grid layout (3 cols on lg via media query, 1 on mobile), card shadows via --shadow variable, hover states on action buttons per style guide" |
 | "Handle errors" | "Add rescue_from in ApplicationController, render JSON errors on 4xx/5xx, show flash messages on server-rendered pages" |
-| "Set up the database" | "Add User and Project models with UUID primary keys, email unique constraint, timestamps, run rails db:migrate" |
+| "Set up the database" | "Add User and Project models, email unique constraint, timestamps, run rails db:migrate" |
 
 **Test:** Could a different Claude instance execute without asking clarifying questions? If not, add specificity.
 

data/data/agents/ariadna-test-executor.md

@@ -21,7 +21,7 @@ Load and follow the project's testing guide for domain-specific patterns:
 
 **Focus areas:**
 - **Minitest conventions:** `ActiveSupport::TestCase` for models, `ActionDispatch::IntegrationTest` for controllers
-- **Fixtures:** YAML fixtures for deterministic test data, UUID-based fixture IDs
+- **Fixtures:** YAML fixtures for deterministic test data
 - **Current context:** Always set `Current.session = sessions(:name)` in setup blocks
 - **assert_difference:** Use for state changes, nest for multiple record types
 - **Testing patterns:** Model tests for business logic, controller tests for delegation, job tests for enqueuing

data/data/ariadna/templates/codebase/architecture.md

@@ -17,7 +17,7 @@ Template for `.planning/codebase/ARCHITECTURE.md` - captures conceptual code org
 
 **Overall:** [Pattern name: e.g., "Rails Monolith", "Rails API-only", "Rails + Hotwire", "Rails Engine-based"]
 
-**Multi-Tenancy:** [e.g., "Path-based with CurrentAttributes", "Subdomain-based", "acts_as_tenant gem", "Single-tenant", "None"]
+**Multi-Tenancy:** [e.g., "Path-based with CurrentAttributes", "Subdomain-based", "session based", "Single-tenant", "None"]
 
 **Key Characteristics:**
 - [Characteristic 1: e.g., "Server-rendered with Turbo"]
@@ -277,7 +277,7 @@ Template for `.planning/codebase/ARCHITECTURE.md` - captures conceptual code org
 **Key Domain Models:**
 - `Account` — Tenant root. All data scoped to an account
 - `Board` — Project workspace containing cards, columns, and access rules
-- `Card` — Primary work item. Most concern-composed model (20+ concerns). Uses `number` (integer) for user-facing IDs, UUID internally
+- `Card` — Primary work item. Most concern-composed model (20+ concerns).
 - `Event` — Audit trail record. Polymorphic `eventable`, JSON `particulars` for action-specific data
 - `User` — Account member with role-based permissions. Resolved from `Current.session` → `identity` → `user`
 
@@ -357,11 +357,6 @@ Template for `.planning/codebase/ARCHITECTURE.md` - captures conceptual code org
 - Location: `app/models/` subdirectories — `User::Filtering`, `Event::Description`, `User::DayTimeline`
 - Pattern: Constructor injection, memoized collections (`@boards ||= ...`), boolean methods for conditional display (`show_tags?`), cache keys for fragment caching. Some include `ActionView::Helpers::TagHelper` for HTML generation. Instantiated via controller concerns or factory methods on models (`event.description_for(user)`)
 
-**Pundit Policies:**
-- Purpose: Authorize user actions on resources
-- Examples: `ProjectPolicy`, `TaskPolicy`, `MembershipPolicy`
-- Pattern: Policy class per model with `?` predicate methods
-
 ## Multi-Tenancy & Current Context
 
 **Approach:** Path-based — account slug extracted from URL path by `AccountSlug::Extractor` middleware. Slug moves from `PATH_INFO` to `SCRIPT_NAME`. No subdomain configuration needed.
@@ -400,7 +395,7 @@ Template for `.planning/codebase/ARCHITECTURE.md` - captures conceptual code org
 
 **Patterns:**
 - `rescue_from ActiveRecord::RecordNotFound` → 404 page
-- `rescue_from Pundit::NotAuthorizedError` → 403 or redirect with flash
+- `rescue_from NotAuthorizedError` → 403 or redirect with flash
 - Model validation errors re-render form with `@model.errors`
 - Service objects return `Result` structs (success/failure) instead of raising
 - Jobs use `retry_on` for transient failures, `discard_on` for permanent ones
@@ -421,7 +416,6 @@ Template for `.planning/codebase/ARCHITECTURE.md` - captures conceptual code org
 - `require_authentication` filter on all non-public controllers
 
 **Authorization:**
-- Pundit policies per resource
 - `authorize` calls in controller actions
 - Scoped queries via `policy_scope`
 

data/data/ariadna/templates/codebase/concerns.md

@@ -190,8 +190,8 @@ Template for `.planning/codebase/CONCERNS.md` - captures known issues and areas
 **Missing authorization checks on nested resources:**
 - Risk: Card comments endpoint does not verify user has access to the parent board
 - Files: `app/controllers/comments_controller.rb`, missing `authorize @comment` call
-- Current mitigation: Obscured by UUID-based URLs (hard to guess)
-- Recommendations: Add Pundit `authorize` call or `before_action` scope check, add `CommentPolicy` with board-access verification
+- Current mitigation: Denormalise tables so all include account_id and rely on `Current.account` scope, but no explicit check on board access.
+- Recommendations: Add `before_action` scope check.
 
 **Unscoped queries leaking tenant data:**
 - Risk: `Admin::ReportsController` uses `Card.where(created_at: range)` without `Current.account` scope

data/data/ariadna/templates/codebase/conventions.md

@@ -251,7 +251,7 @@ end
 - Model validation errors re-render form with `@model.errors`
 
 **Error Types:**
-- Raise on authorization failures: `rescue_from Pundit::NotAuthorizedError`
+- Raise on authorization failures: `rescue_from NotAuthorizedError`
 - Raise on missing records: `rescue_from ActiveRecord::RecordNotFound`
 - Return `false`/`nil` for expected domain failures
 - Jobs: `retry_on` for transient failures (network, timeouts), `discard_on ActiveRecord::RecordNotFound`

data/data/ariadna/templates/codebase/stack.md

@@ -123,9 +123,8 @@ Template for `.planning/codebase/STACK.md` - captures the technology foundation.
 
 **Critical:**
 - authentication (built-in) — Session-based auth
-- pundit — Authorization
+- authorization - custom implementation (no gem) — Role-based access control, pundit
 - solid_queue — Background jobs (Rails 8 default)
-- stripe — Payment processing
 
 **Infrastructure:**
 - sqlite3 — SQLite adapter (Rails default)

data/data/ariadna/templates/research-project/ARCHITECTURE.md

@@ -164,7 +164,57 @@ test/                      # [test framework: Minitest (default) or spec/ if RSp
 ### Authentication and Authorization
 
 **Authentication:** [Rails authentication generator / has_secure_password / custom / other]
-**Authorization:** [Pundit / CanCanCan / custom / Action Policy / other]
+**Authorization:** [Custom / Pundit / CanCanCan / Action Policy / other]
+
+### Internationalization (I18n)
+
+**Configuration:**
+- Default locale: [discovered from `config.i18n.default_locale`]
+- Available locales: [discovered from `config.i18n.available_locales`]
+- Fallback chain: [discovered from `config.i18n.fallbacks`]
+
+**Locale file organization:**
+```
+config/locales/
+├── [default locale].yml            # [application-wide defaults]
+├── activerecord.[lang].yml         # [model and attribute translations]
+├── [feature].[lang].yml            # [per-feature locale files if present]
+└── [additional locale files discovered]
+```
+
+**ActiveRecord translations:**
+```yaml
+# config/locales/activerecord.[lang].yml
+[lang]:
+  activerecord:
+    models:
+      [model]: [translated model name]
+    attributes:
+      [model]:
+        [attribute]: [translated attribute name]
+```
+
+**Translation approach:**
+
+| Context | Recommended Approach | What This Project Does |
+|---------|---------------------|------------------------|
+| Model names | `activerecord.models.*` — automatic lookup by Rails | [discovered approach] |
+| Attribute names | `activerecord.attributes.*` — automatic lookup by `form.label`, validations, etc. | [discovered approach] |
+| Form labels | `form.label :name` — resolves from `activerecord.attributes` automatically | [discovered approach] |
+| Validation messages | `activerecord.errors.models.*` / `errors.messages.*` — automatic lookup | [discovered approach] |
+| View text | Lazy lookup `t(".title")` or explicit `t("views.controller.action.title")` | [discovered approach] |
+| Enum values | `activerecord.attributes.[model].[enum_attribute]/[value]` | [discovered approach] |
+| Flash messages | Controller lazy lookup `t(".success")` or explicit keys | [discovered approach] |
+| Mailer subjects | `I18n.t("mailer_name.action_name.subject")` — automatic from mailer class | [discovered approach] |
+
+**CLDR / base locale data:**
+- `rails-i18n` gem: [present/absent — provides date, time, currency, number formats for non-English locales]
+- Custom date/time formats: [discovered in locale files or initializers]
+
+**Example from codebase:**
+```ruby
+# [Brief code example showing the project's actual I18n usage pattern]
+```
 
 ## Data Flow
 
@@ -377,4 +427,13 @@ Client receives → DOM update
 - Note external API integration patterns and HTTP client choices
 - Look for engine boundaries and module interfaces
 
+**Internationalization (I18n):**
+- Check `config/application.rb` for `i18n.default_locale`, `i18n.available_locales`, and `i18n.fallbacks`
+- Inspect `config/locales/` file organization — per-model, per-feature, or flat structure
+- Look for `activerecord.models.*` and `activerecord.attributes.*` keys in locale files — these power automatic lookup for model names, form labels, and validation messages
+- Check whether form labels use automatic lookup (`form.label :name`) vs explicit `t()` calls — explicit calls duplicate what Rails provides for free
+- Check Gemfile for `rails-i18n` gem — provides CLDR base data (dates, times, currency, numbers) for non-English locales
+- Look for validation error message customization under `activerecord.errors.models.*`
+- Check for lazy lookup usage in views (`t(".key")`) and controllers
+
 </guidelines>

data/data/ariadna/templates/research-project/PITFALLS.md

@@ -155,7 +155,7 @@ params.require(:user).permit(:name, :email)
 [Root cause — e.g., tenant scoping not enforced at the framework level, new developers unaware of scoping requirements, background jobs not carrying tenant context]
 
 **How to avoid:**
-[Prevention strategy — e.g., acts_as_tenant gem, Current attributes for tenant context, controller-level `around_action` for scoping, test isolation per tenant]
+[Prevention strategy — e.g., Current attributes for tenant context, controller-level `around_action` for scoping, test isolation per tenant]
 
 **Warning signs:**
 [How to detect early — e.g., queries without `WHERE tenant_id = ?`, cross-tenant data appearing in tests, background jobs processing wrong tenant data]
@@ -184,6 +184,53 @@ params.require(:user).permit(:name, :email)
 
 ---
 
+### Pitfall 7: Explicit Translation Keys Instead of ActiveRecord Automatic Lookup
+
+**What goes wrong:**
+[Describe where explicit `t()` calls duplicate what Rails I18n automatic lookup provides — e.g., form labels passing explicit keys, validation messages hardcoded, model names translated manually]
+
+**Why it happens:**
+[Root cause — e.g., developers unaware of ActiveRecord I18n conventions, copying patterns from non-Rails projects, not reading Rails I18n guide]
+
+**How to avoid:**
+[Prevention strategy — e.g., use `form.label :name` instead of `form.label :name, t("teams.form.name")`, define translations under `activerecord.attributes.*` and `activerecord.models.*`, rely on automatic lookup for validation messages]
+
+**Warning signs:**
+[How to detect early — e.g., duplicate translation keys for the same attribute in different namespaces, inconsistent labels between forms and error messages, `t()` calls in form labels that mirror `activerecord.attributes` keys]
+
+**Example:**
+```ruby
+# Bad — explicit key duplicates what Rails provides automatically
+<%= form.label :name, t("teams.form.name") %>
+# Requires: teams.form.name in locale file AND activerecord.attributes.team.name for validations
+
+# Good — resolves from activerecord.attributes.team.name automatically
+<%= form.label :name %>
+# Single source of truth: activerecord.attributes.team.name used by forms AND validations
+```
+
+```yaml
+# Good — single source of truth for attribute names
+en:
+  activerecord:
+    models:
+      team: "Team"
+    attributes:
+      team:
+        name: "Team name"
+    errors:
+      models:
+        team:
+          attributes:
+            name:
+              blank: "cannot be empty"
+```
+
+**Phase to address:**
+[Which roadmap phase should prevent this]
+
+---
+
 [Continue for additional critical pitfalls specific to this application...]
 
 ## Technical Debt Patterns
@@ -215,6 +262,7 @@ Common mistakes when integrating Rails gems and external services.
 | Turbo / Hotwire | [e.g., full page reloads from misconfigured frames, missing turbo stream responses, form submission edge cases] | [what to do instead] |
 | Rails version upgrades | [e.g., skipping deprecation warnings, upgrading multiple major versions at once, not running `rails app:update`] | [what to do instead] |
 | Third-party APIs | [e.g., no circuit breaker, synchronous calls in request cycle, no webhook signature verification] | [what to do instead] |
+| I18n / rails-i18n | [e.g., using explicit `t()` keys for model attributes and form labels instead of ActiveRecord automatic lookup, missing `rails-i18n` gem for CLDR data (dates, currency, numbers), inconsistent locale file organization mixing per-model and flat structures] | [e.g., define translations under `activerecord.attributes.*` and `activerecord.models.*`, use `form.label :field` without explicit `t()`, add `rails-i18n` gem for base locale data, organize locale files consistently] |
 | [integration] | [what people do wrong] | [what to do instead] |
 
 ## Performance Traps
@@ -241,7 +289,7 @@ Rails-specific security issues beyond basic web security.
 | SQL injection via string interpolation in `where` | [e.g., user input directly in query string allows data exfiltration] | [e.g., always use parameterized queries: `where("name = ?", params[:name])` or hash syntax `where(name: params[:name])`] |
 | CSRF token handling gaps | [e.g., API endpoints without `protect_from_forgery`, token not verified on state-changing requests] | [e.g., `protect_from_forgery with: :exception`, proper token handling for JS requests, `csrf_meta_tags` in layout] |
 | Credential management mistakes | [e.g., secrets in ENV vars without encryption, credentials checked into git, different credentials per environment not managed] | [e.g., Rails encrypted credentials, `rails credentials:edit`, per-environment credential files] |
-| Insecure direct object references | [e.g., `User.find(params[:id])` without authorization check, enumerable IDs exposing records] | [e.g., always scope to authorized records: `current_user.posts.find(params[:id])`, use Pundit/CanCanCan] |
+| Insecure direct object references | [e.g., `User.find(params[:id])` without authorization check, enumerable IDs exposing records] | [e.g., always scope to authorized records: `current_user.posts.find(params[:id])`, use Current.account or Current.employee] |
 | Mass assignment vulnerabilities | [e.g., unpermitted nested attributes modifying admin fields, `accepts_nested_attributes_for` without `reject_if`] | [e.g., explicit strong parameters, test that admin attributes cannot be set via API, `attr_readonly` for sensitive fields] |
 | Unsafe `html_safe` / `raw` usage | [e.g., XSS from marking user input as safe, rendering unescaped HTML from database] | [e.g., never call `html_safe` on user input, use `sanitize` helper, Content Security Policy headers] |
 | Open redirects | [e.g., `redirect_to params[:return_to]` allows redirecting to malicious sites] | [e.g., validate redirect URLs against allowlist, use `redirect_back` with `fallback_location`] |
@@ -261,6 +309,7 @@ Rails features that appear complete but are missing critical pieces.
 - [ ] **Database connection pooling:** Pool size matches worker/thread count — verify `database.yml` pool matches Puma thread count
 - [ ] **Timezone handling:** Application uses `Time.current` / `Date.current` instead of `Time.now` / `Date.today` — verify `config.time_zone` is set and used consistently
 - [ ] **Email delivery:** Mailers use `deliver_later` not `deliver_now` in web requests — verify mailer calls don't block request cycle
+- [ ] **I18n locale completeness:** All supported locales have matching keys for `activerecord.models.*`, `activerecord.attributes.*`, and `activerecord.errors.*` — verify with `i18n-tasks` gem or manual comparison that no locale is missing translations present in others
 - [ ] **[Feature]:** Often missing [thing] — verify [check]
 - [ ] **[Feature]:** Often missing [thing] — verify [check]
 

data/data/ariadna/templates/research-project/STACK.md

@@ -52,13 +52,14 @@ Template for `.planning/research/STACK.md` — discovered technology stack for t
 | File storage service | [local/S3/GCS/Azure/none] | [config/storage.yml] |
 | Email | [Action Mailer/Postmark/SendGrid/none] | [Gemfile, mailer configs] |
 | PDF generation | [Prawn/wicked_pdf/Grover/none] | [Gemfile] |
+| Internationalization | [rails-i18n gem / manual locale files only / none] | [Gemfile, config/locales/] |
 
 ## Authentication & Authorization
 
 | Category | Discovered Value | Evidence |
 |----------|-----------------|----------|
 | Authentication | [Rails authentication generator/Rodauth/Clearance/custom/none] | [Gemfile, user model] |
-| Authorization | [Pundit/CanCanCan/Action Policy/custom/none] | [Gemfile, policy files] |
+| Authorization | [Custom/Pundit/CanCanCan/Action Policy/none] | [Gemfile, policy files] |
 | OAuth/social login | [OmniAuth/Doorkeeper/none] | [Gemfile, initializers] |
 | API authentication | [API tokens/JWT/OAuth2/none] | [Gemfile, controller concerns] |
 
@@ -209,38 +210,38 @@ bin/rails server
 - Look at `database.yml` for multiple database configurations
 
 **Frontend & Assets:**
-- Check for `config/importmap.rb` (Importmap), `package.json` (Node-based), or `vite.config.ts` (Vite)
-- Look at `app/views/layouts/application.html.erb` for asset tags
-- Check `app/javascript/` structure and `app/assets/` for CSS approach
-- Look for `app/components/` (ViewComponent) or Phlex usage
+- Check for `config/importmap.rb` (Importmap), `package.json` (Node-based), or `vite.config.ts` (Vite).
+- Look at `app/views/layouts/application.html.erb` for asset tags.
+- Check `app/javascript/` structure and `app/assets/` for CSS approach.
+- Look for `app/components/` (ViewComponent) or Phlex usage.
 
 **Backend Services:**
-- Check `config/application.rb` for `active_job.queue_adapter` setting
-- Check `config/environments/production.rb` for cache store configuration
-- Look at `config/cable.yml` for Action Cable adapter
-- Check `config/storage.yml` for Active Storage service
+- Check `config/application.rb` for `active_job.queue_adapter` setting.
+- Check `config/environments/production.rb` for cache store configuration.
+- Look at `config/cable.yml` for Action Cable adapter.
+- Check `config/storage.yml` for Active Storage service.
 
 **Authentication & Authorization:**
-- Look for `Authentication` concern generated by `rails generate authentication`
-- Look for `app/policies/` (Pundit) or `app/models/ability.rb` (CanCanCan)
-- Check `app/models/user.rb` for authentication modules
+- Look for `Authentication` concern generated by `rails generate authentication`.
+- Look for `app/policies/` (Pundit) or `app/models/ability.rb` (CanCanCan) or custom authorization logic.
+- Check `app/models/user.rb` for authentication modules.
 
 **Testing:**
 - Determine framework: check for `test/` (Minitest, recommended) vs `spec/` (RSpec)
-- Check `test/test_helper.rb` (Minitest) or `spec/rails_helper.rb` (if RSpec) for test configuration
-- Look for `test/fixtures/` or `spec/factories/` to determine data strategy
-- Check for system test configuration and browser driver
+- Check `test/test_helper.rb` (Minitest) or `spec/rails_helper.rb` (if RSpec) for test configuration.
+- Look for `test/fixtures/` or `spec/factories/` to determine data strategy.
+- Check for system test configuration and browser driver.
 
 **What to Avoid:**
-- Flag gems that are no longer maintained or have known security issues
-- Note deprecated Rails patterns found in the codebase (e.g., `before_filter`, `attr_accessible`)
-- Identify gems that duplicate Rails built-in functionality unnecessarily
-- Flag any gems with known incompatibilities with the discovered Rails version
+- Flag gems that are no longer maintained or have known security issues.
+- Note deprecated Rails patterns found in the codebase (e.g., `before_filter`, `attr_accessible`).
+- Identify gems that duplicate Rails built-in functionality unnecessarily.
+- Flag any gems with known incompatibilities with the discovered Rails version.
 
 **Gem Inventory:**
-- Record version constraints as written in the Gemfile, not resolved versions
-- Note which Bundler group each gem belongs to
-- For important gems, check if the version is current or significantly outdated
+- Record version constraints as written in the Gemfile, not resolved versions.
+- Note which Bundler group each gem belongs to.
+- For important gems, check if the version is current or significantly outdated.
 
 **Version Compatibility:**
 - Note any gems that pin to specific Rails or Ruby versions

data/data/ariadna/templates/research-project/SUMMARY.md

@@ -53,7 +53,7 @@ Template for `.planning/research/SUMMARY.md` — executive summary of project re
 
 **Authentication & authorization:**
 - [Auth solution]: [purpose] — [why recommended — e.g., Rails authentication generator for session-based auth]
-- [Authorization]: [purpose] — [why recommended — e.g., Pundit for policies, Action Policy for scalable rules]
+- [Authorization]: [purpose] — [why recommended — e.g., before_action, Pundit for policies, Action Policy for scalable rules]
 
 **Additional gems:**
 - [Gem]: [purpose] — [why recommended]
@@ -87,7 +87,7 @@ Template for `.planning/research/SUMMARY.md` — executive summary of project re
 6. [Data access patterns] — [approach — e.g., scopes, query objects, eager loading strategy]
 
 **Multi-tenancy approach (if applicable):**
-- [Strategy] — [e.g., acts_as_tenant scoping, PostgreSQL schemas, separate databases]
+- [Strategy] — [e.g., Denormalise tables with account_id and use Current.account, PostgreSQL schemas, separate databases]
 
 **Engine extraction (if applicable):**
 - [Engine/mountable concern] — [e.g., admin engine, API engine, shared authentication engine]

data/data/guides/backend.md

@@ -18,7 +18,6 @@ We stand on the shoulders of giants.
 - [Part 1: Foundation & Architecture](#part-1-foundation--architecture)
   - [1.0 The Vanilla Rails Philosophy](#10-the-vanilla-rails-philosophy)
   - [1.1 Understanding Architecture](#11-understanding-fizzys-architecture)
-  - [1.2 UUID Primary Keys & Fixtures](#12-uuid-primary-keys--fixtures)
 - [Part 2: Model Layer Patterns](#part-2-model-layer-patterns)
   - [2.1 Concern Architecture](#21-concern-architecture)
   - [2.2 Intention-Revealing APIs](#22-intention-revealing-apis)
@@ -204,52 +203,6 @@ setup do
 end
 ```
 
-### UUID Primary Keys
-
-It uses UUIDs (UUIDv7, base36-encoded to 25 characters) instead of auto-incrementing integers:
-
-**Why UUIDs:**
-- **Security**: No ID enumeration across tenants
-- **Distributed systems**: Can generate IDs client-side
-- **Merging**: No ID conflicts when combining data
-
-**The Card exception**: Cards use `number` (integer) for user-facing IDs:
-```ruby
-# Card ID: "abc123def456..." (UUID, internal)
-# Card number: 1234 (integer, user-facing)
-
-# In routes and URLs
-card_path(@card)  # => /cards/1234 (uses number, not ID)
-
-# In controllers
-@card = Current.user.accessible_cards.find_by!(number: params[:id])
-```
-
-**Fixture behavior:**
-- Fixture UUIDs are deterministic and always "older" than test-created records
-- `.first` and `.last` work predictably in tests
-
-## 1.2 UUID Primary Keys & Fixtures
-
-### Practical Implications
-
-```ruby
-# ✓ Good: Find cards by number
-def set_card
-  @card = Current.user.accessible_cards.find_by!(number: params[:id])
-end
-
-# ✗ Bad: Don't use regular find for cards
-def set_card
-  @card = Card.find(params[:id])  # Wrong! Cards use number for params
-end
-
-# ✓ Good: Everything else uses UUID find
-def set_board
-  @board = Current.user.boards.find(params[:board_id])
-end
-```
-
 ---
 
 # Part 2: Model Layer Patterns
@@ -2642,10 +2595,10 @@ end
 ```ruby
 class CreateCardArchives < ActiveRecord::Migration[7.1]
   def change
-    create_table :card_archives, id: :uuid do |t|
-      t.references :card, null: false, foreign_key: true, type: :uuid
-      t.references :user, null: false, foreign_key: true, type: :uuid
-      t.references :account, null: false, foreign_key: true, type: :uuid
+    create_table :card_archives do |t|
+      t.references :card, null: false, foreign_key: true
+      t.references :user, null: false, foreign_key: true
+      t.references :account, null: false, foreign_key: true
       t.timestamps
     end
   end
@@ -3094,7 +3047,7 @@ Wrap related operations in transactions.
 
 This documentation covers the core backend patterns and practices used throughout the Rails application:
 
-- **Foundation**: Multi-tenancy via Current context, UUID primary keys
+- **Foundation**: Multi-tenancy via Current context
 - **Models**: Concern-driven architecture, intention-revealing APIs, smart defaults
 - **Controllers**: Thin controllers that delegate to rich models
 - **Jobs**: Ultra-thin jobs following _now/_later pattern

data/data/templates.md

@@ -57,7 +57,7 @@ Launch **6 parallel agents** (one per file), each tasked with rewriting a single
   - **Languages**: Ruby (version from `.ruby-version`), JavaScript/CSS for assets
   - **Runtime**: Ruby + Bundler, `.ruby-version`
   - **Frameworks**: Rails (version), Minitest (recommended)/RSpec, Hotwire/Turbo/Stimulus
-  - **Key Dependencies**: Key gems (solid_queue, solid_cache, pundit, etc.)
+  - **Key Dependencies**: Key gems (solid_queue, solid_cache, etc.)
   - **Configuration**: `database.yml`, `credentials.yml.enc`, `config/environments/`
   - **Build**: Asset pipeline (Propshaft/Sprockets), importmap/esbuild/vite
   - **Platform**: Kamal, Docker, Heroku, etc.
@@ -79,7 +79,7 @@ Launch **6 parallel agents** (one per file), each tasked with rewriting a single
   - **Organization**: `test/` mirroring `app/`, fixtures in `test/fixtures/`
   - **Structure**: `ActiveSupport::TestCase`, `setup` blocks, `test "description"` blocks
   - **Mocking**: `Minitest::Mock`, `stub`, `travel_to` for time
-  - **Fixtures**: YAML fixtures (Rails default), deterministic UUIDs, fixture accessor methods
+  - **Fixtures**: YAML fixtures (Rails default), fixture accessor methods
   - **Test Types**: Model tests, controller tests, integration tests, system tests (Capybara)
   - **Patterns**: `assert_difference`, `assert_changes`, `assert_no_difference`, Current context setup
   - **Coverage**: SimpleCov

data/lib/ariadna/tools/config_manager.rb

@@ -1,3 +1,4 @@
+require "fileutils"
 require "json"
 require_relative "output"
 

data/lib/ariadna/tools/phase_manager.rb

@@ -1,6 +1,7 @@
 require "json"
 require "fileutils"
 require_relative "output"
+require_relative "frontmatter"
 
 module Ariadna
   module Tools

data/lib/ariadna/version.rb

@@ -1,3 +1,3 @@
 module Ariadna
-  VERSION = "1.1.3"
+  VERSION = "1.1.4"
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ariadna
 version: !ruby/object:Gem::Version
-  version: 1.1.3
+  version: 1.1.4
 platform: ruby
 authors:
 - Jorge Alvarez