@chimerai/cli 0.2.73

package/dist/commands/create.js

@@ -0,0 +1,1703 @@
+"use strict";
+/**
+ * Create Command - Generate a new ChimerAI project with selected features
+ * REFACTORED: Uses inline template generators instead of fs.copy()
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createCommand = createCommand;
+const inquirer_1 = __importDefault(require("inquirer"));
+const chalk_1 = __importDefault(require("chalk"));
+const ora_1 = __importDefault(require("ora"));
+const fs_extra_1 = __importDefault(require("fs-extra"));
+const path_1 = __importDefault(require("path"));
+const child_process_1 = require("child_process");
+const templates = __importStar(require("../templates/index.js"));
+const index_js_1 = require("../templates/index.js");
+const utils_js_1 = require("../utils.js");
+const AVAILABLE_FEATURES = [
+    {
+        name: '🔐 Authentication (NextAuth)',
+        value: 'auth',
+        checked: true,
+    },
+    {
+        name: '👥 RBAC System (Users, Roles, Permissions)',
+        value: 'rbac',
+        checked: true,
+    },
+    {
+        name: '🔌 Model Providers Management',
+        value: 'model-providers',
+        checked: true,
+    },
+    {
+        name: '📝 Prompt Template Management',
+        value: 'prompts',
+        checked: true,
+    },
+    {
+        name: '💬 AI Chat Interface',
+        value: 'chat',
+        checked: false,
+    },
+    {
+        name: '🔍 RAG / Vector Store (FAISS)',
+        value: 'rag',
+        checked: false,
+    },
+    {
+        name: '💳 Billing System (Stripe)',
+        value: 'billing',
+        checked: false,
+    },
+    {
+        name: '📊 API Usage Analytics',
+        value: 'analytics',
+        checked: true,
+    },
+    {
+        name: '🎨 Admin Dashboard',
+        value: 'admin',
+        checked: true,
+    },
+];
+async function createCommand(projectName, options) {
+    console.log(chalk_1.default.bold.cyan('\n🚀 Create New ChimerAI Project\n'));
+    // Validate project name
+    if (!projectName) {
+        (0, utils_js_1.handleCliError)('Please provide a project name. Usage: chimerai create <project-name>');
+    }
+    const targetDir = path_1.default.resolve(projectName);
+    // Check if directory exists
+    if (fs_extra_1.default.existsSync(targetDir)) {
+        (0, utils_js_1.handleCliError)(`Directory "${projectName}" already exists`);
+    }
+    let selectedFeatures;
+    if (options.yes) {
+        // Use defaults
+        selectedFeatures = AVAILABLE_FEATURES.filter((f) => f.checked).map((f) => f.value);
+        console.log(chalk_1.default.cyan('Using default feature set...'));
+    }
+    else {
+        // Interactive selection
+        const answers = await inquirer_1.default.prompt([
+            {
+                type: 'checkbox',
+                name: 'features',
+                message: 'Select features to include:',
+                choices: AVAILABLE_FEATURES,
+                pageSize: 15,
+            },
+        ]);
+        selectedFeatures = answers.features;
+    }
+    if (selectedFeatures.length === 0) {
+        (0, utils_js_1.handleCliError)('No features selected');
+    }
+    console.log(chalk_1.default.bold.green('\n✨ Creating project with features:'));
+    selectedFeatures.forEach((f) => {
+        const feature = AVAILABLE_FEATURES.find((feat) => feat.value === f);
+        console.log(chalk_1.default.white(`  ${feature?.name}`));
+    });
+    console.log(chalk_1.default.white(`  📦 Database: ${options.sqlite ? 'SQLite (no Docker needed)' : 'PostgreSQL'}`));
+    console.log('');
+    // Create project
+    await createProject(targetDir, projectName, selectedFeatures, options.sqlite);
+    console.log(chalk_1.default.bold.green('\n✅ Project created successfully!\n'));
+    // Auto-install dependencies if --install flag is set
+    if (options.install) {
+        console.log(chalk_1.default.cyan('\n🚀 Running installation script...\n'));
+        try {
+            // Detect OS and run appropriate install script
+            const isWindows = process.platform === 'win32';
+            const installScript = isWindows ? 'install.bat' : 'bash install.sh';
+            (0, child_process_1.execSync)(installScript, { cwd: targetDir, stdio: 'inherit' });
+            console.log(chalk_1.default.bold.green('\n🎉 Full installation completed!\n'));
+            console.log(chalk_1.default.cyan('You can now run:'));
+            console.log(chalk_1.default.white(`  cd ${projectName}`));
+            console.log(chalk_1.default.white('  npm run dev'));
+            console.log(chalk_1.default.gray('\n  Server will run on http://localhost:3001\n'));
+            console.log(chalk_1.default.yellow('Login with:'));
+            console.log(chalk_1.default.white('  Email: admin@example.com'));
+            console.log(chalk_1.default.white('  Password: admin123\n'));
+        }
+        catch (error) {
+            console.log(chalk_1.default.red('\n❌ Installation failed'));
+            console.log(chalk_1.default.yellow(`You can complete setup manually with: ${process.platform === 'win32' ? '.\\install.bat' : './install.sh'}\n`));
+        }
+    }
+    // Show next steps
+    console.log(chalk_1.default.cyan('Next steps:'));
+    console.log(chalk_1.default.white(`  cd ${projectName}`));
+    if (!options.install) {
+        console.log(chalk_1.default.bold.white('\n  Quick start:'));
+        console.log(chalk_1.default.white('    ./install.bat    (Windows)'));
+        console.log(chalk_1.default.white('    ./install.sh     (Linux/macOS)'));
+        console.log(chalk_1.default.bold.white('\n  Or manually:'));
+        console.log(chalk_1.default.white('    npm install'));
+        console.log(chalk_1.default.white('    docker-compose up -d'));
+        console.log(chalk_1.default.white('    npm run db:push'));
+        console.log(chalk_1.default.white('    npm run db:seed'));
+        console.log(chalk_1.default.white('    npm run dev'));
+    }
+    else {
+        console.log(chalk_1.default.white('  docker-compose up -d'));
+        console.log(chalk_1.default.white('  npm run db:push'));
+        console.log(chalk_1.default.white('  npm run db:seed'));
+        console.log(chalk_1.default.white('  npm run dev'));
+    }
+    console.log(chalk_1.default.gray('\n  Server will run on http://localhost:3001\n'));
+}
+async function createProject(targetDir, projectName, features, sqlite) {
+    const spinner = (0, ora_1.default)('Creating project structure...').start();
+    try {
+        // Create base directory
+        await fs_extra_1.default.ensureDir(targetDir);
+        // 1. Create base Next.js structure
+        spinner.text = 'Setting up Next.js base...';
+        await createBaseStructure(targetDir, projectName, features);
+        // 2. Create package.json
+        spinner.text = 'Generating package.json...';
+        await createPackageJson(targetDir, projectName, features);
+        // 3. Create TypeScript config
+        spinner.text = 'Setting up TypeScript...';
+        await createTsConfig(targetDir);
+        // 4. Create Prisma schema
+        spinner.text = 'Setting up database schema...';
+        await createPrismaSchema(targetDir, features, sqlite);
+        // 5. Create environment files
+        spinner.text = 'Creating environment files...';
+        await createEnvFiles(targetDir, features, sqlite);
+        // 6. Copy feature-specific files
+        spinner.text = 'Adding selected features...';
+        await copyFeatureFiles(targetDir, features);
+        // 7. Create seed script
+        spinner.text = 'Creating database seed...';
+        await createSeedScript(targetDir, features, sqlite);
+        // 8. Create Docker Compose
+        spinner.text = 'Setting up Docker...';
+        await createDockerCompose(targetDir);
+        // 9. Create install scripts
+        spinner.text = 'Creating install scripts...';
+        await createInstallScripts(targetDir);
+        // 10. Create README
+        spinner.text = 'Creating documentation...';
+        await createReadme(targetDir, projectName, features);
+        // 11. Create .chimerai marker file
+        spinner.text = 'Registering project...';
+        const chimeraiMarker = {
+            version: '1.0.0',
+            name: projectName,
+            created: new Date().toISOString().split('T')[0],
+        };
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, '.chimerai'), JSON.stringify(chimeraiMarker, null, 2));
+        // Register in global registry
+        (0, utils_js_1.registerProject)(projectName, targetDir);
+        spinner.succeed(chalk_1.default.green('Project structure created'));
+    }
+    catch (error) {
+        spinner.fail(chalk_1.default.red('Failed to create project'));
+        console.error(error.message);
+        throw error;
+    }
+}
+async function createBaseStructure(targetDir, projectName, features) {
+    // Create base directories
+    const dirs = [
+        'app',
+        'app/api',
+        'components',
+        'components/ui',
+        'lib',
+        'prisma',
+        'public',
+        'styles',
+    ];
+    // Add feature-specific directories
+    if (features.includes('admin')) {
+        dirs.push('app/admin', 'app/admin/settings', 'app/admin/logs');
+    }
+    if (features.includes('chat')) {
+        dirs.push('app/(app)', 'app/(app)/chat', 'components/chat', 'app/api/conversations/[id]');
+    }
+    if (features.includes('auth')) {
+        dirs.push('app/(auth)', 'app/(auth)/login', 'app/api/auth/[...nextauth]');
+    }
+    if (features.includes('rbac')) {
+        dirs.push('app/admin/users', 'app/admin/roles');
+    }
+    if (features.includes('model-providers')) {
+        dirs.push('app/dashboard/providers');
+    }
+    if (features.includes('prompts')) {
+        dirs.push('app/dashboard/prompts', 'app/api/prompts', 'app/api/prompts/[id]');
+    }
+    for (const dir of dirs) {
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, dir));
+    }
+    // Create app/layout.tsx using template generator
+    const layoutContent = features.includes('auth')
+        ? templates.generateAppLayoutWithAuth(projectName)
+        : templates.generateAppLayout(projectName);
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/layout.tsx'), layoutContent);
+    // Create app/page.tsx using template generator
+    const pageContent = templates.generateAppPage();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/page.tsx'), pageContent);
+    // Create globals.css using template generator
+    const globalsCss = templates.generateGlobalsCss();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/globals.css'), globalsCss);
+}
+async function createPackageJson(targetDir, projectName, features) {
+    const dependencies = {
+        next: '^15.0.0',
+        react: '^18.3.1',
+        'react-dom': '^18.3.1',
+        '@prisma/client': '^5.22.0',
+    };
+    const devDependencies = {
+        '@types/node': '^20',
+        '@types/react': '^18',
+        '@types/react-dom': '^18',
+        typescript: '^5',
+        tailwindcss: '^3.4.0',
+        postcss: '^8',
+        autoprefixer: '^10',
+        prisma: '^5.22.0',
+        tsx: '^4.20.6',
+    };
+    // Add feature-specific dependencies
+    if (features.includes('auth')) {
+        dependencies['next-auth'] = '^4.24.10';
+        dependencies['@auth/prisma-adapter'] = '^2.11.1';
+        dependencies['bcryptjs'] = '^2.4.3';
+        dependencies['next-themes'] = '^0.4.4';
+        dependencies['sonner'] = '^1.7.0';
+        devDependencies['@types/bcryptjs'] = '^2.4.6';
+    }
+    // Note: ChimerAI workspace packages are not yet published to npm
+    // For standalone projects, these features will need manual implementation
+    // or you can use the complete starter kit with 'chimerai init'
+    if (features.includes('rbac')) {
+        // dependencies['@chimerai/rbac-core'] = 'workspace:*'; // Not available standalone yet
+    }
+    if (features.includes('model-providers')) {
+        // dependencies['@chimerai/model-providers'] = 'workspace:*'; // Not available standalone yet
+    }
+    if (features.includes('admin')) {
+        // dependencies['@chimerai/admin-ui'] = 'workspace:*'; // Not available standalone yet
+    }
+    if (features.includes('chat')) {
+        dependencies['react-markdown'] = '^9.0.0';
+        dependencies['remark-gfm'] = '^4.0.0';
+    }
+    if (features.includes('billing')) {
+        // dependencies['@chimerai/billing'] = 'workspace:*'; // Not available standalone yet
+        dependencies['stripe'] = '^14.0.0';
+    }
+    // UI dependencies
+    dependencies['@radix-ui/react-dialog'] = '^1.0.5';
+    dependencies['@radix-ui/react-dropdown-menu'] = '^2.0.6';
+    dependencies['@radix-ui/react-slot'] = '^1.2.4';
+    dependencies['class-variance-authority'] = '^0.7.0';
+    dependencies['clsx'] = '^2.0.0';
+    dependencies['tailwind-merge'] = '^2.2.0';
+    dependencies['lucide-react'] = '^0.294.0';
+    const packageJson = {
+        name: projectName.toLowerCase().replace(/\s+/g, '-'),
+        version: '0.1.0',
+        private: true,
+        scripts: {
+            dev: 'next dev -p 3001',
+            build: 'prisma generate && next build',
+            start: 'next start',
+            lint: 'next lint',
+            postinstall: 'prisma generate',
+            'db:generate': 'prisma generate',
+            'db:push': 'prisma db push',
+            'db:seed': 'tsx prisma/seed.ts',
+            'db:studio': 'prisma studio',
+        },
+        dependencies,
+        devDependencies,
+        prisma: {
+            seed: 'tsx prisma/seed.ts',
+        },
+    };
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'package.json'), JSON.stringify(packageJson, null, 2));
+}
+async function createTsConfig(targetDir) {
+    // Create next.config.js using template generator
+    const nextConfig = templates.generateNextConfig();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'next.config.js'), nextConfig);
+    // Create tsconfig.json using template generator
+    const tsConfig = templates.generateTsConfig();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'tsconfig.json'), tsConfig);
+    // Create tailwind.config.js using template generator
+    const tailwindConfig = templates.generateTailwindConfig();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'tailwind.config.js'), tailwindConfig);
+    // Create postcss.config.js using template generator
+    const postcssConfig = templates.generatePostcssConfig();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'postcss.config.js'), postcssConfig);
+}
+async function createPrismaSchema(targetDir, features, sqlite) {
+    const dbProvider = sqlite ? 'sqlite' : 'postgresql';
+    let schemaContent = `generator client {
+  provider = "prisma-client-js"
+}
+
+datasource db {
+  provider = "${dbProvider}"
+  url      = env("DATABASE_URL")
+}
+
+`;
+    // Add User model if auth is included
+    if (features.includes('auth')) {
+        schemaContent += `model User {
+  id            String    @id @default(cuid())
+  name          String?
+  email         String?   @unique
+  emailVerified DateTime?
+  image         String?
+  password      String?
+  createdAt     DateTime  @default(now())
+  updatedAt     DateTime  @updatedAt
+
+  accounts      Account[]
+  sessions      Session[]
+`;
+        if (features.includes('rbac')) {
+            schemaContent += `  roles         UserRole[]
+`;
+        }
+        // Provider relations (ALWAYS included)
+        schemaContent += `  providers     Provider[]  @relation("CreatedProviders")
+  apiUsage      ApiUsage[]
+  apiKeys       ApiKey[]
+`;
+        if (features.includes('rbac')) {
+            schemaContent += `  modelAccess   ModelAccess[]
+  auditLogs     AuditLog[]
+`;
+        }
+        if (features.includes('chat')) {
+            schemaContent += `  conversations Conversation[]
+`;
+        }
+        schemaContent += `}
+
+model Account {
+  id                String  @id @default(cuid())
+  userId            String
+  type              String
+  provider          String
+  providerAccountId String
+  refresh_token     String? @db.Text
+  access_token      String? @db.Text
+  expires_at        Int?
+  token_type        String?
+  scope             String?
+  id_token          String? @db.Text
+  session_state     String?
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@unique([provider, providerAccountId])
+}
+
+model Session {
+  id           String   @id @default(cuid())
+  sessionToken String   @unique
+  userId       String
+  expires      DateTime
+  user         User     @relation(fields: [userId], references: [id], onDelete: Cascade)
+}
+
+model VerificationToken {
+  identifier String
+  token      String   @unique
+  expires    DateTime
+
+  @@unique([identifier, token])
+}
+
+model ApiKey {
+  id          String    @id @default(cuid())
+  name        String
+  keyHash     String    @unique
+  userId      String
+  scopes      String[]  @default([])
+  revoked     Boolean   @default(false)
+  lastUsedAt  DateTime?
+  expiresAt   DateTime?
+  createdAt   DateTime  @default(now())
+  updatedAt   DateTime  @updatedAt
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@index([userId])
+}
+
+`;
+    }
+    // Add RBAC models
+    if (features.includes('rbac')) {
+        schemaContent += `model Role {
+  id          String     @id @default(cuid())
+  name        String     @unique
+  description String?
+  permissions String[]
+  createdAt   DateTime   @default(now())
+  updatedAt   DateTime   @updatedAt
+
+  users       UserRole[]
+}
+
+model UserRole {
+  userId String
+  roleId String
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+  role Role @relation(fields: [roleId], references: [id], onDelete: Cascade)
+
+  @@id([userId, roleId])
+}
+
+`;
+    }
+    // ── PROVIDER MODELS (ALWAYS included — core infrastructure) ──────────
+    schemaContent += `// === Provider Management (Core Infrastructure) ===
+
+model Provider {
+  id          String   @id @default(cuid())
+  name        String
+  type        String   // "openai", "anthropic", "ollama", "google", "custom"
+  description String?
+  baseUrl     String?
+  apiKey      String?  @db.Text  // AES-256-GCM encrypted, null for keyless providers (e.g. Ollama)
+  config      Json     @default("{}")
+  status      String   @default("active")
+  isDefault   Boolean  @default(false)
+  priority    Int      @default(0)
+  tags        String[]
+  createdAt   DateTime @default(now())
+  updatedAt   DateTime @updatedAt
+  createdBy   String?
+
+  models        Model[]
+  health        ProviderHealth?
+  apiUsage      ApiUsage[]
+${features.includes('chat') ? '  conversations Conversation[]\n' : ''}${features.includes('auth') ? '  creator       User?    @relation("CreatedProviders", fields: [createdBy], references: [id])\n' : ''}
+  @@index([type])
+  @@index([status])
+}
+
+model Model {
+  id              String   @id @default(cuid())
+  providerId      String
+  modelId         String   // e.g. "gpt-4", "claude-3-sonnet"
+  name            String
+  description     String?
+  capabilities    String[] // ["chat", "embedding", "image", "vision"]
+  contextWindow   Int      @default(4096)
+  maxOutputTokens Int?
+  inputCost       Float    @default(0)  // $ per 1M tokens
+  outputCost      Float    @default(0)
+  isAvailable     Boolean  @default(true)
+  isDeprecated    Boolean  @default(false)
+
+  provider Provider @relation(fields: [providerId], references: [id], onDelete: Cascade)
+
+  @@unique([providerId, modelId])
+  @@index([providerId])
+}
+
+model ProviderHealth {
+  id                  String   @id @default(cuid())
+  providerId          String   @unique
+  status              String   @default("unknown") // "healthy", "degraded", "unhealthy"
+  responseTime        Int?     // ms
+  lastCheck           DateTime @default(now())
+  errorMessage        String?
+  modelsAvailable     Int      @default(0)
+  chatAvailable       Boolean  @default(false)
+  embeddingAvailable  Boolean  @default(false)
+  apiKeyValid         Boolean  @default(false)
+
+  provider Provider @relation(fields: [providerId], references: [id], onDelete: Cascade)
+}
+
+model ApiUsage {
+  id               String   @id @default(cuid())
+  userId           String
+  providerId       String?
+  model            String
+  endpoint         String
+  promptTokens     Int      @default(0)
+  completionTokens Int      @default(0)
+  totalTokens      Int      @default(0)
+  tokensUsed       Int      @default(0)
+  creditsUsed      Int      @default(0)
+  cost             Float    @default(0)
+  success          Boolean  @default(true)
+  errorMessage     String?
+  responseTime     Int      @default(0) // ms
+  createdAt        DateTime @default(now())
+
+${features.includes('auth') ? '  user     User      @relation(fields: [userId], references: [id], onDelete: Cascade)\n' : ''}  provider Provider? @relation(fields: [providerId], references: [id], onDelete: SetNull)
+
+  @@index([userId])
+  @@index([providerId])
+  @@index([createdAt])
+}
+
+`;
+    // Add ModelAccess when auth + rbac are enabled (for requireModelPermission)
+    if (features.includes('auth') && features.includes('rbac')) {
+        schemaContent += `model ModelAccess {
+  id        String   @id @default(cuid())
+  userId    String
+  modelId   String
+  granted   Boolean  @default(true)
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@unique([userId, modelId])
+  @@index([userId])
+  @@index([modelId])
+}
+
+model AuditLog {
+  id         String   @id @default(cuid())
+  action     String
+  userId     String
+  targetType String?
+  targetId   String?
+  metadata   Json?
+  ipAddress  String?
+  createdAt  DateTime @default(now())
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@index([userId])
+  @@index([action])
+  @@index([createdAt])
+}
+
+`;
+    }
+    // Add Prompt Templates
+    if (features.includes('prompts')) {
+        schemaContent += `model PromptTemplate {
+  id          String   @id @default(cuid())
+  name        String   @unique
+  category    String
+  description String?
+  content     String   @db.Text
+  variables   String[]
+  language    String   @default("en")
+  version     Int      @default(1)
+  isActive    Boolean  @default(true)
+  isDefault   Boolean  @default(false)
+  tags        String[]
+  metadata    Json?
+  createdBy   String?
+  createdAt   DateTime @default(now())
+  updatedAt   DateTime @updatedAt
+
+  @@index([category])
+  @@index([isActive])
+  @@index([isDefault])
+}
+
+`;
+    }
+    // Add Conversation & Message models for chat feature
+    if (features.includes('chat')) {
+        schemaContent += `model Conversation {
+  id         String    @id @default(cuid())
+  userId     String
+  title      String    @default("New Chat")
+  model      String?
+  providerId String?
+  metadata   Json?
+  archived   Boolean   @default(false)
+  createdAt  DateTime  @default(now())
+  updatedAt  DateTime  @updatedAt
+
+${features.includes('auth') ? '  user     User      @relation(fields: [userId], references: [id], onDelete: Cascade)\n' : ''}  provider Provider? @relation(fields: [providerId], references: [id], onDelete: SetNull)
+  messages Message[]
+
+  @@index([userId])
+  @@index([archived])
+  @@index([providerId])
+}
+
+model Message {
+  id             String       @id @default(cuid())
+  conversationId String
+  role           String
+  content        String       @db.Text
+  model          String?
+  tokens         Int?
+  createdAt      DateTime     @default(now())
+
+  conversation   Conversation @relation(fields: [conversationId], references: [id], onDelete: Cascade)
+
+  @@index([conversationId])
+}
+
+`;
+    }
+    // SystemSetting is always included (used by admin settings + app-settings API)
+    schemaContent += `model SystemSetting {
+  key       String   @id
+  value     String   @db.Text
+  updatedAt DateTime @updatedAt
+}
+`;
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'prisma/schema.prisma'), schemaContent);
+    // Apply SQLite compatibility transform if needed
+    if (sqlite) {
+        const schemaPath = path_1.default.join(targetDir, 'prisma/schema.prisma');
+        const schema = await fs_extra_1.default.readFile(schemaPath, 'utf-8');
+        const transformed = transformSchemaForSqlite(schema);
+        if (transformed !== schema) {
+            await fs_extra_1.default.writeFile(schemaPath, transformed);
+        }
+    }
+}
+/**
+ * Transform PostgreSQL-specific types to SQLite-compatible equivalents.
+ * - Removes @db.Text (SQLite strings are unbounded)
+ * - Converts Json/Json? → String/String?
+ * - Converts String[] → String (arrays not supported in SQLite)
+ * - Fixes array defaults: @default(["chat"]) → @default("chat")
+ */
+function transformSchemaForSqlite(schema) {
+    let s = schema;
+    // Remove @db.Text (SQLite strings are unbounded)
+    s = s.replace(/\s+@db\.Text/g, '');
+    // Convert Json/Json? → String/String? with proper defaults
+    s = s.replace(/(\s+)Json(\??)(\s+)/g, '$1String$2$3');
+    // Convert array defaults BEFORE replacing String[] → String
+    // e.g. @default(["chat","vision"]) → @default("chat,vision")
+    //      @default([])                → @default("[]")
+    s = s.replace(/@default\(\[([^\]]*)\]\)/g, (_match, inner) => {
+        const trimmed = inner.trim();
+        if (!trimmed)
+            return '@default("[]")'; // empty array → "[]"
+        const items = trimmed
+            .replace(/"/g, '')
+            .split(',')
+            .map((x) => x.trim())
+            .join(',');
+        return `@default("${items}")`;
+    });
+    // Convert String[] → String, adding @default("[]") if none exists
+    s = s.replace(/^(\s+\w+\s+)String\[\](.*)$/gm, (_match, prefix, rest) => {
+        const hasDefault = /@default\(/.test(rest);
+        return hasDefault ? `${prefix}String${rest}` : `${prefix}String${rest}  @default("[]")`;
+    });
+    return s;
+}
+async function createEnvFiles(targetDir, features, sqlite) {
+    // Generate random 32-byte hex encryption key
+    const encryptionKey = Array.from({ length: 64 }, () => '0123456789abcdef'.charAt(Math.floor(Math.random() * 16))).join('');
+    // Generate random internal API token
+    const internalToken = 'chimerai_internal_' +
+        Array.from({ length: 64 }, () => '0123456789abcdef'.charAt(Math.floor(Math.random() * 16))).join('');
+    // Generate a random NextAuth secret (32 bytes hex = 64 chars)
+    const nextAuthSecret = Array.from({ length: 64 }, () => '0123456789abcdef'.charAt(Math.floor(Math.random() * 16))).join('');
+    const dbUrl = sqlite ? 'file:./dev.db' : 'postgresql://postgres:postgres@localhost:5432/myapp_db';
+    let envContent = `# Database${sqlite ? ' (SQLite — no Docker needed)' : ''}
+DATABASE_URL=${dbUrl}
+
+`;
+    if (features.includes('auth')) {
+        envContent += `# Authentication
+NEXTAUTH_SECRET=${nextAuthSecret}
+NEXTAUTH_URL=http://localhost:3000
+
+`;
+    }
+    // ── Provider Infrastructure (ALWAYS included — core) ──────────
+    envContent += `# Provider Encryption (AES-256-GCM for API key storage)
+PROVIDER_ENCRYPTION_KEY=${encryptionKey}
+
+# Internal API Token (AI-Service ↔ Frontend communication)
+INTERNAL_API_TOKEN=${internalToken}
+
+# AI Service URL
+AI_SERVICE_URL=http://localhost:8002
+
+# AI Providers (Optional — can also be added via Provider Management UI)
+OPENAI_API_KEY=
+ANTHROPIC_API_KEY=
+AZURE_OPENAI_API_KEY=
+AZURE_OPENAI_ENDPOINT=
+
+`;
+    if (features.includes('billing')) {
+        envContent += `# Stripe
+STRIPE_PUBLISHABLE_KEY=
+STRIPE_SECRET_KEY=
+STRIPE_WEBHOOK_SECRET=
+
+`;
+    }
+    // Widget / External Integration
+    envContent += `# CORS / Widget Configuration (External Chat Embedding)
+# Comma-separated list of allowed origins for cross-origin requests (e.g. Blazor, Vue, React embeds)
+# Use * to allow all origins (development only!)
+# Example: CORS_ALLOWED_ORIGINS=https://my-blog.com,https://my-shop.com
+CORS_ALLOWED_ORIGINS=
+# Legacy alias (still supported): WIDGET_ALLOWED_ORIGINS
+
+# Upstash Redis (optional — for rate-limiting in serverless/multi-instance)
+# Without this, rate-limiting uses in-memory fallback (fine for single-instance)
+# UPSTASH_REDIS_REST_URL=
+# UPSTASH_REDIS_REST_TOKEN=
+
+`;
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, '.env'), envContent);
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, '.env.example'), envContent
+        .replace(encryptionKey, 'your-64-char-hex-key')
+        .replace(nextAuthSecret, 'your-secret-key-change-in-production')
+        .replace(internalToken, 'chimerai_internal_your-token'));
+}
+async function copyFeatureFiles(targetDir, features) {
+    if (features.includes('auth')) {
+        // Create auth routes and pages using template generators
+        const nextAuthRoute = templates.generateNextAuthRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/auth/[...nextauth]'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/auth/[...nextauth]/route.ts'), nextAuthRoute);
+        const loginPage = templates.generateLoginPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/auth/signin'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/auth/signin/page.tsx'), loginPage);
+        const sessionProvider = templates.generateSessionProvider();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'components'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/SessionProvider.tsx'), sessionProvider);
+        const authLib = templates.generateAuthLib();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/auth.ts'), authLib);
+        const nextAuthTypes = templates.generateNextAuthTypes();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'types'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'types/next-auth.d.ts'), nextAuthTypes);
+        // Dashboard page + layout (authenticated landing page after login)
+        const dashboardPage = templates.generateDashboardPage(features);
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/dashboard'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/page.tsx'), dashboardPage);
+        const dashboardLayout = templates.generateDashboardLayout();
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/layout.tsx'), dashboardLayout);
+        // Dashboard profile page
+        const profilePage = templates.generateProfilePage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/dashboard/profile'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/profile/page.tsx'), profilePage);
+        // Dashboard settings page
+        const settingsPage = templates.generateSettingsPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/dashboard/settings'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/settings/page.tsx'), settingsPage);
+        // User profile API route
+        const userProfileRoute = templates.generateUserProfileRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/user/profile'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/user/profile/route.ts'), userProfileRoute);
+        // GDPR self-service routes
+        const gdprExportRoute = templates.generateGdprDataExportRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/user/data-export'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/user/data-export/route.ts'), gdprExportRoute);
+        const gdprDeleteRoute = templates.generateGdprAccountDeleteRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/user/account'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/user/account/route.ts'), gdprDeleteRoute);
+    }
+    // Health check endpoint (used by Docker healthcheck and monitoring)
+    const healthRoute = templates.generateHealthRoute();
+    // Next.js middleware (security headers + CORS for widget endpoints)
+    const middleware = templates.generateMiddleware();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'middleware.ts'), middleware);
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/health'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/health/route.ts'), healthRoute);
+    // Create Prisma utilities using template generators
+    const prismaLib = templates.generatePrismaLib();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/prisma.ts'), prismaLib);
+    // ── Provider Infrastructure (ALWAYS generated — core) ─────────────
+    // Encryption library (AES-256-GCM)
+    const encryptionLib = templates.generateEncryptionLib();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/encryption.ts'), encryptionLib);
+    // API key auth helper
+    const apiKeyAuthLib = templates.generateApiKeyAuthLib();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/api-key-auth.ts'), apiKeyAuthLib);
+    // API protection middleware (auth checks, error responses, usage tracking)
+    // Only generated when auth is enabled (imports @/lib/auth)
+    if (features.includes('auth')) {
+        const apiProtectionLib = templates.generateApiProtectionLib();
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/api-protection.ts'), apiProtectionLib);
+        // Dual-auth resolve helper (session + API key)
+        const resolveAuth = templates.generateResolveAuth();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib/auth'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/auth/resolve-auth.ts'), resolveAuth);
+    }
+    // ── Widget Infrastructure (embeddable chat for external apps) ──────
+    // Rate limiter (supports both session and API-key tiers)
+    const rateLimiter = templates.generateRateLimiter();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/rate-limit.ts'), rateLimiter);
+    // Widget bundle (Web Component + Shadow DOM, self-contained JS)
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'public/widget'));
+    const widgetBundle = templates.generateWidgetBundle();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'public/widget/chat.js'), widgetBundle);
+    const widgetLoader = templates.generateWidgetLoader();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'public/widget/loader.js'), widgetLoader);
+    // API-Key management routes
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/v1/api-keys'));
+    const apiKeysRoute = templates.generateApiKeysRoute();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/v1/api-keys/route.ts'), apiKeysRoute);
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/v1/api-keys/[id]'));
+    const apiKeyIdRoute = templates.generateApiKeyIdRoute();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/v1/api-keys/[id]/route.ts'), apiKeyIdRoute);
+    // API-Key management page (settings UI)
+    if (features.includes('auth')) {
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/(app)/settings/api-keys'));
+        const apiKeyPage = templates.generateApiKeyManagementPage();
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/(app)/settings/api-keys/page.tsx'), apiKeyPage);
+    }
+    // Notify provider change utility
+    const notifyLib = templates.generateNotifyProviderChangeLib();
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/notify-provider-change.ts'), notifyLib);
+    // Provider CRUD route — /api/providers
+    const providerCrudRoute = templates.generateProviderCrudRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/providers'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/providers/route.ts'), providerCrudRoute);
+    // Provider [id] route — /api/providers/[id]
+    const providerIdRoute = templates.generateProviderIdRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/providers/[id]'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/providers/[id]/route.ts'), providerIdRoute);
+    // Provider test route — /api/providers/[id]/test
+    const providerTestRoute = templates.generateProviderTestRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/providers/[id]/test'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/providers/[id]/test/route.ts'), providerTestRoute);
+    // Provider sync route — /api/providers/[id]/sync
+    const providerSyncRoute = templates.generateProviderSyncRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/providers/[id]/sync'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/providers/[id]/sync/route.ts'), providerSyncRoute);
+    // Internal providers route — /api/internal/providers
+    const internalProvidersRoute = templates.generateInternalProvidersRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/internal/providers'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/internal/providers/route.ts'), internalProvidersRoute);
+    // Internal provider [id] route — /api/internal/providers/[id]
+    const internalProviderIdRoute = templates.generateInternalProviderIdRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/internal/providers/[id]'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/internal/providers/[id]/route.ts'), internalProviderIdRoute);
+    // Internal usage route — /api/internal/providers/[id]/usage
+    const internalUsageRoute = templates.generateInternalProviderUsageRoute();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/internal/providers/[id]/usage'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/internal/providers/[id]/usage/route.ts'), internalUsageRoute);
+    // Provider Management page (always generated)
+    const providersPage = templates.generateModelProvidersPage();
+    await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/dashboard/providers'));
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/providers/page.tsx'), providersPage);
+    if (features.includes('admin')) {
+        // Admin layout with session check + admin role guard
+        const adminLayout = templates.generateAdminLayout();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/admin'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/layout.tsx'), adminLayout);
+        const adminDashboard = templates.generateAdminDashboardPage();
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/page.tsx'), adminDashboard);
+        const adminUsers = templates.generateAdminUsersPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/admin/users'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/users/page.tsx'), adminUsers);
+        const adminRoles = templates.generateAdminRolesPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/admin/roles'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/roles/page.tsx'), adminRoles);
+        // Admin settings page
+        const adminSettings = templates.generateAdminSettingsPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/admin/settings'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/settings/page.tsx'), adminSettings);
+        // Audit log helper utility
+        const auditLogHelper = templates.generateAuditLogHelper();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/audit.ts'), auditLogHelper);
+        // Admin audit logs page
+        const adminLogs = templates.generateAdminLogsPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/admin/logs'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/admin/logs/page.tsx'), adminLogs);
+        // Audit logs API route
+        const auditLogsRoute = templates.generateAuditLogRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/audit-logs'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/audit-logs/route.ts'), auditLogsRoute);
+        // Create admin API routes
+        const adminUsersRoute = templates.generateAdminUsersRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/users'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/users/route.ts'), adminUsersRoute);
+        const adminUsersIdRoute = templates.generateAdminUsersIdRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/users/[id]'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/users/[id]/route.ts'), adminUsersIdRoute);
+        const adminRolesRoute = templates.generateAdminRolesRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/roles'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/roles/route.ts'), adminRolesRoute);
+        const adminRolesIdRoute = templates.generateAdminRolesIdRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/roles/[id]'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/roles/[id]/route.ts'), adminRolesIdRoute);
+        // Admin settings API route (GET, PUT)
+        const adminSettingsRoute = templates.generateAdminSettingsRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/admin/settings'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/admin/settings/route.ts'), adminSettingsRoute);
+        // Public app-settings API route (used by useAppName hook)
+        const appSettingsRoute = templates.generateAppSettingsRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/app-settings'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/app-settings/route.ts'), appSettingsRoute);
+        // useAppName client hook
+        const useAppNameHook = templates.generateUseAppNameHook();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/use-app-name.ts'), useAppNameHook);
+        // ── RBAC Permission utilities (required by admin API routes) ───
+        const permissionsLib = `/**
+ * Permission utility functions
+ * Handles permission checks and role-based access control
+ */
+
+export const AVAILABLE_PERMISSIONS = [
+  'users:read',
+  'users:write',
+  'users:delete',
+  'roles:read',
+  'roles:write',
+  'roles:delete',
+  'settings:read',
+  'settings:write',
+  'admin:*',
+] as const;
+
+export type Permission = typeof AVAILABLE_PERMISSIONS[number];
+
+interface User {
+  id: string;
+  email: string;
+  roles?: Array<{ permissions: string[] }>;
+}
+
+export function hasPermission(user: User | null, permission: string): boolean {
+  if (!user || !user.roles) return false;
+  const allPermissions = user.roles.flatMap(role => role.permissions || []);
+
+  // Tier 1: Super-Wildcard — '*' matcht ALLES
+  if (allPermissions.includes('*')) return true;
+
+  // Tier 2: Kategorie-Wildcard — 'admin:*' matcht 'admin:users:read', 'admin:roles:write', etc.
+  for (const perm of allPermissions) {
+    if (perm.endsWith(':*')) {
+      const prefix = perm.slice(0, -1); // 'admin:*' → 'admin:'
+      if (permission.startsWith(prefix)) return true;
+    }
+  }
+
+  // Tier 3: Exakter Match
+  return allPermissions.includes(permission);
+}
+
+export function hasAnyPermission(user: User | null, permissions: string[]): boolean {
+  if (!user) return false;
+  return permissions.some(permission => hasPermission(user, permission));
+}
+
+export function hasAllPermissions(user: User | null, permissions: string[]): boolean {
+  if (!user) return false;
+  return permissions.every(permission => hasPermission(user, permission));
+}
+
+export function getUserPermissions(user: User | null): string[] {
+  if (!user || !user.roles) return [];
+  return [...new Set(user.roles.flatMap(role => role.permissions || []))];
+}
+
+export function isValidPermission(permission: string): boolean {
+  return AVAILABLE_PERMISSIONS.includes(permission as Permission);
+}
+`;
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/permissions.ts'), permissionsLib);
+        const requirePermissionLib = `import { getServerSession } from 'next-auth';
+import { NextResponse } from 'next/server';
+import { authOptions } from '@/lib/auth';
+import { hasPermission } from '@/lib/permissions';
+
+/**
+ * Server-side permission check for API routes
+ * Returns NextResponse with 401/403 if check fails, null if OK
+ */
+export async function requirePermission(permission: string) {
+  const session = await getServerSession(authOptions);
+
+  if (!session || !session.user) {
+    return NextResponse.json(
+      { error: 'Unauthorized - Please sign in' },
+      { status: 401 }
+    );
+  }
+
+  const user = await getServerSessionWithPermissions();
+
+  if (!user || !hasPermission(user as any, permission)) {
+    return NextResponse.json(
+      { error: \`Forbidden - Required permission: \${permission}\` },
+      { status: 403 }
+    );
+  }
+
+  return null;
+}
+
+async function getServerSessionWithPermissions() {
+  const session = await getServerSession(authOptions);
+  if (!session?.user?.email) return null;
+
+  const { prisma } = await import('@/lib/prisma');
+  const user = await prisma.user.findUnique({
+    where: { email: session.user.email },
+    include: {
+      roles: {
+        select: {
+          role: {
+            select: {
+              id: true,
+              name: true,
+              permissions: true
+            }
+          }
+        }
+      }
+    }
+  });
+
+  if (!user) return null;
+
+  // Flatten UserRole[] → { permissions: string[] }[]
+  return {
+    ...user,
+    roles: (user.roles as any[]).map((ur: any) => ur.role),
+  };
+}
+`;
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib/auth'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/auth/require-permission.ts'), requirePermissionLib);
+    }
+    if (features.includes('prompts')) {
+        const promptsPage = templates.generatePromptManagementPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/dashboard/prompts'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/dashboard/prompts/page.tsx'), promptsPage);
+        // Prompts API routes
+        const promptsRoute = templates.generatePromptsRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/prompts'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/prompts/route.ts'), promptsRoute);
+        const promptsIdRoute = templates.generatePromptsIdRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/prompts/[id]'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/prompts/[id]/route.ts'), promptsIdRoute);
+    }
+    if (features.includes('chat')) {
+        // Modular chat components (useChat hook + individual components)
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'components/chat'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/use-chat.ts'), templates.generateUseChatHook());
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/chat-message.tsx'), templates.generateChatMessage());
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/chat-input.tsx'), templates.generateChatInput());
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/chat-sidebar.tsx'), templates.generateChatSidebar());
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/model-selector.tsx'), templates.generateModelSelector());
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'components/chat/index.ts'), [
+            "export { useChat } from './use-chat';",
+            "export { ChatMessage } from './chat-message';",
+            "export { ChatInput } from './chat-input';",
+            "export { ChatSidebar } from './chat-sidebar';",
+            "export { ModelSelector } from './model-selector';",
+            "export type { ChatMessageData, MessageActions, ConversationItem, ModelOption } from './use-chat';",
+        ].join('\n') + '\n');
+        // Chat page
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/(app)/chat'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/(app)/chat/page.tsx'), templates.generateChatPage());
+        // API routes
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/v1/chat/stream'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/v1/chat/stream/route.ts'), templates.generateChatStreamRouteWithPersistence());
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/conversations'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/conversations/route.ts'), templates.generateConversationsRoute());
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/conversations/[id]'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/conversations/[id]/route.ts'), templates.generateConversationDetailRoute());
+        // Models listing route (used by ModelSelector in chat — session-only, internal)
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/models'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/models/route.ts'), templates.generateModelsRoute());
+        // Public v1 models route (dual-auth: session OR API-key, for widgets/external apps)
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/v1/models'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/v1/models/route.ts'), templates.generateV1ModelsRoute());
+    }
+    // ── Billing / Stripe (when selected) ────────────────────────────
+    if (features.includes('billing')) {
+        const stripeLib = templates.generateStripeLib();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/stripe.ts'), stripeLib);
+        const billingPage = templates.generateBillingPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/billing'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/billing/page.tsx'), billingPage);
+        const checkoutRoute = templates.generateCheckoutRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/billing/checkout'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/billing/checkout/route.ts'), checkoutRoute);
+        const portalRoute = templates.generatePortalRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/billing/portal'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/billing/portal/route.ts'), portalRoute);
+        const subscriptionRoute = templates.generateSubscriptionRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/billing/subscription'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/billing/subscription/route.ts'), subscriptionRoute);
+        const stripeWebhook = templates.generateStripeWebhookRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/webhooks/stripe'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/webhooks/stripe/route.ts'), stripeWebhook);
+    }
+    // ── RAG / Vector Store (when selected) ──────────────────────────
+    if (features.includes('rag')) {
+        const ragLib = templates.generateRagLib();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'lib'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'lib/rag.ts'), ragLib);
+        const ragPage = templates.generateRagPage();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/rag'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/rag/page.tsx'), ragPage);
+        const ragUploadRoute = templates.generateRagUploadRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/rag'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/rag/route.ts'), ragUploadRoute);
+        const ragQueryRoute = templates.generateRagQueryRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/rag/query'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/rag/query/route.ts'), ragQueryRoute);
+        const ragStatsRoute = templates.generateRagStatsRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/rag/stats'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/rag/stats/route.ts'), ragStatsRoute);
+        const ragClearRoute = templates.generateRagClearRoute();
+        await fs_extra_1.default.ensureDir(path_1.default.join(targetDir, 'app/api/rag/clear'));
+        await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'app/api/rag/clear/route.ts'), ragClearRoute);
+    }
+}
+async function createSeedScript(targetDir, features, sqlite) {
+    // Generate seed script with feature-specific configuration
+    const seedScript = `import { PrismaClient } from '@prisma/client';
+import * as bcrypt from 'bcryptjs';
+import crypto from 'crypto';
+
+const prisma = new PrismaClient();
+
+// ── Encryption helpers (same as lib/encryption.ts) ──────────────
+function getKey(): Buffer {
+  const key = process.env.PROVIDER_ENCRYPTION_KEY;
+  if (!key) throw new Error('PROVIDER_ENCRYPTION_KEY required for seeding');
+  if (key.length === 64 && /^[0-9a-fA-F]+$/.test(key)) {
+    return Buffer.from(key, 'hex');
+  }
+  return crypto.createHash('sha256').update(key).digest();
+}
+
+function encrypt(text: string): string {
+  if (!text) return '';
+  const key = getKey();
+  const iv = crypto.randomBytes(16);
+  const cipher = crypto.createCipheriv('aes-256-gcm', key, iv, { authTagLength: 16 });
+  let encrypted = cipher.update(text, 'utf8', 'base64');
+  encrypted += cipher.final('base64');
+  const authTag = cipher.getAuthTag();
+  return iv.toString('base64') + ':' + authTag.toString('base64') + ':' + encrypted;
+}
+// ────────────────────────────────────────────────────────────────
+
+async function main() {
+  console.log('🌱 Seeding database...');
+
+  // Create default admin user
+  const hashedPassword = await bcrypt.hash('admin123', 10);
+  const admin = await prisma.user.upsert({
+    where: { email: 'admin@example.com' },
+    update: {},
+    create: {
+      email: 'admin@example.com',
+      name: 'Admin User',
+      password: hashedPassword,
+    },
+  });
+
+  console.log('✅ Admin user created: admin@example.com / admin123');
+${features.includes('rbac')
+        ? `
+${sqlite
+            ? `  // Create default roles (SQLite-compatible: individual upserts)
+  for (const role of [
+    { name: 'admin', description: 'Full system access', permissions: JSON.stringify(['*']) },
+    { name: 'user', description: 'Regular user access', permissions: JSON.stringify(['chat:read', 'chat:write', 'profile:read']) },
+    { name: 'viewer', description: 'Read-only access', permissions: JSON.stringify(['chat:read']) },
+  ]) {
+    await prisma.role.upsert({
+      where: { name: role.name },
+      update: {},
+      create: role,
+    });
+  }`
+            : `  // Create default roles
+  await prisma.role.createMany({
+    data: [
+      {
+        name: 'admin',
+        description: 'Full system access',
+        permissions: ['*'],
+      },
+      {
+        name: 'user',
+        description: 'Regular user access',
+        permissions: ['chat:read', 'chat:write', 'profile:read'],
+      },
+      {
+        name: 'viewer',
+        description: 'Read-only access',
+        permissions: ['chat:read'],
+      },
+    ],
+    skipDuplicates: true,
+  });`}
+
+  console.log('✅ Default roles created');
+
+  // Assign admin role to admin user
+  const adminRole = await prisma.role.findUnique({ where: { name: 'admin' } });
+  if (adminRole) {
+    await prisma.userRole.upsert({
+      where: { userId_roleId: { userId: admin.id, roleId: adminRole.id } },
+      update: {},
+      create: { userId: admin.id, roleId: adminRole.id },
+    });
+    console.log('✅ Admin user assigned admin role');
+  }
+`
+        : ''}
+  // ── Seed Providers (if API keys are in .env) ────────────────────
+  const openaiKey = process.env.OPENAI_API_KEY;
+  const anthropicKey = process.env.ANTHROPIC_API_KEY;
+
+  if (openaiKey) {
+    const provider = await prisma.provider.upsert({
+      where: { id: 'seed-openai' },
+      update: {},
+      create: {
+        id: 'seed-openai',
+        name: 'OpenAI',
+        type: 'openai',
+        description: 'OpenAI API (seeded from .env)',
+        baseUrl: 'https://api.openai.com/v1',
+        apiKey: encrypt(openaiKey),
+        config: ${sqlite ? `JSON.stringify({ defaultModel: 'gpt-4o-mini' })` : `{ defaultModel: 'gpt-4o-mini' }`},
+        status: 'active',
+        isDefault: true,
+        priority: 0,
+        createdBy: admin.id,
+      },
+    });
+
+    // Create default OpenAI models
+${sqlite
+        ? `    for (const m of [
+      { providerId: provider.id, modelId: 'gpt-4o', name: 'GPT-4o', capabilities: JSON.stringify(['chat', 'vision']), contextWindow: 128000, inputCost: 2.5, outputCost: 10 },
+      { providerId: provider.id, modelId: 'gpt-4o-mini', name: 'GPT-4o Mini', capabilities: JSON.stringify(['chat']), contextWindow: 128000, inputCost: 0.15, outputCost: 0.6 },
+      { providerId: provider.id, modelId: 'gpt-4-turbo', name: 'GPT-4 Turbo', capabilities: JSON.stringify(['chat', 'vision']), contextWindow: 128000, inputCost: 10, outputCost: 30 },
+      { providerId: provider.id, modelId: 'text-embedding-3-small', name: 'Embedding 3 Small', capabilities: JSON.stringify(['embedding']), contextWindow: 8191, inputCost: 0.02, outputCost: 0 },
+      { providerId: provider.id, modelId: 'text-embedding-3-large', name: 'Embedding 3 Large', capabilities: JSON.stringify(['embedding']), contextWindow: 8191, inputCost: 0.13, outputCost: 0 },
+    ]) {
+      try { await prisma.model.create({ data: m }); } catch { /* skip duplicate */ }
+    }`
+        : `    await prisma.model.createMany({
+      data: [
+        { providerId: provider.id, modelId: 'gpt-4o', name: 'GPT-4o', capabilities: ['chat', 'vision'], contextWindow: 128000, inputCost: 2.5, outputCost: 10 },
+        { providerId: provider.id, modelId: 'gpt-4o-mini', name: 'GPT-4o Mini', capabilities: ['chat'], contextWindow: 128000, inputCost: 0.15, outputCost: 0.6 },
+        { providerId: provider.id, modelId: 'gpt-4-turbo', name: 'GPT-4 Turbo', capabilities: ['chat', 'vision'], contextWindow: 128000, inputCost: 10, outputCost: 30 },
+        { providerId: provider.id, modelId: 'text-embedding-3-small', name: 'Embedding 3 Small', capabilities: ['embedding'], contextWindow: 8191, inputCost: 0.02, outputCost: 0 },
+        { providerId: provider.id, modelId: 'text-embedding-3-large', name: 'Embedding 3 Large', capabilities: ['embedding'], contextWindow: 8191, inputCost: 0.13, outputCost: 0 },
+      ],
+      skipDuplicates: true,
+    });`}
+
+    console.log('✅ OpenAI provider seeded with models');
+  }
+
+  if (anthropicKey) {
+    const provider = await prisma.provider.upsert({
+      where: { id: 'seed-anthropic' },
+      update: {},
+      create: {
+        id: 'seed-anthropic',
+        name: 'Anthropic',
+        type: 'anthropic',
+        description: 'Anthropic Claude API (seeded from .env)',
+        baseUrl: 'https://api.anthropic.com/v1',
+        apiKey: encrypt(anthropicKey),
+        config: ${sqlite ? `JSON.stringify({ defaultModel: 'claude-sonnet-4-20250514' })` : `{ defaultModel: 'claude-sonnet-4-20250514' }`},
+        status: 'active',
+        isDefault: false,
+        priority: 1,
+        createdBy: admin.id,
+      },
+    });
+
+${sqlite
+        ? `    for (const m of [
+      { providerId: provider.id, modelId: 'claude-sonnet-4-20250514', name: 'Claude Sonnet 4', capabilities: JSON.stringify(['chat', 'vision']), contextWindow: 200000, inputCost: 3, outputCost: 15 },
+      { providerId: provider.id, modelId: 'claude-3-5-sonnet-20241022', name: 'Claude 3.5 Sonnet', capabilities: JSON.stringify(['chat', 'vision']), contextWindow: 200000, inputCost: 3, outputCost: 15 },
+      { providerId: provider.id, modelId: 'claude-3-haiku-20240307', name: 'Claude 3 Haiku', capabilities: JSON.stringify(['chat']), contextWindow: 200000, inputCost: 0.25, outputCost: 1.25 },
+    ]) {
+      try { await prisma.model.create({ data: m }); } catch { /* skip duplicate */ }
+    }`
+        : `    await prisma.model.createMany({
+      data: [
+        { providerId: provider.id, modelId: 'claude-sonnet-4-20250514', name: 'Claude Sonnet 4', capabilities: ['chat', 'vision'], contextWindow: 200000, inputCost: 3, outputCost: 15 },
+        { providerId: provider.id, modelId: 'claude-3-5-sonnet-20241022', name: 'Claude 3.5 Sonnet', capabilities: ['chat', 'vision'], contextWindow: 200000, inputCost: 3, outputCost: 15 },
+        { providerId: provider.id, modelId: 'claude-3-haiku-20240307', name: 'Claude 3 Haiku', capabilities: ['chat'], contextWindow: 200000, inputCost: 0.25, outputCost: 1.25 },
+      ],
+      skipDuplicates: true,
+    });`}
+
+    console.log('✅ Anthropic provider seeded with models');
+  }
+
+  if (!openaiKey && !anthropicKey) {
+    console.log('ℹ️  No API keys in .env — skip provider seeding. Add via Provider Management UI.');
+  }
+
+  console.log('🎉 Seeding completed!');
+}
+
+main()
+  .catch((e) => {
+    console.error('❌ Seeding failed:', e);
+    process.exit(1);
+  })
+  .finally(async () => {
+    await prisma.$disconnect();
+  });
+`;
+    const seedDest = path_1.default.join(targetDir, 'prisma/seed.ts');
+    await fs_extra_1.default.ensureDir(path_1.default.dirname(seedDest));
+    await fs_extra_1.default.writeFile(seedDest, seedScript);
+    console.log(chalk_1.default.green('  ✓ Created seed script'));
+}
+async function createDockerCompose(targetDir) {
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'docker-compose.yml'), (0, index_js_1.generateDockerComposeDev)());
+}
+async function createInstallScripts(targetDir) {
+    // Windows install.bat
+    const installBat = `@echo off
+REM Installation Script for ChimerAI Project
+echo.
+echo ================================================
+echo   ChimerAI Project Setup
+echo ================================================
+echo.
+
+REM Check Node.js
+where node >nul 2>nul
+if %ERRORLEVEL% NEQ 0 (
+    echo [ERROR] Node.js is not installed
+    pause
+    exit /b 1
+)
+
+REM Check Docker
+where docker >nul 2>nul
+if %ERRORLEVEL% NEQ 0 (
+    echo [ERROR] Docker is not installed
+    pause
+    exit /b 1
+)
+
+echo [1/5] Installing dependencies...
+call npm install
+if %ERRORLEVEL% NEQ 0 (
+    echo [ERROR] Failed to install dependencies
+    pause
+    exit /b 1
+)
+
+echo [2/5] Starting Docker containers...
+call docker-compose up -d
+if %ERRORLEVEL% NEQ 0 (
+    echo [ERROR] Failed to start Docker
+    pause
+    exit /b 1
+)
+
+echo [3/5] Waiting for database...
+timeout /t 5 /nobreak >nul
+
+echo [4/5] Setting up database...
+call npm run db:push
+if %ERRORLEVEL% NEQ 0 (
+    echo [ERROR] Failed to setup database
+    pause
+    exit /b 1
+)
+
+echo [5/5] Seeding database...
+call npm run db:seed
+if %ERRORLEVEL% NEQ 0 (
+    echo [WARNING] Seeding failed, but you can continue
+)
+
+echo.
+echo ================================================
+echo   Setup completed successfully!
+echo ================================================
+echo.
+echo Next steps:
+echo   npm run dev
+echo   Open: http://localhost:3001
+echo.
+echo Login with:
+echo   Email: admin@example.com
+echo   Password: admin123
+echo.
+pause
+`;
+    // Linux/macOS install.sh
+    const installSh = `#!/bin/bash
+set -e
+
+echo ""
+echo "================================================"
+echo "  ChimerAI Project Setup"
+echo "================================================"
+echo ""
+
+# Check Node.js
+if ! command -v node &> /dev/null; then
+    echo "[ERROR] Node.js is not installed"
+    exit 1
+fi
+
+# Check Docker
+if ! command -v docker &> /dev/null; then
+    echo "[ERROR] Docker is not installed"
+    exit 1
+fi
+
+echo "[1/5] Installing dependencies..."
+npm install
+
+echo "[2/5] Starting Docker containers..."
+docker-compose up -d
+
+echo "[3/5] Waiting for database..."
+sleep 5
+
+echo "[4/5] Setting up database..."
+npm run db:push
+
+echo "[5/5] Seeding database..."
+npm run db:seed || echo "[WARNING] Seeding failed, but you can continue"
+
+echo ""
+echo "================================================"
+echo "  Setup completed successfully!"
+echo "================================================"
+echo ""
+echo "Next steps:"
+echo "  npm run dev"
+echo "  Open: http://localhost:3001"
+echo ""
+echo "Login with:"
+echo "  Email: admin@example.com"
+echo "  Password: admin123"
+echo ""
+`;
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'install.bat'), installBat);
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'install.sh'), installSh);
+    // Make install.sh executable
+    try {
+        await fs_extra_1.default.chmod(path_1.default.join(targetDir, 'install.sh'), '755');
+    }
+    catch (error) {
+        // Ignore on Windows
+    }
+}
+async function createReadme(targetDir, projectName, features) {
+    let readme = `# ${projectName}
+
+Built with ChimerAI Kickstart
+
+## Features
+
+`;
+    const featureDescriptions = {
+        auth: '- 🔐 Authentication with NextAuth',
+        rbac: '- 👥 Role-Based Access Control (RBAC)',
+        'model-providers': '- 🔌 AI Model Provider Management',
+        prompts: '- 📝 Prompt Template System',
+        chat: '- 💬 AI Chat Interface',
+        rag: '- 🔍 RAG / Vector Store',
+        billing: '- 💳 Stripe Billing Integration',
+        analytics: '- 📊 API Usage Analytics',
+        admin: '- 🎨 Admin Dashboard',
+    };
+    features.forEach((f) => {
+        if (featureDescriptions[f]) {
+            readme += featureDescriptions[f] + '\n';
+        }
+    });
+    readme += `
+
+## Getting Started
+
+### Prerequisites
+
+- Node.js 20+
+- Docker Desktop
+- npm
+
+### Quick Start (Recommended)
+
+**Windows:**
+\`\`\`bash
+install.bat
+\`\`\`
+
+**Linux/macOS:**
+\`\`\`bash
+./install.sh
+\`\`\`
+
+The install script will automatically:
+- Install dependencies
+- Start Docker containers
+- Setup and seed the database
+- Show you the next steps
+
+### Manual Installation
+
+If you prefer to run commands manually:
+
+\`\`\`bash
+# Install dependencies
+npm install
+
+# Start Docker services
+docker-compose up -d
+
+# Setup database
+npm run db:push
+npm run db:seed
+
+# Start development server
+npm run dev
+\`\`\`
+
+Open [http://localhost:3001](http://localhost:3001) in your browser.
+
+### Default Admin Credentials
+
+- Email: admin@example.com
+- Password: admin123
+
+⚠️ Change these in production!
+
+## Available Scripts
+
+- \`pnpm dev\` - Start development server
+- \`pnpm build\` - Build for production
+- \`pnpm start\` - Start production server
+- \`pnpm lint\` - Run linter
+- \`pnpm db:push\` - Push database schema
+- \`pnpm db:seed\` - Seed database
+- \`pnpm db:studio\` - Open Prisma Studio
+
+## Tech Stack
+
+- **Framework**: Next.js 15
+- **Language**: TypeScript
+- **Database**: PostgreSQL + Prisma
+- **Auth**: NextAuth.js
+- **Styling**: Tailwind CSS
+- **UI Components**: Radix UI
+
+## Project Structure
+
+\`\`\`
+├── app/              # Next.js app directory
+├── components/       # React components
+├── lib/              # Utility functions
+├── prisma/           # Database schema
+└── public/           # Static assets
+\`\`\`
+
+## Learn More
+
+- [ChimerAI Documentation](https://chimerai.dev)
+- [Next.js Documentation](https://nextjs.org/docs)
+- [Prisma Documentation](https://www.prisma.io/docs)
+
+## License
+
+Commercial License - See LICENSE file
+`;
+    await fs_extra_1.default.writeFile(path_1.default.join(targetDir, 'README.md'), readme);
+    // Create docs directory with inline documentation
+    // No external path references — CLI works standalone as npm package
+    const docsDir = path_1.default.join(targetDir, 'docs');
+    await fs_extra_1.default.ensureDir(docsDir);
+    // Generate inline quickstart guide
+    const quickstart = `# Quick Start
+
+## Prerequisites
+- Node.js 20+
+- Docker Desktop
+- pnpm (recommended)
+
+## Setup
+1. \`pnpm install\`
+2. \`docker-compose up -d\`
+3. \`pnpm db:push\`
+4. \`pnpm db:seed\`
+5. \`pnpm dev\`
+
+## Default Login
+- Email: admin@example.com
+- Password: admin123
+
+## CLI Commands
+- \`chimerai add <component>\` — Add features
+- \`chimerai setup <service>\` — Configure integrations
+- \`chimerai doctor\` — Health check
+- \`chimerai update --diff\` — Check for template updates
+`;
+    await fs_extra_1.default.writeFile(path_1.default.join(docsDir, 'QUICKSTART.md'), quickstart);
+    console.log(chalk_1.default.green('  ✓ docs/QUICKSTART.md'));
+}