@jant/core 0.3.42 → 0.3.43

package/dist/{app-Cu3lveYI.js → app-GbfwoeDJ.js}

@@ -1,13 +1,13 @@
-import { _ as __exportAll, a as getSitePathPrefix, d as slugify, f as stripSitePathPrefix, h as toPublicPath, i as getSiteOrigin, l as normalizeSiteUrl, m as toPublicHref, n as extractDisplayDomain, o as isFullUrl, p as toAbsoluteSiteUrl, r as extractDomain, s as normalizePath, t as buildSiteUrl, u as sanitizeUrl } from "./url-FvvgARU9.js";
-import { A as JANT_POSITIVE_LOGO_PNG_FILENAME, B as getJantLogoHref, C as formatYearMonth, D as HOME_BRANDING_LINK_LABEL, E as toISOString, F as getJantBundledAsset, G as base64ToUint8Array, H as JANT_LOGO_PATH_DATA, I as getJantIconFilename, L as getJantIconHref, M as getDefaultJantAppleTouchIconBytes, N as getDefaultJantFaviconIcoBytes, O as HOME_BRANDING_PREFIX, P as getJantBrandPackHref, R as getJantLogoFilename, S as formatTime, U as JANT_LOGO_VIEW_BOX, V as getJantPositiveLogoPngHref, W as arrayBufferToBase64, _ as getMediaUrl, a as tiptapJsonToMarkdown, b as formatRelativeAge, c as render, d as extractSummary, f as extractSummaryHtml, g as getImageUrl, h as escapeHtml, i as createExportService, j as JANT_REPO_URL, k as JANT_BRAND_PACK_FILENAME, l as toPlainText, m as trimTiptapBody, n as createGitHubSyncService, o as markdownToTiptapJson, p as renderTiptapJson, u as extractBodyText, v as getPublicUrlForProvider, w as now, x as formatRelativeTime, y as formatDate, z as getJantLogoFills } from "./github-sync-zohnA9qv.js";
-import { C as coalesceDisplayText, S as shouldUseSecureCookies, _ as getInternalAdminToken, a as getConfiguredSingleSiteUrl, b as getSiteResolutionMode, c as getDevApiToken, d as getHostedControlPlaneBaseUrl, f as getHostedControlPlaneDomainCheckSecret, g as getHostedControlPlaneSsoSecret, h as getHostedControlPlaneProviderLabel$1, i as getConfiguredSingleSitePathPrefix, l as getEnvString, m as getHostedControlPlaneInternalToken, n as getAuthSecret, o as getConfiguredStorageDriver, p as getHostedControlPlaneInternalBaseUrl, r as getConfiguredSingleSiteOrigin, s as getCorsOrigins, u as getGitHubAppConfig, v as getLocalStoragePath } from "./env-wCpMcNXs.js";
-import { a as listInstallationReposPage, n as getInstallation, o as searchInstallationRepos, t as buildInstallUrl } from "./github-app-F4qZ05xk.js";
-import { r as parseRepoSlug, t as createGitHubClient } from "./github-api-CficQztC.js";
+import { a as getSitePathPrefix, c as normalizePath, d as sanitizeUrl, f as slugify, g as toPublicPath, h as toPublicHref, i as getSiteOrigin, m as toAbsoluteSiteUrl, n as extractDisplayDomain, o as isFullUrl, p as stripSitePathPrefix, r as extractDomain, s as isSafeInternalRedirect, t as buildSiteUrl, u as normalizeSiteUrl, v as __exportAll } from "./url-umUptr5z.js";
+import { A as JANT_BRAND_PACK_FILENAME, B as getJantLogoFills, C as formatTime, D as toISOString, F as getJantBrandPackHref, G as arrayBufferToBase64, H as getJantPositiveLogoPngHref, I as getJantBundledAsset, K as base64ToUint8Array, L as getJantIconFilename, M as JANT_REPO_URL, N as getDefaultJantAppleTouchIconBytes, O as HOME_BRANDING_LINK_LABEL, P as getDefaultJantFaviconIcoBytes, R as getJantIconHref, S as formatRelativeTime, T as now, U as JANT_LOGO_PATH_DATA, V as getJantLogoHref, W as JANT_LOGO_VIEW_BOX, _ as getImageUrl, a as tiptapJsonToMarkdown, b as formatDate, c as render, d as extractSummary, f as extractSummaryHtml, g as escapeHtml, h as trimTiptapBody, i as createExportService, j as JANT_POSITIVE_LOGO_PNG_FILENAME, k as HOME_BRANDING_PREFIX, l as toPlainText, m as renderTiptapJson, n as createGitHubSyncService, o as markdownToTiptapJson, p as renderTiptapDocument, u as extractBodyText, v as getMediaUrl, w as formatYearMonth, x as formatRelativeAge, y as getPublicUrlForProvider, z as getJantLogoFilename } from "./github-sync-7y_nTXx1.js";
+import { C as coalesceDisplayText, S as shouldUseSecureCookies, _ as getInternalAdminToken, a as getConfiguredSingleSiteUrl, b as getSiteResolutionMode, c as getDevApiToken, d as getHostedControlPlaneBaseUrl, f as getHostedControlPlaneDomainCheckSecret, g as getHostedControlPlaneSsoSecret, h as getHostedControlPlaneProviderLabel$1, i as getConfiguredSingleSitePathPrefix, l as getEnvString, m as getHostedControlPlaneInternalToken, n as getAuthSecret, o as getConfiguredStorageDriver, p as getHostedControlPlaneInternalBaseUrl, r as getConfiguredSingleSiteOrigin, s as getCorsOrigins, u as getGitHubAppConfig, v as getLocalStoragePath } from "./env-CgaH9Mut.js";
+import { a as listInstallationReposPage, n as getInstallation, o as searchInstallationRepos, t as buildInstallUrl } from "./github-app-WeadXMb8.js";
+import { r as parseRepoSlug, t as createGitHubClient } from "./github-api-BkRWnqMx.js";
 import { I18n } from "@lingui/core";
 import { z } from "zod";
 import { fromString, typeidUnboxed } from "typeid-js";
 import { decode } from "blurhash";
-import { and, asc, desc, eq, inArray, isNotNull, isNull, lt, lte, ne, or, sql } from "drizzle-orm";
+import { and, asc, desc, eq, gt, inArray, isNotNull, isNull, lt, lte, ne, or, sql } from "drizzle-orm";
 import { generateKeyBetween } from "fractional-indexing";
 import { drizzle } from "drizzle-orm/better-sqlite3";
 import { drizzle as drizzle$1 } from "drizzle-orm/d1";
@@ -3352,9 +3352,9 @@ function normalizeThemeColorForMeta(color) {
 * internal paths (e.g. `/_assets/client-HASH.js`) embedded by the Worker build
 * from the Vite client manifest. Used only in production (IS_VITE_DEV=false).
 */ var IS_VITE_DEV = typeof __JANT_DEV__ !== "undefined" && __JANT_DEV__ === true;
-var CORE_VERSION = "0.3.42-fc459b837c6eaa85";
+var CORE_VERSION = "0.3.43-8e1ad0b8fb20998c";
 var CLIENT_JS_FILE = "/_assets/client-D95FNDg5.js";
-var CLIENT_AUTH_JS_FILE = "/_assets/client-auth-BRFl5zQA.js";
+var CLIENT_AUTH_JS_FILE = "/_assets/client-auth-CXILhW1b.js";
 var CLIENT_CSS_FILE = "/_assets/client-C_kImWZj.css";
 var CLIENT_CJK_CSS_FILE = "/_assets/client-cjk-B7Z0snDu.css";
 var CLIENT_CJK_TC_CSS_FILE = "/_assets/client-cjk-tc-BesJYrb2.css";
@@ -3370,7 +3370,7 @@ var CLIENT_CJK_KR_CSS_FILE = "/_assets/client-cjk-kr-_3ZNI2ZP.css";
 *
 * In dev mode (Vite), serves assets via Vite's dev server.
 * In production, serves pre-built assets with content-hashed filenames.
-*/ var BaseLayout = ({ title, description, lang, c, toast, faviconHref, appleTouchHref, faviconUrl, faviconVersion, socialImageUrl, noindex, isAuthenticated = false, clientBundle, children }) => {
+*/ var BaseLayout = ({ title, description, lang, c, toast, faviconHref, appleTouchHref, faviconUrl, faviconVersion, socialImageUrl, canonicalHref, noindex, isAuthenticated = false, clientBundle, children }) => {
 	const resolvedLang = lang ?? (c ? c.get("lang") : "en");
 	const appConfig = c ? c.get("appConfig") : void 0;
 	const resolvedSocialImagePath = socialImageUrl ?? faviconUrl ?? appConfig?.siteAvatarUrl ?? getJantIconHref("socialImage", appConfig?.sitePathPrefix || "");
@@ -3398,7 +3398,7 @@ var CLIENT_CJK_KR_CSS_FILE = "/_assets/client-cjk-kr-_3ZNI2ZP.css";
 	const cjkSerifFont = appConfig?.cjkSerifFont ?? "off";
 	const cjkStylesheetPath = cjkSerifFont === "zh-Hans" ? IS_VITE_DEV ? assetPath("/src/style-cjk.css") : toPublicAssetPath(CLIENT_CJK_CSS_FILE, assetBasePath) : cjkSerifFont === "zh-Hant" ? IS_VITE_DEV ? assetPath("/src/style-cjk-tc.css") : toPublicAssetPath(CLIENT_CJK_TC_CSS_FILE, assetBasePath) : cjkSerifFont === "ja" ? IS_VITE_DEV ? assetPath("/src/style-cjk-jp.css") : toPublicAssetPath(CLIENT_CJK_JP_CSS_FILE, assetBasePath) : cjkSerifFont === "ko" ? IS_VITE_DEV ? assetPath("/src/style-cjk-kr.css") : toPublicAssetPath(CLIENT_CJK_KR_CSS_FILE, assetBasePath) : null;
 	const clientScriptPath = IS_VITE_DEV ? resolvedClientBundle === "full" ? assetPath("/src/client-auth.ts") : assetPath("/src/client.ts") : toPublicAssetPath(resolvedClientBundle === "full" ? CLIENT_AUTH_JS_FILE : CLIENT_JS_FILE, assetBasePath);
-	const faviconAssetVersion = resolvedFaviconVersion || "0.3.42-fc459b837c6eaa85";
+	const faviconAssetVersion = resolvedFaviconVersion || "0.3.43-8e1ad0b8fb20998c";
 	const resolvedFaviconHref = faviconHref ?? (faviconAssetVersion ? toPublicPath(`/favicon.ico?v=${faviconAssetVersion}`, sitePathPrefix) : toPublicPath("/favicon.ico", sitePathPrefix));
 	const resolvedAppleTouchHref = appleTouchHref ?? (faviconAssetVersion ? toPublicPath(`/apple-touch-icon.png?v=${faviconAssetVersion}`, sitePathPrefix) : toPublicPath("/apple-touch-icon.png", sitePathPrefix));
 	const socialImageHref = resolvedSocialImagePath && (isFullUrl(resolvedSocialImagePath) || resolvedSocialImagePath.startsWith("//") ? resolvedSocialImagePath : toAbsoluteSiteUrl(resolvedSocialImagePath, appConfig?.siteUrl || "", sitePathPrefix));
@@ -3497,6 +3497,10 @@ var CLIENT_CJK_KR_CSS_FILE = "/_assets/client-cjk-kr-_3ZNI2ZP.css";
 				name: "robots",
 				content: "noindex, nofollow"
 			}),
+			canonicalHref && /* @__PURE__ */ jsxDEV$1("link", {
+				rel: "canonical",
+				href: canonicalHref
+			}),
 			/* @__PURE__ */ jsxDEV$1("link", {
 				rel: "icon",
 				href: resolvedFaviconHref,
@@ -5381,9 +5385,10 @@ setupRoutes.post("/setup", async (c) => {
 });
 //#endregion
 //#region src/lib/hosted-signin.ts
-function getHostedAdminContinuationPath(publicRequestUrl) {
+function getHostedAdminContinuationPath(publicRequestUrl, redirect) {
 	const currentHost = new URL(publicRequestUrl).host;
-	return `/auth/handoff/start?host=${encodeURIComponent(currentHost)}&redirect=${encodeURIComponent("/")}`;
+	const safeRedirect = isSafeInternalRedirect(redirect) ? redirect : "/";
+	return `/auth/handoff/start?host=${encodeURIComponent(currentHost)}&redirect=${encodeURIComponent(safeRedirect)}`;
 }
 function buildHostedControlPlaneUrl(env, pathname, search) {
 	const hostedControlPlaneBaseUrl = getHostedControlPlaneBaseUrl(env);
@@ -5393,8 +5398,8 @@ function buildHostedControlPlaneUrl(env, pathname, search) {
 	location.search = search ?? "";
 	return location.toString();
 }
-function getHostedControlPlaneSigninUrl(env, publicRequestUrl) {
-	return buildHostedControlPlaneUrl(env, "/auth/handoff/start", getHostedAdminContinuationPath(publicRequestUrl).replace(/^\/auth\/handoff\/start/, ""));
+function getHostedControlPlaneSigninUrl(env, publicRequestUrl, redirect) {
+	return buildHostedControlPlaneUrl(env, "/auth/handoff/start", getHostedAdminContinuationPath(publicRequestUrl, redirect).replace(/^\/auth\/handoff\/start/, ""));
 }
 function getHostedControlPlaneResetUrl(env, publicRequestUrl) {
 	const search = new URLSearchParams();
@@ -5419,11 +5424,12 @@ function getHostedControlPlaneProviderLabel(env) {
 //#region src/routes/auth/signin.tsx
 /**
 * Sign-in / Sign-out Routes
-*/ var SigninContent = ({ demoEmail, demoPassword, sitePathPrefix = "" }) => {
+*/ var SigninContent = ({ demoEmail, demoPassword, sitePathPrefix = "", redirect }) => {
 	const { i18n } = useLingui();
 	const signals = JSON.stringify({
 		email: demoEmail || "",
-		password: demoPassword || ""
+		password: demoPassword || "",
+		...redirect ? { redirect } : {}
 	}).replace(/</g, "\\u003c");
 	return /* @__PURE__ */ jsxDEV$1("div", {
 		class: "min-h-screen flex items-center justify-center",
@@ -5488,7 +5494,9 @@ function getHostedControlPlaneProviderLabel(env) {
 };
 var signinRoutes = new Hono();
 signinRoutes.get("/signin", async (c) => {
-	const hostedSigninUrl = getHostedControlPlaneSigninUrl(c.env, c.var.publicRequestUrl);
+	const rawRedirect = c.req.query("redirect");
+	const redirect = isSafeInternalRedirect(rawRedirect) ? rawRedirect : void 0;
+	const hostedSigninUrl = getHostedControlPlaneSigninUrl(c.env, c.var.publicRequestUrl, redirect);
 	if (hostedSigninUrl) return c.redirect(hostedSigninUrl);
 	const i18n = getI18n(c);
 	const isSetup = c.req.query("setup") !== void 0;
@@ -5503,7 +5511,8 @@ signinRoutes.get("/signin", async (c) => {
 		children: /* @__PURE__ */ jsxDEV$1(SigninContent, {
 			demoEmail: c.var.appConfig.demoEmail,
 			demoPassword: c.var.appConfig.demoPassword,
-			sitePathPrefix: c.var.appConfig.sitePathPrefix
+			sitePathPrefix: c.var.appConfig.sitePathPrefix,
+			redirect
 		})
 	}));
 });
@@ -5514,6 +5523,8 @@ signinRoutes.post("/signin", async (c) => {
 	const parsed = SigninSchema.safeParse(body);
 	if (!parsed.success) return dsToast(parsed.error.issues[0]?.message ?? i18n._({ id: "vXCC6J" }), "error");
 	const { email, password } = parsed.data;
+	const rawRedirect = body && typeof body === "object" && "redirect" in body ? body.redirect : void 0;
+	const redirectTarget = typeof rawRedirect === "string" && isSafeInternalRedirect(rawRedirect) ? rawRedirect : "/";
 	try {
 		const { headers } = await c.var.auth.api.signInEmail({
 			returnHeaders: true,
@@ -5523,7 +5534,7 @@ signinRoutes.post("/signin", async (c) => {
 			},
 			headers: c.req.raw.headers
 		});
-		return dsRedirect(toPublicPath("/", c.var.appConfig.sitePathPrefix), { headers });
+		return dsRedirect(toPublicPath(redirectTarget, c.var.appConfig.sitePathPrefix), { headers });
 	} catch {
 		return dsToast(i18n._({ id: "nFukaP" }), "error");
 	}
@@ -5721,23 +5732,53 @@ function getRequestHostname(requestUrl, requestHost) {
 	return hostname ? isLocalHostname(hostname) : false;
 }
 /**
+* Paths that should never be used as post-signin redirect targets (would
+* either loop back to signin or hit an unauthenticated endpoint).
+*/ var POST_SIGNIN_REDIRECT_BLOCKLIST = new Set([
+	"/signin",
+	"/signout",
+	"/setup",
+	"/reset",
+	"/__sso"
+]);
+function getPostSigninRedirect(requestUrl) {
+	let url;
+	try {
+		url = new URL(requestUrl);
+	} catch {
+		return null;
+	}
+	const pathname = url.pathname || "/";
+	if (POST_SIGNIN_REDIRECT_BLOCKLIST.has(pathname)) return null;
+	if (pathname.startsWith("/api/")) return null;
+	const candidate = `${pathname}${url.search}`;
+	return isSafeInternalRedirect(candidate) ? candidate : null;
+}
+/**
 * Middleware that requires authentication.
 * Redirects to signin page if not authenticated.
 * Session-only — Bearer tokens are not accepted for dashboard pages.
 */ function requireAuth(redirectTo = "/signin") {
 	return async (c, next) => {
-		const redirectTarget = toPublicHref(redirectTo, getRuntimeSitePathPrefix({
+		const sitePathPrefix = getRuntimeSitePathPrefix({
 			env: c.env,
 			appConfig: c.var.appConfig,
 			currentSiteDomain: c.var.currentSiteDomain
-		}));
+		});
+		const buildRedirectTarget = () => {
+			const publicHref = toPublicHref(redirectTo, sitePathPrefix);
+			if (redirectTo !== "/signin") return publicHref;
+			const postSignin = getPostSigninRedirect(c.req.url);
+			if (!postSignin) return publicHref;
+			return `${publicHref}${publicHref.includes("?") ? "&" : "?"}redirect=${encodeURIComponent(postSignin)}`;
+		};
+		const session = c.var.session;
+		if (!session?.user) return c.redirect(buildRedirectTarget());
 		try {
-			const session = await c.var.auth.api.getSession({ headers: c.req.raw.headers });
-			if (!session?.user) return c.redirect(redirectTarget);
-			if (!await c.var.services.siteMembers.get(c.var.currentSite.id, session.user.id)) return c.redirect(redirectTarget);
+			if (!await c.var.services.siteMembers.get(c.var.currentSite.id, session.user.id)) return c.redirect(buildRedirectTarget());
 			await next();
 		} catch {
-			return c.redirect(redirectTarget);
+			return c.redirect(buildRedirectTarget());
 		}
 	};
 }
@@ -5747,10 +5788,9 @@ function getRequestHostname(requestUrl, requestHost) {
 * Returns 401 if neither method succeeds.
 */ function requireAuthApi() {
 	return async (c, next) => {
-		try {
-			const session = await c.var.auth.api.getSession({ headers: c.req.raw.headers });
-			if (session?.user) {
-				if (!await c.var.services.siteMembers.get(c.var.currentSite.id, session.user.id)) throw new UnauthorizedError();
+		const session = c.var.session;
+		if (session?.user) try {
+			if (await c.var.services.siteMembers.get(c.var.currentSite.id, session.user.id)) {
 				await next();
 				return;
 			}
@@ -5827,7 +5867,7 @@ devAuthRoutes.get("/__dev/login", async (c) => {
 			headers: responseHeaders
 		});
 	} catch {
-		return c.text("Dev login failed. Finish /setup once or run `mise run db-local-rebuild-demo`, then retry.", 500);
+		return c.text("Dev login failed. Finish /setup once or run `mise run db-wrangler-rebuild-demo`, then retry.", 500);
 	}
 });
 //#endregion
@@ -6314,7 +6354,8 @@ function getLegacyBodyPreview(post) {
 }
 function getPlainSummary(post) {
 	if (post.format === "quote") return normalizePreviewText(post.quoteText);
-	return normalizePreviewText(post.summary) || normalizePreviewText(post.bodyText) || getLegacyBodyPreview(post) || normalizePreviewText(post.url);
+	const cleanBody = post.body ? extractBodyText(post.body) : null;
+	return normalizePreviewText(post.summary) || normalizePreviewText(cleanBody) || normalizePreviewText(post.bodyText) || getLegacyBodyPreview(post) || normalizePreviewText(post.url);
 }
 function clipPreviewText(text, maxChars) {
 	if (!text) return void 0;
@@ -6344,10 +6385,16 @@ function clipPreviewText(text, maxChars) {
 		if (result) {
 			summaryHtml = result.html;
 			summaryHasMore = result.hasMore;
-			if (result.hasMore && post.bodyHtml) {
-				const pos = result.html.length;
-				bodyHtmlWithAnchor = post.bodyHtml.slice(0, pos) + "<span id=\"continue\"></span>" + post.bodyHtml.slice(pos);
-			}
+			if (result.hasMore && post.bodyHtml) try {
+				const doc = JSON.parse(post.body);
+				if (doc.type === "doc" && Array.isArray(doc.content) && result.breakAtIndex > 0 && result.breakAtIndex <= doc.content.length) {
+					const beforeHtml = renderTiptapDocument({
+						type: "doc",
+						content: doc.content.slice(0, result.breakAtIndex)
+					});
+					if (post.bodyHtml.startsWith(beforeHtml)) bodyHtmlWithAnchor = beforeHtml + "<span id=\"continue\"></span>" + post.bodyHtml.slice(beforeHtml.length);
+				}
+			} catch {}
 		}
 	}
 	const collections = (postCollections ?? []).map((c) => ({
@@ -6589,8 +6636,8 @@ function clipPreviewText(text, maxChars) {
 *   content: <MyContent />,
 * });
 * ```
-*/ async function getNavigationData(c) {
-	const items = await c.var.services.navItems.list();
+*/ async function getNavigationData(c, options) {
+	const items = options?.preloadedItems ?? await c.var.services.navItems.list();
 	const currentPath = c.var.publicPath;
 	const appConfig = c.var.appConfig;
 	const siteName = appConfig.siteName;
@@ -6602,11 +6649,8 @@ function clipPreviewText(text, maxChars) {
 	const siteAvatarUrl = appConfig.siteAvatarUrl || void 0;
 	const showHeaderAvatar = appConfig.showHeaderAvatar;
 	const siteFooterHtml = siteFooter ? render(siteFooter) : void 0;
-	let isAuthenticated = false;
+	const isAuthenticated = c.var.isAuthenticated;
 	let collections = [];
-	try {
-		isAuthenticated = !!(await c.var.auth.api.getSession({ headers: c.req.raw.headers }))?.user;
-	} catch {}
 	const collectionNavIds = [];
 	for (const item of items) if (item.type === "collection" && item.collectionId) collectionNavIds.push(item.collectionId);
 	const collectionFreshness = collectionNavIds.length > 0 ? await c.var.services.navItems.getCollectionFreshness(collectionNavIds) : void 0;
@@ -7510,7 +7554,7 @@ var SiteLayout = ({ siteName, links, currentPath, sitePathPrefix = "", isAuthent
 * });
 * ```
 */ function renderPublicPage(c, options) {
-	const { title, description, faviconHref, appleTouchHref, socialImageUrl, navData, content, sidebar, toast, showComposeDialog, showHeader, showHomeBranding, composeCollectionId } = options;
+	const { title, description, faviconHref, appleTouchHref, socialImageUrl, canonicalHref, navData, content, sidebar, toast, showComposeDialog, showHeader, showHomeBranding, composeCollectionId } = options;
 	const metaDescription = description || navData.siteDescription || void 0;
 	const appConfig = c.get("appConfig");
 	const allSettings = c.get("allSettings");
@@ -7543,6 +7587,7 @@ var SiteLayout = ({ siteName, links, currentPath, sitePathPrefix = "", isAuthent
 		faviconHref,
 		appleTouchHref,
 		socialImageUrl,
+		canonicalHref,
 		faviconUrl,
 		faviconVersion,
 		noindex,
@@ -10086,16 +10131,23 @@ var PaginatedPageHeader = ({ title, currentPage = 1, totalPages, description, ic
 * Latest and Featured in navigation. The explicit feed routes still work.
 */ var homeRoutes = new Hono();
 homeRoutes.get("/", async (c) => {
-	const navData = await getNavigationData(c);
 	const i18n = getI18n(c);
 	const page = parsePageNumber(c.req.query("page"));
 	const paginatedPageTitle = formatPageLabel(page);
-	if (navData.homeDefaultView === "featured") {
+	const isAuthenticated = c.var.isAuthenticated;
+	const navItems = await c.var.services.navItems.list();
+	const homeDefaultView = getHomeDefaultViewFromNavItems(navItems);
+	const timelinePromise = homeDefaultView === "featured" ? assembleFeaturedTimeline(c, {
+		page,
+		isAuthenticated
+	}) : assembleTimeline(c, {
+		page,
+		isAuthenticated
+	});
+	const [navData, timeline] = await Promise.all([getNavigationData(c, { preloadedItems: navItems }), timelinePromise]);
+	const { items, currentPage, totalPages } = timeline;
+	if (homeDefaultView === "featured") {
 		const featuredTitle = i18n._({ id: "FkMol5" });
-		const { items, currentPage, totalPages } = await assembleFeaturedTimeline(c, {
-			page,
-			isAuthenticated: navData.isAuthenticated
-		});
 		return renderPublicPage(c, {
 			title: page > 1 ? buildPageTitle(featuredTitle, paginatedPageTitle, navData.siteName) : navData.siteName,
 			navData,
@@ -10109,10 +10161,6 @@ homeRoutes.get("/", async (c) => {
 		});
 	}
 	const latestTitle = i18n._({ id: "wL3cK8" });
-	const { items, currentPage, totalPages } = await assembleTimeline(c, {
-		page,
-		isAuthenticated: navData.isAuthenticated
-	});
 	return renderPublicPage(c, {
 		title: page > 1 ? buildPageTitle(latestTitle, paginatedPageTitle, navData.siteName) : navData.siteName,
 		navData,
@@ -10170,6 +10218,17 @@ var PostPage = ({ post, threadPosts }) => {
 //#region src/lib/post-meta.ts
 var TITLE_MAX_CHARS = 72;
 var DESCRIPTION_MAX_CHARS = 160;
+/**
+* Derive a clean plain-text projection of the body for human-facing meta.
+*
+* We cannot reuse `post.bodyText` here: that column is written with
+* `includeLinkHrefs: true` so inline link URLs land in the FTS index, which
+* pollutes the stored text with trailing URLs. Re-derive from the source
+* TipTap JSON (`post.body`) without that option.
+*/ function getCleanBodyText(post) {
+	if (post.body) return extractBodyText(post.body) ?? "";
+	return post.bodyText ?? "";
+}
 function normalizeText(text) {
 	return (text ?? "").replace(/\s+/g, " ").trim();
 }
@@ -10193,7 +10252,7 @@ function getTitleCandidate(post) {
 	if (normalizeText(post.title)) return normalizeText(post.title);
 	const summarySnippet = getFirstParagraph(post.summary);
 	if (summarySnippet) return clipText(summarySnippet, TITLE_MAX_CHARS);
-	const bodySnippet = getFirstParagraph(post.bodyText);
+	const bodySnippet = getFirstParagraph(getCleanBodyText(post));
 	if (bodySnippet) return clipText(bodySnippet, TITLE_MAX_CHARS);
 	if (post.format === "link" && post.url) return extractDisplayDomain(post.url) || post.url;
 	return "";
@@ -10205,7 +10264,7 @@ function getDescriptionCandidate(post) {
 	}
 	const summaryText = normalizeText(post.summary);
 	if (summaryText) return clipText(summaryText, DESCRIPTION_MAX_CHARS);
-	const bodyText = normalizeText(post.bodyText);
+	const bodyText = normalizeText(getCleanBodyText(post));
 	if (bodyText) return clipText(bodyText, DESCRIPTION_MAX_CHARS);
 	const quoteText = normalizeText(post.quoteText);
 	if (quoteText) return clipText(quoteText, DESCRIPTION_MAX_CHARS);
@@ -10305,6 +10364,7 @@ function buildPostMeta(post, siteName) {
 	pathRegistry: () => pathRegistry$1,
 	postCollections: () => postCollections$1,
 	posts: () => posts$1,
+	rateLimit: () => rateLimit$2,
 	session: () => session$1,
 	settings: () => settings$1,
 	siteDomains: () => siteDomains$1,
@@ -10752,6 +10812,19 @@ var githubAppInstallation$1 = sqliteTable("github_app_installation", {
 	index("github_app_installation_by_site").on(table.siteId),
 	check("chk_github_app_installation_account_type", sql`${table.accountType} IN (${sqlTextEnum$1(GITHUB_APP_ACCOUNT_TYPES$1)})`)
 ]);
+/**
+* Per-key sliding-window rate-limit counters. Used by the Cloudflare Workers
+* runtime; Node deployments keep the state in memory instead.
+*
+* `key` is typically a scope prefix plus client IP (e.g. "search:1.2.3.4").
+* `window_start` is the aligned start of the window in Unix seconds — we
+* store two adjacent windows per key to support the sliding-window-counter
+* algorithm.
+*/ var rateLimit$2 = sqliteTable("rate_limit", {
+	key: text("key").notNull(),
+	windowStart: integer("window_start").notNull(),
+	count: integer("count").notNull().default(0)
+}, (table) => [primaryKey({ columns: [table.key, table.windowStart] })]);
 //#endregion
 //#region src/db/index.ts
 /**
@@ -10856,6 +10929,7 @@ function isNodeSqliteDatabase(db) {
 	pathRegistry: () => pathRegistry,
 	postCollections: () => postCollections,
 	posts: () => posts,
+	rateLimit: () => rateLimit$1,
 	session: () => session,
 	settings: () => settings,
 	siteDomains: () => siteDomains,
@@ -11344,6 +11418,14 @@ var githubAppInstallation = pgTable("github_app_installation", {
 	index$1("github_app_installation_by_site").on(table.siteId),
 	check$1("chk_github_app_installation_account_type", sql`${table.accountType} IN (${sqlTextEnum(GITHUB_APP_ACCOUNT_TYPES)})`)
 ]);
+/**
+* Per-key sliding-window rate-limit counters. Mirrors the SQLite `rate_limit`
+* table — kept in lockstep because both dialects are production targets.
+*/ var rateLimit$1 = pgTable("rate_limit", {
+	key: text$1("key").notNull(),
+	windowStart: integer$1("window_start").notNull(),
+	count: integer$1("count").notNull().default(0)
+}, (table) => [primaryKey$1({ columns: [table.key, table.windowStart] })]);
 //#endregion
 //#region src/db/schema-bundle.ts
 var sqliteSchemaBundle = schema_exports$1;
@@ -12706,33 +12788,33 @@ function getAtomTitle(post) {
 </feed>`;
 }
 /**
-* Default Sitemap renderer.
+* Render a sitemap `<urlset>` XML document from a list of URL entries.
 *
-* @param data - Sitemap data with PostView[]
-* @returns Sitemap XML string
-*/ function defaultSitemapRenderer(data) {
-	const { siteUrl, sitemapUrl, posts } = data;
-	const postUrls = posts.map((post) => {
-		return `
-  <url>
-    <loc>${escapeXml(new URL(post.permalink, siteUrl).toString())}</loc>
-    <lastmod>${post.updatedAt.split("T")[0]}</lastmod>
-    <priority>${post.featured ? "0.8" : "0.6"}</priority>
-  </url>`;
-	}).join("");
-	const homepageUrl = `
-  <url>
-    <loc>${escapeXml(siteUrl)}</loc>
-    <priority>1.0</priority>
-    <changefreq>daily</changefreq>
-  </url>`;
+* Used by the sharded sitemap endpoints in `routes/feed/sitemap.ts`.
+*/ function renderSitemapUrlSet(entries) {
 	return `<?xml version="1.0" encoding="UTF-8"?>
 <urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
-  <!-- Generated from ${escapeXml(sitemapUrl)} -->
-  ${homepageUrl}
-  ${postUrls}
+${entries.map((entry) => {
+		const parts = [`    <loc>${escapeXml(entry.loc)}</loc>`];
+		if (entry.lastmod) parts.push(`    <lastmod>${escapeXml(entry.lastmod)}</lastmod>`);
+		if (entry.changefreq) parts.push(`    <changefreq>${escapeXml(entry.changefreq)}</changefreq>`);
+		if (entry.priority) parts.push(`    <priority>${escapeXml(entry.priority)}</priority>`);
+		return `  <url>\n${parts.join("\n")}\n  </url>`;
+	}).join("\n")}
 </urlset>`;
 }
+/**
+* Render a `<sitemapindex>` XML document listing shard sitemap URLs.
+*/ function renderSitemapIndex(entries) {
+	return `<?xml version="1.0" encoding="UTF-8"?>
+<sitemapindex xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
+${entries.map((entry) => {
+		const parts = [`    <loc>${escapeXml(entry.loc)}</loc>`];
+		if (entry.lastmod) parts.push(`    <lastmod>${escapeXml(entry.lastmod)}</lastmod>`);
+		return `  <sitemap>\n${parts.join("\n")}\n  </sitemap>`;
+	}).join("\n")}
+</sitemapindex>`;
+}
 //#endregion
 //#region src/routes/pages/archive.tsx
 /**
@@ -13760,12 +13842,29 @@ collectionRoutes.get("/:slug/feed", async (c) => {
 * Resolves post slugs, aliases, redirects, and collection aliases.
 * Must be registered last.
 */ var pageRoutes = new Hono();
+/**
+* Build the canonical absolute URL for a post page.
+*
+* Reply URLs render the full thread, so search engines see overlapping
+* content at every reply URL. Point the canonical to the thread root so
+* crawlers consolidate ranking on one URL.
+*
+* The root post is always at index 0 of `threadPostViews` (getThread orders
+* by createdAt ASC, and the DB check constraint guarantees root has the
+* smallest createdAt in its thread). When `threadPostViews` is undefined the
+* post is not part of a multi-post thread, so the post itself is the root.
+*/ function buildPostCanonicalHref(postView, threadPostViews, siteUrl) {
+	const rootPermalink = threadPostViews?.[0]?.permalink ?? postView.permalink;
+	if (!siteUrl) return rootPermalink;
+	return new URL(rootPermalink, siteUrl).toString();
+}
 async function renderPostWithTextPreview(c, post, autoOpen) {
 	const navDataPromise = getNavigationData(c);
 	const display = await assemblePostPageDisplay(c, post, { isAuthenticated: true });
 	if (!display) return c.notFound();
 	const navData = await navDataPromise;
 	const meta = buildPostMeta(post, navData.siteName);
+	const canonicalHref = buildPostCanonicalHref(display.postView, display.threadPostViews, c.var.appConfig.siteUrl);
 	const pageTitle = autoOpen.attachmentTitle || meta.title;
 	const autoOpenMeta = JSON.stringify({
 		shareHref: autoOpen.shareHref,
@@ -13776,6 +13875,7 @@ async function renderPostWithTextPreview(c, post, autoOpen) {
 	return renderPublicPage(c, {
 		title: pageTitle,
 		description: meta.description,
+		canonicalHref,
 		navData,
 		content: /* @__PURE__ */ jsxDEV$1(Fragment$1, { children: [
 			/* @__PURE__ */ jsxDEV$1(PostPage, {
@@ -13824,9 +13924,11 @@ async function renderPost(c, post) {
 	if (!display) return c.notFound();
 	const navData = await navDataPromise;
 	const meta = buildPostMeta(post, navData.siteName);
+	const canonicalHref = buildPostCanonicalHref(display.postView, display.threadPostViews, c.var.appConfig.siteUrl);
 	return renderPublicPage(c, {
 		title: meta.title,
 		description: meta.description,
+		canonicalHref,
 		navData,
 		content: /* @__PURE__ */ jsxDEV$1(PostPage, {
 			post: display.postView,
@@ -14845,18 +14947,11 @@ newPostRoutes.get("/new", async (c) => {
 //#endregion
 //#region src/routes/pages/partials.tsx
 var partialPageRoutes = new Hono();
-async function getIsAuthenticated(c) {
-	try {
-		return !!(await c.var.auth.api.getSession({ headers: c.req.raw.headers }))?.user;
-	} catch {
-		return false;
-	}
-}
 partialPageRoutes.get("/_/version", (c) => {
 	return c.json({ version: CORE_VERSION });
 });
 partialPageRoutes.get("/_/timeline-item/:threadRootId", async (c) => {
-	const item = await assembleTimelineItem(c, parseIdParam(c.req.param("threadRootId"), ID_PREFIX.post), { isAuthenticated: await getIsAuthenticated(c) });
+	const item = await assembleTimelineItem(c, parseIdParam(c.req.param("threadRootId"), ID_PREFIX.post), { isAuthenticated: c.var.isAuthenticated });
 	if (!item) return c.notFound();
 	return c.html(/* @__PURE__ */ jsxDEV$1(I18nProvider, {
 		c,
@@ -14864,7 +14959,7 @@ partialPageRoutes.get("/_/timeline-item/:threadRootId", async (c) => {
 	}));
 });
 partialPageRoutes.get("/_/post-card/:postId", async (c) => {
-	const postView = await assemblePostCardView(c, parseIdParam(c.req.param("postId"), ID_PREFIX.post), { isAuthenticated: await getIsAuthenticated(c) });
+	const postView = await assemblePostCardView(c, parseIdParam(c.req.param("postId"), ID_PREFIX.post), { isAuthenticated: c.var.isAuthenticated });
 	if (!postView) return c.notFound();
 	return c.html(/* @__PURE__ */ jsxDEV$1(I18nProvider, {
 		c,
@@ -14872,7 +14967,7 @@ partialPageRoutes.get("/_/post-card/:postId", async (c) => {
 	}));
 });
 partialPageRoutes.get("/_/post-view/:postId", async (c) => {
-	const display = await assemblePostPageDisplay(c, parseIdParam(c.req.param("postId"), ID_PREFIX.post), { isAuthenticated: await getIsAuthenticated(c) });
+	const display = await assemblePostPageDisplay(c, parseIdParam(c.req.param("postId"), ID_PREFIX.post), { isAuthenticated: c.var.isAuthenticated });
 	if (!display) return c.notFound();
 	return c.html(/* @__PURE__ */ jsxDEV$1(I18nProvider, {
 		c,
@@ -19829,6 +19924,10 @@ function parseConfigInt(value, fallback) {
 		showHeaderAvatar: allSettings["SHOW_HEADER_AVATAR"] === "true",
 		siteAvatarUrl,
 		faviconVersion: allSettings["SITE_FAVICON_VERSION"] ?? "",
+		rateLimit: {
+			disabled: getEnvString(env, "RATE_LIMIT_DISABLED") === "true",
+			searchPerMinute: parseInt(getEnvString(env, "RATE_LIMIT_SEARCH_PER_MIN") ?? "30", 10) || 30
+		},
 		fallbacks: {
 			siteName: resolveFallback("SITE_NAME", env),
 			siteDescription: resolveFallback("SITE_DESCRIPTION", env),
@@ -20019,8 +20118,8 @@ async function syncHostedControlPlaneSiteAvatar(input) {
 		return;
 	}
 	await markSyncPending(settings);
-	const { createGitHubSyncService } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
-	const { getGitHubAppConfig } = await import("./env-wCpMcNXs.js").then((n) => n.t);
+	const { createGitHubSyncService } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
+	const { getGitHubAppConfig } = await import("./env-CgaH9Mut.js").then((n) => n.t);
 	const run = runBackgroundSync(settings, createGitHubSyncService(c.var.services, c.var.currentSite.id, await buildSyncSiteConfig(c), {
 		storage: c.var.storage,
 		githubApp: getGitHubAppConfig(c.env)
@@ -20634,7 +20733,7 @@ settingsRoutes.get("/account", async (c) => {
 settingsRoutes.get("/account/sessions", async (c) => {
 	if (c.var.appConfig.demoMode) return c.redirect(publicPath(c, "/settings/account"));
 	const navData = await getNavigationData(c);
-	const currentToken = (await c.var.auth.api.getSession({ headers: c.req.raw.headers }))?.session?.token ?? "";
+	const currentToken = c.var.session?.session?.token ?? "";
 	const sessions = (await c.var.auth.api.listSessions({ headers: c.req.raw.headers }) ?? []).map((s) => ({
 		token: s.token,
 		ipAddress: s.ipAddress ?? null,
@@ -20787,7 +20886,7 @@ settingsRoutes.post("/github-sync/connect", async (c) => {
 	if (getGitHubAppConfig(c.env)) return dsToast("This deployment uses GitHub App authentication. Use Install GitHub App instead.", "error");
 	const body = await c.req.json();
 	if (!body.token?.trim() || !body.repo?.trim()) return dsToast("Token and repository are required.", "error");
-	const { parseRepoSlug, createGitHubClient } = await import("./github-api-CficQztC.js").then((n) => n.n);
+	const { parseRepoSlug, createGitHubClient } = await import("./github-api-BkRWnqMx.js").then((n) => n.n);
 	const parsed = parseRepoSlug(body.repo);
 	if (!parsed) return dsToast("Invalid repository format. Use owner/repo.", "error");
 	const client = createGitHubClient(body.token);
@@ -20806,7 +20905,7 @@ settingsRoutes.post("/github-sync/connect", async (c) => {
 	await c.var.services.settings.set("GITHUB_SYNC_AUTH_MODE", "pat");
 	await c.var.services.settings.set("GITHUB_SYNC_APP_INSTALLATION_ID", "");
 	await c.var.services.settings.set("GITHUB_SYNC_ENABLED", "true");
-	const { createGitHubSyncService } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { createGitHubSyncService } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	const syncService = createGitHubSyncService(c.var.services, c.var.currentSite.id, await buildSyncSiteConfig(c), {
 		storage: c.var.storage,
 		githubApp: getGitHubAppConfig(c.env)
@@ -20825,7 +20924,7 @@ settingsRoutes.post("/github-sync/connect", async (c) => {
 	return dsRedirect(publicPath(c, "/settings/github-sync"));
 });
 settingsRoutes.post("/github-sync/push", async (c) => {
-	const { createGitHubSyncService } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { createGitHubSyncService } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	const syncService = createGitHubSyncService(c.var.services, c.var.currentSite.id, await buildSyncSiteConfig(c), {
 		storage: c.var.storage,
 		githubApp: getGitHubAppConfig(c.env)
@@ -20845,7 +20944,7 @@ settingsRoutes.post("/github-sync/push", async (c) => {
 	});
 });
 settingsRoutes.post("/github-sync/disconnect", async (c) => {
-	const { createGitHubSyncService } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { createGitHubSyncService } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	await createGitHubSyncService(c.var.services, c.var.currentSite.id, await buildSyncSiteConfig(c), { githubApp: getGitHubAppConfig(c.env) }).teardownWebhook();
 	return dsRedirect(publicPath(c, "/settings/github-sync"));
 });
@@ -21033,10 +21132,10 @@ function buildRepoPickerLabels(c) {
 	const repo = String(body.repo ?? "").trim();
 	const confirmForeign = body.confirmForeign === true || body.confirmForeign === "true";
 	if (!installationId || !repo) return wantsJson ? c.json({ error: "Missing installationId or repo." }, 400) : c.text("Missing installationId or repo.", 400);
-	const { parseRepoSlug, createGitHubClient } = await import("./github-api-CficQztC.js").then((n) => n.n);
+	const { parseRepoSlug, createGitHubClient } = await import("./github-api-BkRWnqMx.js").then((n) => n.n);
 	const parsed = parseRepoSlug(repo);
 	if (!parsed) return wantsJson ? c.json({ error: "Invalid repository format." }, 400) : c.text("Invalid repository format.", 400);
-	const { classifyRepoForSync } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { classifyRepoForSync } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	const ghClient = createGitHubClient(() => getInstallationTokenFromApp(app, installationId));
 	let classification;
 	try {
@@ -21066,7 +21165,7 @@ function buildRepoPickerLabels(c) {
 	await c.var.services.settings.set("GITHUB_SYNC_REPO", repo);
 	await c.var.services.settings.set("GITHUB_SYNC_TOKEN", "");
 	await c.var.services.settings.set("GITHUB_SYNC_ENABLED", "true");
-	const { createGitHubSyncService } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { createGitHubSyncService } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	const syncService = createGitHubSyncService(c.var.services, c.var.currentSite.id, await buildSyncSiteConfig(c), {
 		storage: c.var.storage,
 		githubApp: app
@@ -21105,7 +21204,7 @@ function requireGitHubApp(c) {
 * build a client for classification without adding the helper to the
 * top-level imports (the module already lazy-imports github-api).
 */ async function getInstallationTokenFromApp(app, installationId) {
-	const { getInstallationToken } = await import("./github-app-F4qZ05xk.js").then((n) => n.i);
+	const { getInstallationToken } = await import("./github-app-WeadXMb8.js").then((n) => n.i);
 	return getInstallationToken(app, installationId);
 }
 /** List GitHub App installations authorized for this site. */ settingsRoutes.get("/github-sync/app/installations", async (c) => {
@@ -21179,10 +21278,10 @@ function requireGitHubApp(c) {
 	const installationId = String(body.installationId ?? "").trim();
 	const repo = String(body.repo ?? "").trim();
 	if (!installationId || !repo) return c.json({ error: "Missing installationId or repo." }, 400);
-	const { parseRepoSlug, createGitHubClient } = await import("./github-api-CficQztC.js").then((n) => n.n);
+	const { parseRepoSlug, createGitHubClient } = await import("./github-api-BkRWnqMx.js").then((n) => n.n);
 	const parsed = parseRepoSlug(repo);
 	if (!parsed) return c.json({ error: "Invalid repository format." }, 400);
-	const { classifyRepoForSync } = await import("./github-sync-zohnA9qv.js").then((n) => n.r);
+	const { classifyRepoForSync } = await import("./github-sync-7y_nTXx1.js").then((n) => n.r);
 	const client = createGitHubClient(() => getInstallationTokenFromApp(app, installationId));
 	try {
 		const classification = await classifyRepoForSync(client, parsed.owner, parsed.repo, c.var.currentSite.id);
@@ -23389,10 +23488,78 @@ function toSearchApiResult(post, snippet, sitePathPrefix) {
 	};
 }
 //#endregion
+//#region src/lib/rate-limit.ts
+/**
+* Rate Limiting Abstraction
+*
+* Shared interface for per-key rate limiting. Runtimes provide their own
+* implementation: Cloudflare Workers uses a D1-backed sliding-window table
+* (ephemeral isolates can't hold memory state), while Node uses an
+* in-process Map (the process is persistent and avoids DB round-trips).
+*
+* Consumers depend only on this interface; they are runtime-agnostic.
+*/ /**
+* Extracts the client IP from a Hono request context.
+*
+* On Cloudflare Workers, `cf-connecting-ip` is set by the edge and is
+* authoritative. On Node deployments we fall back to the leftmost
+* `x-forwarded-for` entry, which is the conventional client IP when the
+* app sits behind a single trusted proxy. When neither header is
+* available we return `"unknown"` so all such requests share a bucket —
+* preferable to skipping the rate limit entirely.
+*
+* Note: this helper does not verify proxy trust. It is used for DoS
+* protection, not authentication. If header-forgery resistance becomes
+* important, gate the `x-forwarded-for` branch on `shouldTrustProxy`.
+*/ function getClientIp(c) {
+	const cf = c.req.header("cf-connecting-ip");
+	if (cf) return cf;
+	const fwd = c.req.header("x-forwarded-for");
+	if (fwd) {
+		const first = fwd.split(",")[0]?.trim();
+		if (first) return first;
+	}
+	return "unknown";
+}
+//#endregion
+//#region src/middleware/rate-limit.ts
+/**
+* Rate-Limit Middleware
+*
+* Applies a per-IP rate limit to the routes it wraps. Which storage
+* backs the limiter (D1 or in-memory) is decided upstream by the
+* runtime; this middleware only reads `c.var.rateLimiter` and doesn't
+* care.
+*
+* When the limit is exceeded, responds with HTTP 429 and a
+* `Retry-After` header. When `appConfig.rateLimit.disabled` is true the
+* middleware short-circuits to `next()` so test and dev environments
+* don't have to reason about bucket state.
+*/ function rateLimit(opts) {
+	return async (c, next) => {
+		if (c.var.appConfig.rateLimit.disabled) return next();
+		const ip = getClientIp(c);
+		const result = await c.var.rateLimiter.check(`${opts.name}:${ip}`, {
+			limit: opts.limit,
+			windowSec: opts.windowSec
+		});
+		if (!result.ok) {
+			c.header("Retry-After", String(result.retryAfterSec ?? opts.windowSec));
+			return c.json({ error: "Too many requests. Please slow down." }, 429);
+		}
+		return next();
+	};
+}
+//#endregion
 //#region src/routes/api/search.ts
 /**
 * Search API Routes
 */ var searchApiRoutes = new Hono();
+searchApiRoutes.use("*", async (c, next) => rateLimit({
+	name: "search",
+	limit: c.var.appConfig.rateLimit.searchPerMinute,
+	windowSec: 60
+})(c, next));
 searchApiRoutes.get("/", async (c) => {
 	const query = c.req.query("q");
 	if (!query || query.trim().length === 0) throw new ValidationError("Query parameter 'q' is required");
@@ -24857,6 +25024,30 @@ var internalTextAttachmentsRoutes = new Hono();
 	return c.json(result);
 });
 //#endregion
+//#region src/routes/api/internal/search-reindex.ts
+var ReindexSchema = z.object({
+	limit: z.number().int().positive().max(500).optional(),
+	cursor: z.string().min(1).optional()
+});
+var internalSearchReindexRoutes = new Hono();
+/**
+* Rebuild `post.body_text` for a batch of non-deleted posts. FTS indexes
+* (SQLite trigger / Postgres generated column) refresh automatically when
+* `body_text` changes.
+*
+* Idempotent. Callers loop with the returned `nextCursor` until `done: true`.
+* Used by the `jant search-reindex` CLI to backfill search indexes for
+* existing posts after changes to the text extraction logic (e.g. including
+* link mark hrefs so inline URLs become searchable).
+*/ internalSearchReindexRoutes.post("/", requireInternalAdminApi(), async (c) => {
+	const body = parseValidated(ReindexSchema, (c.req.header("Content-Type") || "").includes("application/json") ? await c.req.json().catch(() => ({})) : {});
+	const result = await c.var.services.posts.reindexBodyText({
+		limit: body.limit,
+		cursor: body.cursor
+	});
+	return c.json(result);
+});
+//#endregion
 //#region src/routes/api/internal/uploads.ts
 var CleanupUploadsSchema = z.object({ limit: z.number().int().positive().max(500).optional() });
 var internalUploadsRoutes = new Hono();
@@ -25354,30 +25545,111 @@ feedRoutes.get("/all/atom.xml", (c) => {
 //#region src/routes/feed/sitemap.ts
 /**
 * Sitemap Routes
+*
+* Sitemap is sharded to keep each shard small, cache-friendly, and stable:
+*
+*   /sitemap.xml            → sitemap index listing all shards
+*   /sitemap-posts-N.xml    → one shard of published non-reply posts
+*   /sitemap-collections.xml → public collection pages
+*   /sitemap-pages.xml       → homepage + static aggregate pages
+*
+* Post shards are keyset-paginated by post `id` (TypeIDs embed a
+* creation-ordered UUIDv7 timestamp), so once a shard fills up its membership
+* never changes: new posts always land in the last shard, never rewriting an
+* older one. This lets old shards be cached at the edge for a long time.
 */ var sitemapRoutes = new Hono();
-sitemapRoutes.get("/sitemap.xml", async (c) => {
-	const { appConfig } = c.var;
-	const siteUrl = appConfig.siteUrl;
-	const posts = await c.var.services.posts.list({
-		status: "published",
-		excludeReplies: true,
-		excludePrivate: true,
-		limit: 1e3
-	});
-	const mediaCtx = createMediaContext(appConfig);
-	const aliasesMap = await c.var.services.paths.getPostAliases(posts.map((p) => p.id));
-	const aliasMap = /* @__PURE__ */ new Map();
-	for (const [id, aliases] of aliasesMap) if (aliases[0]) aliasMap.set(id, aliases[0]);
-	const postViews = toPostViewsFromPosts(posts, mediaCtx, void 0, aliasMap);
-	const xml = defaultSitemapRenderer({
-		siteUrl,
-		sitemapUrl: toAbsoluteSiteUrl("/sitemap.xml", siteUrl, appConfig.sitePathPrefix),
-		posts: postViews
-	});
+var CACHE_SHORT = "public, max-age=180";
+var CACHE_FULL_SHARD = "public, max-age=86400, s-maxage=86400";
+function xmlResponse(xml, cacheControl) {
 	return new Response(xml, { headers: {
 		"Content-Type": "application/xml; charset=utf-8",
-		"Cache-Control": "public, max-age=180"
+		"Cache-Control": cacheControl
 	} });
+}
+/**
+* Build a public URL entry (absolute URL) from an internal path.
+*/ function absoluteUrl(internalPath, siteUrl, sitePathPrefix) {
+	return toAbsoluteSiteUrl(internalPath, siteUrl, sitePathPrefix);
+}
+/** Convert a unix-seconds timestamp into a `YYYY-MM-DD` string. */ function toIsoDate(unixSeconds) {
+	return (/* @__PURE__ */ new Date(unixSeconds * 1e3)).toISOString().slice(0, 10);
+}
+sitemapRoutes.get("/sitemap.xml", async (c) => {
+	const { appConfig } = c.var;
+	const { siteUrl, sitePathPrefix } = appConfig;
+	const postCount = await c.var.services.posts.countForSitemap();
+	const postShardCount = Math.max(1, Math.ceil(postCount / 500));
+	const entries = [{ loc: absoluteUrl("/sitemap-pages.xml", siteUrl, sitePathPrefix) }];
+	for (let page = 1; page <= postShardCount; page++) entries.push({ loc: absoluteUrl(`/sitemap-posts-${page}.xml`, siteUrl, sitePathPrefix) });
+	if ((await c.var.services.collections.list()).length > 0) entries.push({ loc: absoluteUrl("/sitemap-collections.xml", siteUrl, sitePathPrefix) });
+	return xmlResponse(renderSitemapIndex(entries), CACHE_SHORT);
+});
+sitemapRoutes.get("/:file{sitemap-posts-[0-9]+\\.xml}", async (c) => {
+	const { appConfig } = c.var;
+	const { siteUrl, sitePathPrefix } = appConfig;
+	const file = c.req.param("file");
+	const match = /^sitemap-posts-([0-9]+)\.xml$/.exec(file);
+	if (!match) return c.notFound();
+	const page = Number(match[1]);
+	if (!Number.isFinite(page) || page < 1) return c.notFound();
+	let afterId;
+	if (page > 1) {
+		const cursorOffset = (page - 1) * 500 - 1;
+		const cursor = await c.var.services.posts.getSitemapIdAt(cursorOffset);
+		if (cursor === null) return c.notFound();
+		afterId = cursor;
+	}
+	const shardEntries = await c.var.services.posts.listForSitemap({
+		afterId,
+		limit: 500
+	});
+	const urls = shardEntries.map((entry) => {
+		return {
+			loc: absoluteUrl(entry.alias ?? `/${entry.slug}`, siteUrl, sitePathPrefix),
+			lastmod: toIsoDate(entry.updatedAt),
+			priority: entry.featuredAt ? "0.8" : "0.6"
+		};
+	});
+	const cacheControl = shardEntries.length === 500 ? CACHE_FULL_SHARD : CACHE_SHORT;
+	return xmlResponse(renderSitemapUrlSet(urls), cacheControl);
+});
+sitemapRoutes.get("/sitemap-collections.xml", async (c) => {
+	const { appConfig } = c.var;
+	const { siteUrl, sitePathPrefix } = appConfig;
+	const collections = await c.var.services.collections.list();
+	return xmlResponse(renderSitemapUrlSet(await Promise.all(collections.map(async (collection) => {
+		const alias = await c.var.services.customUrls.getByTarget("collection", collection.id);
+		return {
+			loc: absoluteUrl(alias ? `/${alias.path}` : `/${collection.slug}`, siteUrl, sitePathPrefix),
+			lastmod: toIsoDate(collection.updatedAt),
+			priority: "0.7"
+		};
+	}))), CACHE_SHORT);
+});
+sitemapRoutes.get("/sitemap-pages.xml", async (c) => {
+	const { appConfig } = c.var;
+	const { siteUrl, sitePathPrefix, homeDefaultView } = appConfig;
+	const urls = [{
+		loc: absoluteUrl("/", siteUrl, sitePathPrefix),
+		priority: "1.0",
+		changefreq: "daily"
+	}, {
+		loc: absoluteUrl("/archive", siteUrl, sitePathPrefix),
+		priority: "0.5",
+		changefreq: "weekly"
+	}];
+	const secondaryAggregate = homeDefaultView === "featured" ? "/latest" : "/featured";
+	urls.push({
+		loc: absoluteUrl(secondaryAggregate, siteUrl, sitePathPrefix),
+		priority: "0.6",
+		changefreq: "daily"
+	});
+	if ((await c.var.services.collections.list()).length > 0) urls.push({
+		loc: absoluteUrl("/collections", siteUrl, sitePathPrefix),
+		priority: "0.5",
+		changefreq: "weekly"
+	});
+	return xmlResponse(renderSitemapUrlSet(urls), CACHE_SHORT);
 });
 sitemapRoutes.get("/robots.txt", async (c) => {
 	const { appConfig } = c.var;
@@ -25395,7 +25667,7 @@ sitemapRoutes.get("/robots.txt", async (c) => {
 	].join("\n");
 	return new Response(robots, { headers: {
 		"Content-Type": "text/plain; charset=utf-8",
-		"Cache-Control": "public, max-age=180"
+		"Cache-Control": CACHE_SHORT
 	} });
 });
 //#endregion
@@ -25438,6 +25710,34 @@ manifestRoutes.get("/manifest.webmanifest", (c) => {
 	} });
 });
 //#endregion
+//#region src/middleware/session.ts
+/**
+* Session Middleware
+*
+* Runs once per request (after runtime init) to look up the better-auth
+* session and stash it on `c.var.session` / `c.var.isAuthenticated`.
+*
+* This replaces ad-hoc `auth.api.getSession()` calls scattered across
+* view helpers (e.g. `lib/navigation.ts`) so each request only parses
+* the session cookie once. better-auth's own cookieCache (5 min) still
+* keeps this cheap, but centralizing the call also unlocks `Promise.all`
+* patterns in routes that previously serialized on a hidden session fetch.
+*
+* Never throws — any lookup error is treated as "not authenticated".
+*/ function attachSession() {
+	return async (c, next) => {
+		try {
+			const session = await c.var.auth.api.getSession({ headers: c.req.raw.headers });
+			c.set("session", session ?? null);
+			c.set("isAuthenticated", !!session?.user);
+		} catch {
+			c.set("session", null);
+			c.set("isAuthenticated", false);
+		}
+		await next();
+	};
+}
+//#endregion
 //#region src/middleware/onboarding.ts
 /**
 * Onboarding Middleware
@@ -26361,6 +26661,60 @@ async function deriveScryptKey(password, saltHex, opts) {
 	});
 }
 //#endregion
+//#region src/lib/rate-limit-d1.ts
+/**
+* D1 Sliding-Window Rate Limiter
+*
+* Used by the Cloudflare Workers runtime where isolates are ephemeral and
+* memory-based limiters would silently drop state between requests. Each
+* check performs one SELECT (over a two-row range) plus one UPSERT — both
+* hit a composite primary key so the round-trips are cheap.
+*
+* Algorithm: two-window weighted counter. The previous window's tally
+* decays linearly as the current window fills, giving a smoother limit
+* than a naive fixed window (which would allow a 2x burst at the
+* boundary) while remaining a single-key storage primitive.
+*
+* For Node deployments use `createMemoryRateLimiter` instead.
+*/
+/**
+* Probability of running opportunistic cleanup on any given write.
+* 1% strikes a balance between bounded table growth and per-request cost.
+*/ var CLEANUP_PROBABILITY = .01;
+function createD1RateLimiter(db, schema, now = () => Math.floor(Date.now() / 1e3)) {
+	const { rateLimit } = schema;
+	return { async check(key, opts) {
+		const { limit, windowSec } = opts;
+		const nowSec = now();
+		const currentWindow = Math.floor(nowSec / windowSec) * windowSec;
+		const previousWindow = currentWindow - windowSec;
+		const rows = await db.select({
+			windowStart: rateLimit.windowStart,
+			count: rateLimit.count
+		}).from(rateLimit).where(and(eq(rateLimit.key, key), inArray(rateLimit.windowStart, [currentWindow, previousWindow])));
+		let currentCount = 0;
+		let previousCount = 0;
+		for (const row of rows) if (row.windowStart === currentWindow) currentCount = row.count;
+		else if (row.windowStart === previousWindow) previousCount = row.count;
+		const elapsed = nowSec - currentWindow;
+		const prevWeight = 1 - elapsed / windowSec;
+		if (previousCount * prevWeight + currentCount >= limit) return {
+			ok: false,
+			retryAfterSec: Math.max(1, windowSec - elapsed)
+		};
+		await db.insert(rateLimit).values({
+			key,
+			windowStart: currentWindow,
+			count: 1
+		}).onConflictDoUpdate({
+			target: [rateLimit.key, rateLimit.windowStart],
+			set: { count: sql`${rateLimit.count} + 1` }
+		});
+		if (Math.random() < CLEANUP_PROBABILITY) await db.delete(rateLimit).where(lt(rateLimit.windowStart, currentWindow - windowSec * 2));
+		return { ok: true };
+	} };
+}
+//#endregion
 //#region src/lib/hosted-sso.ts
 var textEncoder = new TextEncoder();
 var textDecoder = new TextDecoder();
@@ -27649,6 +28003,51 @@ function createPostService(db, config, siteId, paths, databaseSchema = sqliteSch
 			if (filters.offset !== void 0) query = query.offset(filters.offset);
 			return hydratePosts(await query);
 		},
+		async listForSitemap({ afterId, limit }) {
+			const conditions = buildFilterConditions({
+				status: "published",
+				excludePrivate: true,
+				excludeReplies: true
+			});
+			if (afterId !== void 0) conditions.push(sql`${posts.id} > ${afterId}`);
+			const rows = await db.select({
+				id: posts.id,
+				updatedAt: posts.updatedAt,
+				featuredAt: posts.featuredAt
+			}).from(posts).where(conditions.length > 0 ? and(...conditions) : void 0).orderBy(asc(posts.id)).limit(limit);
+			if (rows.length === 0) return [];
+			const ids = rows.map((row) => row.id);
+			const [slugMap, aliasesMap] = await Promise.all([resolvedPaths.getPostSlugMap(ids), resolvedPaths.getPostAliases(ids)]);
+			return rows.map((row) => {
+				const slug = slugMap.get(row.id);
+				if (!slug) return null;
+				const alias = aliasesMap.get(row.id)?.[0] ?? null;
+				return {
+					id: row.id,
+					slug,
+					alias,
+					updatedAt: row.updatedAt,
+					featuredAt: row.featuredAt
+				};
+			}).filter((entry) => entry !== null);
+		},
+		async countForSitemap() {
+			const conditions = buildFilterConditions({
+				status: "published",
+				excludePrivate: true,
+				excludeReplies: true
+			});
+			return (await db.select({ count: sql`CAST(count(*) AS INTEGER)`.as("count") }).from(posts).where(conditions.length > 0 ? and(...conditions) : void 0))[0]?.count ?? 0;
+		},
+		async getSitemapIdAt(offset) {
+			if (offset < 0) return null;
+			const conditions = buildFilterConditions({
+				status: "published",
+				excludePrivate: true,
+				excludeReplies: true
+			});
+			return (await db.select({ id: posts.id }).from(posts).where(conditions.length > 0 ? and(...conditions) : void 0).orderBy(asc(posts.id)).limit(1).offset(offset))[0]?.id ?? null;
+		},
 		async count(filters = {}) {
 			const conditions = buildFilterConditions(filters);
 			return (await db.select({ count: sql`CAST(count(*) AS INTEGER)`.as("count") }).from(posts).where(conditions.length > 0 ? and(...conditions) : void 0))[0]?.count ?? 0;
@@ -27688,7 +28087,7 @@ function createPostService(db, config, siteId, paths, databaseSchema = sqliteSch
 				hasAttachments: data.attachments ? data.attachments.length > 0 : void 0
 			});
 			const bodyHtml = body ? renderTiptapJson(body) : null;
-			const bodyText = body ? extractBodyText(body) : null;
+			const bodyText = body ? extractBodyText(body, { includeLinkHrefs: true }) : null;
 			let summary = null;
 			if (format === "note" && title && body && summaryConfig) summary = extractSummary(body, summaryConfig.maxParagraphs, summaryConfig.maxChars);
 			let threadId = id;
@@ -27968,7 +28367,7 @@ function createPostService(db, config, siteId, paths, databaseSchema = sqliteSch
 				const normalizedBody = rawBody ? trimTiptapBody(rawBody) : null;
 				updates.body = normalizedBody;
 				updates.bodyHtml = normalizedBody ? renderTiptapJson(normalizedBody) : null;
-				updates.bodyText = normalizedBody ? extractBodyText(normalizedBody) : null;
+				updates.bodyText = normalizedBody ? extractBodyText(normalizedBody, { includeLinkHrefs: true }) : null;
 			}
 			if (summaryConfig) {
 				const format = nextFormat;
@@ -28406,6 +28805,40 @@ function createPostService(db, config, siteId, paths, databaseSchema = sqliteSch
 			const conditions = [...buildFilterConditions(filters), isNotNull(posts.publishedAt)];
 			const publishedYearExpr = buildPublishedYearExpr();
 			return (await db.select({ year: publishedYearExpr.as("year") }).from(posts).where(conditions.length > 0 ? and(...conditions) : void 0).groupBy(publishedYearExpr).orderBy(desc(publishedYearExpr))).map((r) => parseInt(r.year, 10));
+		},
+		async reindexBodyText(options = {}) {
+			const requested = options.limit ?? 50;
+			const limit = Math.min(Math.max(Math.trunc(requested), 1), 500);
+			const cursor = options.cursor;
+			const whereConditions = [eq(posts.siteId, siteId), isNull(posts.deletedAt)];
+			if (cursor) whereConditions.push(gt(posts.id, cursor));
+			const rows = await db.select({
+				id: posts.id,
+				body: posts.body,
+				bodyText: posts.bodyText
+			}).from(posts).where(and(...whereConditions)).orderBy(asc(posts.id)).limit(limit + 1);
+			const hasMore = rows.length > limit;
+			const batch = hasMore ? rows.slice(0, limit) : rows;
+			let updated = 0;
+			let skipped = 0;
+			for (const row of batch) {
+				const nextBodyText = row.body ? extractBodyText(row.body, { includeLinkHrefs: true }) : null;
+				if (nextBodyText === row.bodyText) {
+					skipped++;
+					continue;
+				}
+				await db.update(posts).set({ bodyText: nextBodyText }).where(and(eq(posts.siteId, siteId), eq(posts.id, row.id)));
+				updated++;
+			}
+			const lastRow = batch.at(-1);
+			const lastId = lastRow ? lastRow.id : null;
+			return {
+				processed: batch.length,
+				updated,
+				skipped,
+				nextCursor: hasMore ? lastId : null,
+				done: !hasMore
+			};
 		}
 	};
 }
@@ -30863,6 +31296,7 @@ function getResolvedSiteBaseUrl(env, publicRequestUrl, pathPrefix) {
 			schema: sqliteSchemaBundle,
 			secret: hostedControlPlaneSsoSecret
 		}),
+		rateLimiter: createD1RateLimiter(db, sqliteSchemaBundle),
 		services: createServices(db, session, siteLookup.site.id, {
 			databaseDialect: "sqlite",
 			bootstrapSite: getSingleSiteBootstrapOptions(env),
@@ -30876,7 +31310,76 @@ function getResolvedSiteBaseUrl(env, publicRequestUrl, pathPrefix) {
 	};
 }
 //#endregion
+//#region src/lib/rate-limit-memory.ts
+/**
+* In-Memory Rate Limiter
+*
+* Used by the Node runtime. The server process is long-lived and
+* single-instance, so a local `Map` is reliable and avoids unnecessary DB
+* round-trips. Uses the classic sliding-window-counter algorithm (two
+* aligned buckets with a weighted estimate) for smooth limiting without
+* the 2x boundary burst of a fixed window.
+*
+* On Cloudflare Workers use `createD1RateLimiter` instead — isolates are
+* ephemeral and cannot share memory across requests.
+*/ /**
+* Number of live keys after which we prune old buckets on the next write.
+* Keeps the Map bounded under abuse without paying for eager sweeps.
+*/ var SWEEP_THRESHOLD = 1e4;
+/**
+* Creates an isolated in-memory limiter. Tests construct one per test app;
+* the Node runtime holds a single module-level instance across requests.
+*
+* `now` is injectable so tests can assert window-rollover behavior without
+* relying on real time.
+*/ function createMemoryRateLimiter(now = () => Math.floor(Date.now() / 1e3)) {
+	const buckets = /* @__PURE__ */ new Map();
+	function sweep(nowSec) {
+		if (buckets.size < SWEEP_THRESHOLD) return;
+		const cutoff = nowSec - 600;
+		for (const [key, bucket] of buckets) if (bucket.windowStart < cutoff) buckets.delete(key);
+	}
+	return { async check(key, opts) {
+		const { limit, windowSec } = opts;
+		const nowSec = now();
+		const currentWindow = Math.floor(nowSec / windowSec) * windowSec;
+		let bucket = buckets.get(key);
+		if (!bucket) {
+			bucket = {
+				windowStart: currentWindow,
+				count: 0,
+				prevCount: 0
+			};
+			buckets.set(key, bucket);
+		} else if (bucket.windowStart !== currentWindow) {
+			if (bucket.windowStart === currentWindow - windowSec) bucket.prevCount = bucket.count;
+			else bucket.prevCount = 0;
+			bucket.count = 0;
+			bucket.windowStart = currentWindow;
+		}
+		const elapsed = nowSec - currentWindow;
+		const prevWeight = 1 - elapsed / windowSec;
+		if (bucket.prevCount * prevWeight + bucket.count >= limit) return {
+			ok: false,
+			retryAfterSec: Math.max(1, windowSec - elapsed)
+		};
+		bucket.count += 1;
+		sweep(nowSec);
+		return { ok: true };
+	} };
+}
+//#endregion
 //#region src/runtime/node.ts
+/**
+* Single process-wide rate limiter for the Node runtime. Node serves all
+* requests out of one persistent process, so in-memory counters are
+* reliable and avoid per-request D1 round-trips. Constructed lazily on
+* first use so tests that never build a request runtime don't pay for it.
+*/ var sharedNodeRateLimiter = null;
+function getNodeRateLimiter() {
+	sharedNodeRateLimiter ??= createMemoryRateLimiter();
+	return sharedNodeRateLimiter;
+}
 function createBetterSqliteRawQuery(sqlite) {
 	return { prepare(query) {
 		let params = [];
@@ -30928,6 +31431,7 @@ function createBetterSqliteRawQuery(sqlite) {
 			schema: databaseSchema,
 			secret: hostedControlPlaneSsoSecret
 		}),
+		rateLimiter: getNodeRateLimiter(),
 		services: createServices(db, rawQuery, siteLookup.site.id, {
 			databaseDialect,
 			bootstrapSite: getSingleSiteBootstrapOptions(env),
@@ -31204,8 +31708,10 @@ async function servePublicStorage(c) {
 		c.set("auth", runtime.auth);
 		c.set("currentSite", runtime.currentSite);
 		c.set("currentSiteDomain", runtime.currentSiteDomain);
+		c.set("rateLimiter", runtime.rateLimiter);
 		await next();
 	});
+	app.use("*", attachSession());
 	app.use("*", async (c, next) => {
 		const redirectUrl = await getHostedCanonicalRedirect({
 			currentSite: c.var.currentSite,
@@ -31223,6 +31729,7 @@ async function servePublicStorage(c) {
 	app.route("/api/internal/api-tokens", internalApiTokensRoutes);
 	app.route("/api/internal/sites", internalSitesRoutes);
 	app.route("/api/internal/text-attachments", internalTextAttachmentsRoutes);
+	app.route("/api/internal/search/reindex", internalSearchReindexRoutes);
 	app.route("/api/internal/uploads", internalUploadsRoutes);
 	app.route("/api/github-sync", githubSyncWebhookRoutes);
 	app.get("/api/media/:id/content", async (c) => {
@@ -31352,4 +31859,4 @@ async function servePublicStorage(c) {
 	return app;
 }
 //#endregion
-export { MEDIA_KINDS as A, toNavItemViews as C, FORMATS$2 as D, toSearchResultView as E, buildThemeStyle as F, BUILTIN_COLOR_THEMES as I, getPublicAssetBasePath as L, SORT_ORDERS as M, STATUSES$2 as N, MAX_MEDIA_ATTACHMENTS as O, TEXT_ATTACHMENT_CONTENT_FORMATS as P, isAssetPath as R, toNavItemView as S, toPostViews as T, schema_exports$1 as _, createSiteService as a, toArchiveGroupsWithMedia as b, resolveConfig as c, getFontThemeCssVariables as d, defaultFeedRenderer as f, createNodeDatabase as g, sqliteSchemaBundle as h, createNodeRequestRuntime as i, NAV_ITEM_TYPES$2 as j, MAX_PINNED_POSTS as k, BUILTIN_FONT_THEMES as l, pgSchemaBundle as m, createRequestRuntime as n, resolveDatabaseDialect as o, defaultSitemapRenderer as p, createNodeCliRuntime as r, getHostBasedStartupConfigurationIssues as s, createApp as t, getCjkSerifCssVariables as u, createMediaContext as v, toPostView as w, toMediaView as x, toArchiveGroups as y };
+export { NAV_ITEM_TYPES$2 as A, toPostView as C, MAX_MEDIA_ATTACHMENTS as D, FORMATS$2 as E, BUILTIN_COLOR_THEMES as F, getPublicAssetBasePath as I, isAssetPath as L, STATUSES$2 as M, TEXT_ATTACHMENT_CONTENT_FORMATS as N, MAX_PINNED_POSTS as O, buildThemeStyle as P, toNavItemViews as S, toSearchResultView as T, createMediaContext as _, createSiteService as a, toMediaView as b, resolveConfig as c, getFontThemeCssVariables as d, defaultFeedRenderer as f, schema_exports$1 as g, createNodeDatabase as h, createNodeRequestRuntime as i, SORT_ORDERS as j, MEDIA_KINDS as k, BUILTIN_FONT_THEMES as l, sqliteSchemaBundle as m, createRequestRuntime as n, resolveDatabaseDialect as o, pgSchemaBundle as p, createNodeCliRuntime as r, getHostBasedStartupConfigurationIssues as s, createApp as t, getCjkSerifCssVariables as u, toArchiveGroups as v, toPostViews as w, toNavItemView as x, toArchiveGroupsWithMedia as y };