@polymorphism-tech/morph-spec 3.0.1 → 3.1.0

package/stacks/nextjs-supabase/.morph/examples/crud-nextjs-supabase/spec.md

@@ -0,0 +1,85 @@
+# CRUD App - Specification
+
+## 1. Overview
+
+Full-stack CRUD application demonstrating the Next.js + .NET API + Supabase stack. Users can manage products with authentication, file uploads, and paginated listings.
+
+### 1.1 Objectives
+
+- .NET 10 Minimal API with Dapper for data access
+- Supabase Auth for authentication (email + OAuth)
+- Row Level Security for data isolation per user
+- File uploads via Supabase Storage
+- Next.js 15 Server Components for data fetching
+
+### 1.2 Use Cases
+
+- Internal product catalogs
+- Personal inventory management
+- MVP product showcases
+- Learning reference for the Next.js + Supabase stack
+
+## 2. Functional Requirements
+
+### 2.1 Product CRUD
+
+| ID | Requirement |
+|----|-------------|
+| PROD-001 | Create product with name, description, price, and image |
+| PROD-002 | List products with pagination (20 items/page) |
+| PROD-003 | Search products by name (case-insensitive) |
+| PROD-004 | Update product fields |
+| PROD-005 | Delete product (soft or hard delete) |
+| PROD-006 | View product detail page |
+
+### 2.2 Authentication
+
+| ID | Requirement |
+|----|-------------|
+| AUTH-001 | Email/password sign-up and sign-in via Supabase Auth |
+| AUTH-002 | OAuth login (Google, GitHub) |
+| AUTH-003 | Session management with cookie-based refresh |
+| AUTH-004 | Protected routes via Next.js middleware |
+| AUTH-005 | JWT forwarded to .NET API for endpoint authorization |
+
+### 2.3 File Uploads
+
+| ID | Requirement |
+|----|-------------|
+| FILE-001 | Upload product image to Supabase Storage |
+| FILE-002 | Generate signed URL for private images |
+| FILE-003 | Validate file type (JPEG, PNG, WebP) and size (max 5MB) |
+| FILE-004 | Delete image from storage when product is deleted |
+
+### 2.4 Data Isolation
+
+| ID | Requirement |
+|----|-------------|
+| RLS-001 | Users can only read their own products |
+| RLS-002 | Users can only insert products with their own user_id |
+| RLS-003 | Users can only update/delete their own products |
+| RLS-004 | RLS enforced at PostgreSQL level (not just application) |
+
+## 3. Non-Functional Requirements
+
+### 3.1 Performance
+
+| ID | Requirement |
+|----|-------------|
+| PERF-001 | API response < 100ms (P95) for CRUD endpoints |
+| PERF-002 | LCP < 2.5s (Core Web Vitals) |
+| PERF-003 | Pagination via LIMIT/OFFSET with indexed queries |
+
+### 3.2 Security
+
+| ID | Requirement |
+|----|-------------|
+| SEC-001 | HTTPS in production |
+| SEC-002 | CORS restricted to known frontend origins |
+| SEC-003 | SQL injection prevention via parameterized queries (Dapper) |
+| SEC-004 | JWT validation with Supabase secret |
+| SEC-005 | Supabase service_role key never exposed to frontend |
+
+---
+
+*MORPH-SPEC by Polymorphism Tech*

package/stacks/nextjs-supabase/.morph/examples/crud-nextjs-supabase/tasks.md

@@ -0,0 +1,86 @@
+# CRUD App - Tasks
+
+## Phase 1: Supabase Setup
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T001 | Create Supabase project and configure auth providers (email, Google, GitHub) | - | S |
+| T002 | Create products table migration with RLS policies | T001 | M |
+| T003 | Create Supabase Storage bucket for product images with access policies | T001 | S |
+
+## Phase 2: .NET API Setup
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T004 | Create .NET 10 Minimal API project with Dapper and Npgsql | - | S |
+| T005 | Configure JWT authentication with Supabase JWT secret validation | T001, T004 | M |
+| T006 | Implement ProductsEndpoints (GET list with pagination, GET by id, POST, PUT, DELETE) | T004, T005 | M |
+
+## Phase 3: Auth Middleware and CORS
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T007 | Configure CORS policy for Next.js frontend origin | T004 | S |
+| T008 | Add health check endpoint and OpenAPI documentation | T004 | S |
+
+## Phase 4: Next.js Frontend
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T009 | Create Next.js 15 project with Tailwind CSS and @supabase/ssr | - | S |
+| T010 | Implement Supabase client (browser) and server client with cookie handling | T009, T001 | M |
+| T011 | Create login page with email/password and OAuth buttons | T010 | M |
+| T012 | Create auth callback route handler and Next.js middleware for protected routes | T010 | M |
+
+## Phase 5: Product Pages
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T013 | Create products list page (Server Component) with pagination and search | T006, T012 | M |
+| T014 | Create product detail/edit page with form validation | T013 | M |
+| T015 | Create new product page with image upload to Supabase Storage | T003, T013 | M |
+
+## Phase 6: Docker and Deploy
+
+| ID | Task | Dependencies | Estimate |
+|----|------|--------------|----------|
+| T016 | Create Dockerfile.api (multi-stage .NET build) | T006 | S |
+| T017 | Create Dockerfile.web (Next.js standalone output) | T015 | S |
+| T018 | Create docker-compose.yml for local development | T016, T017 | S |
+
+## Checkpoints
+
+| Checkpoint | After Tasks | Validation |
+|------------|-------------|------------|
+| CP1 | T003 | Supabase project ready with table, RLS, and storage bucket |
+| CP2 | T008 | API compiles, health check responds, JWT validation works |
+| CP3 | T012 | Auth flow works: login, session, protected routes |
+| CP4 | T015 | Full CRUD works: list, create, edit, delete products |
+| CP5 | T018 | Docker Compose runs both services locally |
+
+## Legend
+
+- **S** = Small (< 1h)
+- **M** = Medium (1-3h)
+
+## Execution Order
+
+```
+Supabase: T001 -> T002 -> T003 (CP1)
+
+API (after T001):
+T004 -> T005 -> T006 -> T007 -> T008 (CP2)
+
+Frontend (after T001):
+T009 -> T010 -> T011 -> T012 (CP3)
+
+Pages (after API + Auth):
+T013 -> T014 -> T015 (CP4)
+
+Docker:
+T016 -> T017 -> T018 (CP5)
+```
+
+---
+
+*MORPH-SPEC by Polymorphism Tech*

package/stacks/nextjs-supabase/.morph/examples/saas-nextjs-supabase/README.md

@@ -0,0 +1,498 @@
+# Multi-Tenant SaaS - Next.js + .NET API + Supabase
+
+Multi-tenant SaaS application with tenant isolation via RLS, Stripe billing, team management, and AI-powered search using pgvector.
+
+## Architecture
+
+```
+┌─────────────────────────────────────────────────────────────┐
+│                   Next.js 15 Frontend                       │
+│  ┌──────────────┐  ┌──────────────┐  ┌──────────────────┐  │
+│  │  App Router  │  │  Tenant      │  │  Supabase Auth   │  │
+│  │  /dashboard  │  │  Context     │  │  + custom claims │  │
+│  │  /settings   │  │  Provider    │  │  (tenant_id)     │  │
+│  │  /billing    │  │              │  │                  │  │
+│  │  /search     │  │              │  │                  │  │
+│  └──────────────┘  └──────────────┘  └──────────────────┘  │
+└────────────────────────────┬────────────────────────────────┘
+                             │ REST API (Bearer JWT with tenant_id claim)
+                             ▼
+┌─────────────────────────────────────────────────────────────┐
+│                    .NET 10 Minimal API                       │
+│  ┌──────────────┐  ┌──────────────┐  ┌──────────────────┐  │
+│  │  Tenant      │  │  Stripe      │  │  pgvector        │  │
+│  │  Middleware   │  │  Webhooks    │  │  Search          │  │
+│  │  (from JWT)  │  │  Handler     │  │  Endpoints       │  │
+│  └──────────────┘  └──────────────┘  └──────────────────┘  │
+│  ┌──────────────┐  ┌──────────────┐  ┌──────────────────┐  │
+│  │  Dapper      │  │  JWT Auth    │  │  Team Mgmt       │  │
+│  │  + pgvector  │  │  Middleware  │  │  Endpoints       │  │
+│  └──────────────┘  └──────────────┘  └──────────────────┘  │
+└────────────────────────────┬────────────────────────────────┘
+                             │
+                             ▼
+┌─────────────────────────────────────────────────────────────┐
+│                   Supabase Cloud (Pro)                       │
+│  ┌──────────────┐  ┌──────────────┐  ┌──────────────────┐  │
+│  │  PostgreSQL  │  │  Auth        │  │  Storage         │  │
+│  │  + RLS       │  │  + custom    │  │  (per-tenant     │  │
+│  │  + pgvector  │  │  claims      │  │   buckets)       │  │
+│  └──────────────┘  └──────────────┘  └──────────────────┘  │
+└─────────────────────────────────────────────────────────────┘
+                             │
+                             ▼
+┌─────────────────────────────────────────────────────────────┐
+│                   External Services                         │
+│  ┌──────────────┐  ┌──────────────┐                         │
+│  │  Stripe      │  │  OpenAI      │                         │
+│  │  Billing     │  │  Embeddings  │                         │
+│  └──────────────┘  └──────────────┘                         │
+└─────────────────────────────────────────────────────────────┘
+```
+
+## What It Demonstrates
+
+- Multi-tenancy via PostgreSQL RLS (tenant_id from JWT app_metadata)
+- Supabase Auth with custom claims for tenant context
+- Stripe subscription billing with webhook handling
+- Team management (invite, roles, remove members)
+- AI-powered semantic search using pgvector
+- Per-tenant data isolation at the database level
+- Dashboard with tenant-scoped metrics
+
+## Tech Stack
+
+| Layer | Technology |
+|-------|-----------|
+| **Frontend** | Next.js 15 (App Router, Server Components) |
+| **Backend** | .NET 10 Minimal APIs + Dapper |
+| **Database** | Supabase PostgreSQL (Pro) + pgvector |
+| **Auth** | Supabase Auth with custom claims |
+| **Billing** | Stripe (subscriptions, webhooks) |
+| **AI Search** | OpenAI text-embedding-3-small + pgvector |
+| **Deploy** | EasyPanel (VPS) + Supabase Cloud |
+
+## Cost Estimate
+
+| Resource | Tier | Cost/month |
+|----------|------|------------|
+| Supabase | Pro (8GB DB, 100GB Storage) | $25 |
+| VPS (API + Web) | Hetzner/DigitalOcean 2GB | ~$5-6 |
+| Stripe | Pay-as-you-go (2.9% + $0.30/txn) | Variable |
+| OpenAI Embeddings | text-embedding-3-small | ~$0.02/1M tokens |
+| Domain | Optional | ~$1 |
+
+**Total**: ~$31/month base + Stripe transaction fees
+
+---
+
+## Code Reference
+
+### Tenant Isolation RLS Policy
+
+The core of multi-tenancy: every table has a `tenant_id` column, and RLS policies read the tenant from the JWT's `app_metadata`.
+
+```sql
+-- supabase/migrations/001_tenant_setup.sql
+
+-- Function to extract tenant_id from JWT app_metadata
+CREATE OR REPLACE FUNCTION auth.tenant_id()
+RETURNS UUID AS $$
+  SELECT COALESCE(
+    (current_setting('request.jwt.claims', true)::json
+      -> 'app_metadata' ->> 'tenant_id')::uuid,
+    '00000000-0000-0000-0000-000000000000'::uuid
+  );
+$$ LANGUAGE sql STABLE;
+
+-- Tenants table (no RLS - managed by service_role)
+CREATE TABLE tenants (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    name TEXT NOT NULL,
+    slug TEXT NOT NULL UNIQUE,
+    stripe_customer_id TEXT,
+    plan TEXT NOT NULL DEFAULT 'free',
+    status TEXT NOT NULL DEFAULT 'active',
+    created_at TIMESTAMPTZ NOT NULL DEFAULT now()
+);
+
+-- Tenant members
+CREATE TABLE tenant_members (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    tenant_id UUID NOT NULL REFERENCES tenants(id) ON DELETE CASCADE,
+    user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
+    role TEXT NOT NULL DEFAULT 'member',
+    invited_by UUID REFERENCES auth.users(id),
+    created_at TIMESTAMPTZ NOT NULL DEFAULT now(),
+    UNIQUE(tenant_id, user_id)
+);
+
+ALTER TABLE tenant_members ENABLE ROW LEVEL SECURITY;
+
+CREATE POLICY "Members can view own tenant members"
+    ON tenant_members FOR SELECT
+    USING (tenant_id = auth.tenant_id());
+
+CREATE POLICY "Admins can manage tenant members"
+    ON tenant_members FOR ALL
+    USING (
+        tenant_id = auth.tenant_id()
+        AND EXISTS (
+            SELECT 1 FROM tenant_members tm
+            WHERE tm.tenant_id = auth.tenant_id()
+            AND tm.user_id = auth.uid()
+            AND tm.role IN ('owner', 'admin')
+        )
+    );
+
+-- Example tenant-scoped data table
+CREATE TABLE documents (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    tenant_id UUID NOT NULL REFERENCES tenants(id) ON DELETE CASCADE,
+    title TEXT NOT NULL,
+    content TEXT,
+    embedding vector(1536),
+    created_by UUID NOT NULL REFERENCES auth.users(id),
+    created_at TIMESTAMPTZ NOT NULL DEFAULT now()
+);
+
+ALTER TABLE documents ENABLE ROW LEVEL SECURITY;
+
+CREATE POLICY "Tenant members can view documents"
+    ON documents FOR SELECT
+    USING (tenant_id = auth.tenant_id());
+
+CREATE POLICY "Tenant members can insert documents"
+    ON documents FOR INSERT
+    WITH CHECK (tenant_id = auth.tenant_id());
+
+CREATE INDEX idx_documents_tenant ON documents(tenant_id);
+CREATE INDEX idx_documents_embedding ON documents
+    USING ivfflat (embedding vector_cosine_ops) WITH (lists = 100);
+```
+
+### Supabase Auth Custom Claims for tenant_id
+
+After a user is added to a tenant, set their `app_metadata` so the JWT includes `tenant_id`:
+
+```sql
+-- supabase/migrations/002_auth_hooks.sql
+
+-- Function called after user joins a tenant
+CREATE OR REPLACE FUNCTION set_tenant_claim()
+RETURNS TRIGGER AS $$
+BEGIN
+    -- Update user's app_metadata with tenant_id
+    UPDATE auth.users
+    SET raw_app_meta_data =
+        COALESCE(raw_app_meta_data, '{}'::jsonb)
+        || jsonb_build_object('tenant_id', NEW.tenant_id::text)
+    WHERE id = NEW.user_id;
+
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER;
+
+CREATE TRIGGER on_tenant_member_created
+    AFTER INSERT ON tenant_members
+    FOR EACH ROW
+    EXECUTE FUNCTION set_tenant_claim();
+```
+
+### Stripe Webhook Handler (.NET)
+
+```csharp
+using Stripe;
+using Stripe.Events;
+using Dapper;
+using Npgsql;
+
+public static class StripeWebhookEndpoints
+{
+    public static void MapStripeWebhooks(this IEndpointRouteBuilder app)
+    {
+        app.MapPost("/webhooks/stripe", HandleWebhookAsync)
+            .AllowAnonymous();
+    }
+
+    private static async Task<IResult> HandleWebhookAsync(
+        HttpRequest request,
+        IConfiguration config,
+        NpgsqlConnection db,
+        CancellationToken ct = default)
+    {
+        var json = await new StreamReader(request.Body).ReadToEndAsync(ct);
+        var endpointSecret = config["Stripe:WebhookSecret"]!;
+
+        Event stripeEvent;
+        try
+        {
+            stripeEvent = EventUtility.ConstructEvent(
+                json,
+                request.Headers["Stripe-Signature"],
+                endpointSecret);
+        }
+        catch (StripeException)
+        {
+            return Results.BadRequest("Invalid signature");
+        }
+
+        await db.OpenAsync(ct);
+
+        switch (stripeEvent.Type)
+        {
+            case EventTypes.CustomerSubscriptionCreated:
+            case EventTypes.CustomerSubscriptionUpdated:
+            {
+                var subscription = stripeEvent.Data.Object as Subscription;
+                await db.ExecuteAsync("""
+                    UPDATE tenants
+                    SET plan = @Plan, status = @Status
+                    WHERE stripe_customer_id = @CustomerId
+                    """,
+                    new
+                    {
+                        Plan = subscription!.Items.Data[0].Price.Lookup_key ?? "pro",
+                        Status = subscription.Status == "active" ? "active" : "past_due",
+                        CustomerId = subscription.CustomerId
+                    });
+                break;
+            }
+
+            case EventTypes.CustomerSubscriptionDeleted:
+            {
+                var subscription = stripeEvent.Data.Object as Subscription;
+                await db.ExecuteAsync("""
+                    UPDATE tenants
+                    SET plan = 'free', status = 'active'
+                    WHERE stripe_customer_id = @CustomerId
+                    """,
+                    new { CustomerId = subscription!.CustomerId });
+                break;
+            }
+
+            case EventTypes.InvoicePaymentFailed:
+            {
+                var invoice = stripeEvent.Data.Object as Invoice;
+                await db.ExecuteAsync("""
+                    UPDATE tenants SET status = 'past_due'
+                    WHERE stripe_customer_id = @CustomerId
+                    """,
+                    new { CustomerId = invoice!.CustomerId });
+                break;
+            }
+        }
+
+        return Results.Ok();
+    }
+}
+```
+
+### Dashboard with Tenant Context
+
+```tsx
+// app/(dashboard)/dashboard/page.tsx
+import { createClient } from "@/lib/supabase/server";
+import { redirect } from "next/navigation";
+
+const API_URL = process.env.API_URL || "http://localhost:5000";
+
+interface DashboardMetrics {
+  totalDocuments: number;
+  totalMembers: number;
+  storageUsedMb: number;
+  plan: string;
+  searchesThisMonth: number;
+}
+
+export default async function DashboardPage() {
+  const supabase = await createClient();
+  const { data: { session } } = await supabase.auth.getSession();
+
+  if (!session) redirect("/login");
+
+  const tenantId = session.user.app_metadata?.tenant_id;
+  if (!tenantId) redirect("/onboarding");
+
+  const response = await fetch(`${API_URL}/api/dashboard`, {
+    headers: { Authorization: `Bearer ${session.access_token}` },
+    cache: "no-store",
+  });
+
+  const metrics: DashboardMetrics = await response.json();
+
+  return (
+    <div className="p-6">
+      <h1 className="mb-6 text-2xl font-bold">Dashboard</h1>
+
+      <div className="grid grid-cols-1 gap-4 md:grid-cols-2 lg:grid-cols-4">
+        <MetricCard title="Documents" value={metrics.totalDocuments} />
+        <MetricCard title="Team Members" value={metrics.totalMembers} />
+        <MetricCard title="Storage Used" value={`${metrics.storageUsedMb} MB`} />
+        <MetricCard
+          title="Plan"
+          value={metrics.plan.charAt(0).toUpperCase() + metrics.plan.slice(1)}
+        />
+      </div>
+
+      <div className="mt-8">
+        <h2 className="mb-4 text-lg font-semibold">Searches This Month</h2>
+        <p className="text-3xl font-bold">{metrics.searchesThisMonth}</p>
+      </div>
+    </div>
+  );
+}
+
+function MetricCard({ title, value }: { title: string; value: string | number }) {
+  return (
+    <div className="rounded-lg border p-4">
+      <p className="text-sm text-gray-500">{title}</p>
+      <p className="mt-1 text-2xl font-bold">{value}</p>
+    </div>
+  );
+}
+```
+
+### pgvector Similarity Search Endpoint
+
+```csharp
+using Dapper;
+using Npgsql;
+using System.Security.Claims;
+using System.Text;
+using System.Text.Json;
+
+public static class SearchEndpoints
+{
+    public static void MapSearchEndpoints(this IEndpointRouteBuilder app)
+    {
+        app.MapPost("/api/search", SearchAsync)
+            .WithTags("Search")
+            .RequireAuthorization();
+    }
+
+    private static async Task<IResult> SearchAsync(
+        SearchRequest request,
+        NpgsqlConnection db,
+        IConfiguration config,
+        ClaimsPrincipal user,
+        CancellationToken ct = default)
+    {
+        // 1. Generate embedding from query text via OpenAI
+        var embedding = await GenerateEmbeddingAsync(
+            request.Query, config["OpenAI:ApiKey"]!, ct);
+
+        // 2. Query pgvector for similar documents (scoped by tenant via RLS)
+        var tenantId = user.FindFirstValue("tenant_id");
+        await db.OpenAsync(ct);
+
+        var results = await db.QueryAsync<SearchResult>("""
+            SELECT id, title, content,
+                   1 - (embedding <=> @Embedding::vector) AS similarity
+            FROM documents
+            WHERE tenant_id = @TenantId
+            AND 1 - (embedding <=> @Embedding::vector) > @Threshold
+            ORDER BY embedding <=> @Embedding::vector
+            LIMIT @Limit
+            """,
+            new
+            {
+                Embedding = $"[{string.Join(",", embedding)}]",
+                TenantId = Guid.Parse(tenantId!),
+                Threshold = request.Threshold ?? 0.7,
+                Limit = request.Limit ?? 10
+            });
+
+        return Results.Ok(results);
+    }
+
+    private static async Task<float[]> GenerateEmbeddingAsync(
+        string text, string apiKey, CancellationToken ct)
+    {
+        using var http = new HttpClient();
+        http.DefaultRequestHeaders.Add("Authorization", $"Bearer {apiKey}");
+
+        var payload = new
+        {
+            model = "text-embedding-3-small",
+            input = text
+        };
+
+        var response = await http.PostAsJsonAsync(
+            "https://api.openai.com/v1/embeddings", payload, ct);
+        response.EnsureSuccessStatusCode();
+
+        var json = await response.Content.ReadFromJsonAsync<JsonElement>(ct);
+        var embeddingArray = json
+            .GetProperty("data")[0]
+            .GetProperty("embedding");
+
+        return embeddingArray.EnumerateArray()
+            .Select(e => e.GetSingle())
+            .ToArray();
+    }
+}
+
+public sealed record SearchRequest(
+    string Query, double? Threshold = 0.7, int? Limit = 10);
+
+public sealed record SearchResult(
+    Guid Id, string Title, string? Content, double Similarity);
+```
+
+## Folder Structure
+
+```
+project/
+├── src/
+│   ├── api/                          # .NET Backend
+│   │   ├── Endpoints/
+│   │   │   ├── DashboardEndpoints.cs
+│   │   │   ├── TeamEndpoints.cs
+│   │   │   ├── SearchEndpoints.cs
+│   │   │   ├── StripeWebhookEndpoints.cs
+│   │   │   └── DocumentEndpoints.cs
+│   │   ├── Middleware/
+│   │   │   └── TenantMiddleware.cs
+│   │   ├── DTOs/
+│   │   ├── Program.cs
+│   │   └── Api.csproj
+│   │
+│   └── web/                          # Next.js Frontend
+│       ├── app/
+│       │   ├── (auth)/
+│       │   │   ├── login/page.tsx
+│       │   │   └── signup/page.tsx
+│       │   ├── (dashboard)/
+│       │   │   ├── layout.tsx
+│       │   │   ├── dashboard/page.tsx
+│       │   │   ├── documents/page.tsx
+│       │   │   ├── search/page.tsx
+│       │   │   ├── team/page.tsx
+│       │   │   ├── billing/page.tsx
+│       │   │   └── settings/page.tsx
+│       │   ├── onboarding/page.tsx
+│       │   ├── auth/callback/route.ts
+│       │   ├── layout.tsx
+│       │   └── page.tsx
+│       ├── components/
+│       │   ├── tenant-provider.tsx
+│       │   └── ...
+│       ├── lib/
+│       │   └── supabase/
+│       └── types/
+│
+├── supabase/
+│   └── migrations/
+│       ├── 001_tenant_setup.sql
+│       ├── 002_auth_hooks.sql
+│       └── 003_pgvector_setup.sql
+│
+├── docker-compose.yml
+├── Dockerfile.api
+└── Dockerfile.web
+```
+
+---
+
+*MORPH-SPEC by Polymorphism Tech*