legacyver 3.1.0 → 3.4.0

package/bin/legacyver.js

@@ -21,7 +21,7 @@ program
   .option('--out <dir>', 'Output directory (default: ./legacyver-docs)')
   .option('--format <fmt>', 'Output format: markdown | html | json (default: markdown)')
   .option('--model <model>', 'LLM model to use')
-  .option('--provider <provider>', 'LLM provider: openrouter | groq | gemini | kimi | ollama (default: openrouter)')
+  .option('--provider <provider>', 'LLM provider: groq | openrouter | gemini | kimi | ollama (default: groq)')
   .option('--concurrency <n>', 'Concurrent LLM requests 1-10 (default: 3)')
   .option('--dry-run', 'Run AST parsing only, no LLM calls')
   .option('--incremental', 'Only re-analyze changed files')

package/legacyver-docs/auth.md

@@ -0,0 +1,71 @@
+## Overview
+`auth.js` provides two asynchronous helpers for handling CLI session tokens stored in the `user_sessions` table: validating a token and revoking (logging out) a token.
+
+## Functions
+
+### `validateToken(token)`
+Validates a raw CLI session token and returns basic user information if the token is active.
+
+| Parameter | Type | Description |
+|-----------|------|-------------|
+| `token` | `string` | Raw token read from `~/.legacyver/session.json`. |
+
+**Returns**  
+`Promise<{ userId: string, username: string, email: string } | null>` – Resolves to an object containing the user’s ID, username, and email when the token is found, not expired, and not revoked; otherwise resolves to `null`.
+
+**Logic summary**
+1. If `token` is falsy, the function returns `null` immediately.  
+2. The token is hashed with SHA‑256 (`crypto.createHash('sha256')`).  
+3. A database client is created via `createDbClient(token)` – the token is passed so the client can bypass row‑level security.  
+4. The client queries the `public.user_sessions` table, selecting `user_id` and the related `users` fields `username` and `email` (inner join).  
+5. The query filters:  
+   * `token_hash` equals the computed hash,  
+   * `expires_at` is greater than the current ISO timestamp,  
+   * `revoked_at` is `null`.  
+6. `maybeSingle()` ensures at most one row is returned.  
+7. If the query yields an error or no data, the function returns `null`.  
+8. Otherwise it builds the result object, converting `user_id` to a string and falling back to default values (`'unknown'` for username, empty string for email) if the joined user record is missing.
+
+---
+
+### `revokeToken(token)`
+Revokes a CLI session token, effectively logging the user out.
+
+| Parameter | Type | Description |
+|-----------|------|-------------|
+| `token` | `string` | Raw token to be revoked. |
+
+**Returns**  
+`Promise<void>` – Resolves when the revocation update completes; throws an error if the database operation fails.
+
+**Logic summary**
+1. If `token` is falsy, the function exits without action.  
+2. The token is hashed with SHA‑256 (same method as `validateToken`).  
+3. A database client is created with `createDbClient(token)`.  
+4. The client updates the `revoked_at` column of the matching `user_sessions` row (where `token_hash` matches) to the current ISO timestamp.  
+5. If the update returns an `error`, the function throws that error; otherwise it completes silently.
+
+## Dependencies
+- `crypto` (Node.js built‑in) – used for SHA‑256 hashing.  
+- `../db/config` – imports `supabase` (unused in this file) and `createDbClient` for database access.
+
+## Usage Example
+```js
+const { validateToken, revokeToken } = require('./auth');
+
+// Validate a stored session token
+(async () => {
+  const token = 'my‑raw‑session‑token';
+  const user = await validateToken(token);
+
+  if (user) {
+    console.log('Authenticated user:', user);
+  } else {
+    console.log('Invalid or expired token');
+  }
+
+  // When the user logs out
+  await revokeToken(token);
+  console.log('Token revoked');
+})();
+```

package/legacyver-docs/hash.md

@@ -0,0 +1,37 @@
+## Overview
+Provides a utility to compute the SHA‑256 hash of a file's contents, returning the hash as a hex string prefixed with `sha256:`.
+
+## Functions
+
+### `computeHash(filePath)`
+Computes the SHA‑256 hash of the file located at `filePath`.
+
+| Parameter | Type   | Description                |
+|-----------|--------|----------------------------|
+| `filePath`| string | Path to the file to hash.  |
+
+**Returns**: `string` – A hexadecimal SHA‑256 digest prefixed with `sha256:` (e.g., `sha256:ab12cd...`).
+
+**Logic**  
+1. Reads the file synchronously using `fs.readFileSync`.  
+2. Creates a SHA‑256 hash object via `crypto.createHash('sha256')`.  
+3. Feeds the file content to the hash with `.update(content)`.  
+4. Produces a hex‑encoded digest with `.digest('hex')`.  
+5. Concatenates the prefix `sha256:` with the digest and returns the result.
+
+## Dependencies
+- `crypto` – `createHash`
+- `fs` – `readFileSync`
+
+## Usage Example
+```javascript
+// Import the function
+const { computeHash } = require('./hash');
+
+// Compute the hash of a file
+const filePath = 'path/to/your/file.txt';
+const hash = computeHash(filePath);
+
+console.log(`SHA-256 hash: ${hash}`);
+// Example output: SHA-256 hash: sha256:3a7bd3e2360a... 
+```

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "legacyver",
-  "version": "3.1.0",
+  "version": "3.4.0",
   "description": "AI-powered CLI tool to auto-generate technical documentation from legacy/undocumented codebases",
   "main": "src/index.js",
   "bin": {
@@ -27,6 +27,7 @@
   "author": "",
   "license": "MIT",
   "dependencies": {
+    "@supabase/supabase-js": "^2.99.3",
     "chalk": "^4.1.2",
     "cli-progress": "^3.12.0",
     "commander": "^11.1.0",
@@ -47,4 +48,4 @@
     "eslint": "^8.57.0",
     "vitest": "^1.2.2"
   }
-}
+}

package/src/api/auth.js

@@ -1,69 +1,56 @@
 'use strict';
 
 const crypto = require('crypto');
-const { Pool } = require('pg');
-const dbConfig = require('../db/config');
+const { supabase, createDbClient } = require('../db/config');
 
 /**
  * Validate a CLI session token against app.user_sessions.
  * Returns user info if valid, null if expired/revoked/not found.
  *
  * @param {string} token  raw token from ~/.legacyver/session.json
- * @param {object} [opts]          optional overrides for testing
- * @param {object} [opts.pool]     pg Pool instance
  * @returns {Promise<{userId: string, username: string, email: string} | null>}
  */
-async function validateToken(token, opts) {
+async function validateToken(token) {
   if (!token) return null;
 
-  const ownPool = !(opts && opts.pool);
-  const pool = (opts && opts.pool) || new Pool(dbConfig);
-  try {
-    const tokenHash = crypto.createHash('sha256').update(token).digest('hex');
-
-    const result = await pool.query(
-      `SELECT s.user_id, u.username, u.email
-       FROM app.user_sessions s
-       JOIN app.users u ON u.id = s.user_id
-       WHERE s.token_hash = $1
-         AND s.expires_at > NOW()
-         AND s.revoked_at IS NULL`,
-      [tokenHash]
-    );
-
-    if (result.rows.length === 0) return null;
-
-    const row = result.rows[0];
-    return {
-      userId: String(row.user_id),
-      username: row.username || 'unknown',
-      email: row.email || '',
-    };
-  } finally {
-    if (ownPool) await pool.end().catch(() => {});
-  }
+  const tokenHash = crypto.createHash('sha256').update(token).digest('hex');
+  const client = createDbClient(token); // Use token to bypass RLS
+
+  const { data, error } = await client
+    .schema('public')
+    .from('user_sessions')
+    .select('user_id, users!inner(username, email)')
+    .eq('token_hash', tokenHash)
+    .gt('expires_at', new Date().toISOString())
+    .is('revoked_at', null)
+    .maybeSingle();
+
+  if (error || !data) return null;
+
+  return {
+    userId: String(data.user_id),
+    username: data.users?.username || 'unknown',
+    email: data.users?.email || '',
+  };
 }
 
 /**
  * Revoke a CLI session token (logout).
  * @param {string} token  raw token
- * @param {object} [opts]          optional overrides for testing
- * @param {object} [opts.pool]     pg Pool instance
  */
-async function revokeToken(token, opts) {
+async function revokeToken(token) {
   if (!token) return;
 
-  const ownPool = !(opts && opts.pool);
-  const pool = (opts && opts.pool) || new Pool(dbConfig);
-  try {
-    const tokenHash = crypto.createHash('sha256').update(token).digest('hex');
-    await pool.query(
-      'UPDATE app.user_sessions SET revoked_at = NOW() WHERE token_hash = $1',
-      [tokenHash]
-    );
-  } finally {
-    if (ownPool) await pool.end().catch(() => {});
-  }
+  const tokenHash = crypto.createHash('sha256').update(token).digest('hex');
+  const client = createDbClient(token);
+
+  const { error } = await client
+    .schema('public')
+    .from('user_sessions')
+    .update({ revoked_at: new Date().toISOString() })
+    .eq('token_hash', tokenHash);
+
+  if (error) throw error;
 }
 
 module.exports = { validateToken, revokeToken };

package/src/cli/commands/analyze.js

@@ -217,7 +217,23 @@ module.exports = async function analyzeCommand(target, flags) {
 
   // Merge cached fragments
   const allFragments = [...docFragments];
-  // (cached fragments would be loaded here)
+  if (config.incremental && cacheHits.length > 0) {
+    const fs = require('fs');
+    for (const hit of cacheHits) {
+      const cachedInfo = cacheMap[hit.relativePath];
+      if (cachedInfo && cachedInfo.docFile) {
+        try {
+          const content = fs.readFileSync(cachedInfo.docFile, 'utf8');
+          allFragments.push({
+            ...hit,
+            content
+          });
+        } catch (e) {
+          logger.warn(`Failed to read cached file for ${hit.relativePath}`);
+        }
+      }
+    }
+  }
 
   // ─── Stage 4: Renderer ───────────────────────────────────────────────────
   const renderSpinner = createSpinner('Rendering output...');
@@ -268,8 +284,11 @@ module.exports = async function analyzeCommand(target, flags) {
 
     if (!cloudResult.skipped) {
       syncSpinner.succeed(`Docs synced to cloud (${cloudResult.pushed} files)`);
+    } else if (session.token) {
+      syncSpinner.stop(); // Stops spinner gracefully if skipped without error
     }
   } catch (syncErr) {
+    if (typeof syncSpinner !== 'undefined') syncSpinner.fail('Cloud sync failed');
     logger.warn('Cloud sync failed: ' + syncErr.message);
   }
 

package/src/cli/commands/init.js

@@ -24,8 +24,8 @@ module.exports = async function initCommand() {
     }
   }
 
-  const providerRaw = await ask(rl, `LLM provider [openrouter/groq/gemini/kimi/ollama] (default: openrouter): `);
-  const providerChoice = providerRaw.trim() || 'openrouter';
+  const providerRaw = await ask(rl, `LLM provider [groq/openrouter/gemini/kimi/ollama] (default: groq): `);
+  const providerChoice = providerRaw.trim() || 'groq';
   const isOllama = providerChoice === 'ollama';
   const isGroq = providerChoice === 'groq';
   const isGemini = providerChoice === 'gemini';
@@ -34,7 +34,7 @@ module.exports = async function initCommand() {
   const defaultModel = isOllama
     ? 'llama3.2'
     : isGroq
-      ? 'llama-3.3-70b-versatile'
+      ? 'openai/gpt-oss-120b'
       : isGemini
         ? 'gemini-2.0-flash'
         : isKimi
@@ -75,6 +75,35 @@ module.exports = async function initCommand() {
   writeFileSync(rcPath, JSON.stringify(config, null, 2), 'utf8');
   console.log(pc.green('\n✓ Created .legacyverrc'));
 
+  // If user left key blank, show how to set env var (cross-platform)
+  if (!isOllama && !apiKey.trim()) {
+    const isWin = process.platform === 'win32';
+    const envVarMap = {
+      groq:       { varName: 'GROQ_API_KEY',       url: 'https://console.groq.com/keys' },
+      openrouter: { varName: 'OPENROUTER_API_KEY', url: 'https://openrouter.ai/keys' },
+      gemini:     { varName: 'GEMINI_API_KEY',      url: 'https://aistudio.google.com/apikey' },
+      kimi:       { varName: 'MOONSHOT_API_KEY',    url: 'https://platform.moonshot.cn/console/api-keys' },
+    };
+    const envInfo = envVarMap[providerChoice] || envVarMap['openrouter'];
+
+    console.log('');
+    if (isGroq) {
+      console.log(pc.dim('i  No key entered — using built-in Groq key (openai/gpt-oss-120b).'));
+      console.log(pc.dim('   For higher rate limits, set your own key:'));
+    } else {
+      console.log(pc.yellow(`!  No API key saved. Set ${envInfo.varName} before running analyze.`));
+      console.log(pc.dim(`   Get a key: ${envInfo.url}`));
+    }
+    console.log('');
+    if (isWin) {
+      console.log(pc.dim(`   PowerShell:  $env:${envInfo.varName} = "your_key"`));
+      console.log(pc.dim(`   CMD:         set ${envInfo.varName}=your_key`));
+    } else {
+      console.log(pc.dim(`   Mac/Linux:   export ${envInfo.varName}=your_key`));
+    }
+    console.log(pc.dim('   Or re-run:   legacyver init  (enter the key when prompted)'));
+  }
+
   const exampleCmd = isOllama
     ? 'legacyver analyze --provider ollama'
     : isGroq
@@ -83,6 +112,7 @@ module.exports = async function initCommand() {
         ? 'legacyver analyze --provider gemini'
         : isKimi
           ? 'legacyver analyze --provider kimi'
-          : 'legacyver analyze'; // openrouter is the default, no flag needed
+          : 'legacyver analyze';
   console.log(pc.cyan(`\nRun \`${exampleCmd}\` to generate documentation.`));
 };
+

package/src/cli/commands/login.js

@@ -5,7 +5,7 @@ const crypto = require('crypto');
 const pc = require('picocolors');
 const { saveSession, loadSession } = require('../../utils/config');
 
-const WEB_URL = 'https://weci-holic.hackathon.sev-2.com';
+const WEB_URL = 'https://legac.vercel.app';
 
 /**
  * Open a URL in the default browser (cross-platform).

package/src/cli/commands/providers.js

@@ -3,14 +3,13 @@
 const pc = require('picocolors');
 const logger = require('../../utils/logger');
 
-const RECOMMENDED_MODELS = [
-  { id: 'meta-llama/llama-3.1-8b-instruct', context: '16k', inputCost: 0.02, outputCost: 0.05, free: false },
-  { id: 'anthropic/claude-haiku-3-5', context: '200k', inputCost: 0.80, outputCost: 4.00, free: false },
-  { id: 'anthropic/claude-sonnet-4-5', context: '200k', inputCost: 3.00, outputCost: 15.00, free: false },
-  { id: 'openai/gpt-4o-mini', context: '128k', inputCost: 0.15, outputCost: 0.60, free: false },
-  { id: 'openai/gpt-4o', context: '128k', inputCost: 5.00, outputCost: 15.00, free: false },
-  { id: 'google/gemini-flash-1.5', context: '1M', inputCost: 0.075, outputCost: 0.30, free: false },
-  { id: 'mistralai/mistral-7b-instruct:free', context: '32k', inputCost: 0, outputCost: 0, free: true },
+const GROQ_MODELS = [
+  { id: 'openai/gpt-oss-120b',                        context: '128k', isDefault: true },
+  { id: 'llama-3.3-70b-versatile',                    context: '128k', isDefault: false },
+  { id: 'llama-3.1-8b-instant',                       context: '128k', isDefault: false },
+  { id: 'meta-llama/llama-4-scout-17b-16e-instruct',  context: '128k', isDefault: false },
+  { id: 'meta-llama/llama-4-maverick-17b-128e-instruct', context: '128k', isDefault: false },
+  { id: 'gemma2-9b-it',                               context: '8k',   isDefault: false },
 ];
 
 module.exports = async function providersCommand() {
@@ -30,9 +29,10 @@ module.exports = async function providersCommand() {
 
   console.log(pc.bold('Legacyver — Supported LLM Providers\n'));
 
-  console.log(pc.bold('Groq') + '  (https://groq.com)');
-  console.log('  Fastest free LLM inference. 30 req/min, 14,400 req/day. Set GROQ_API_KEY env variable.');
-  console.log('  Status: ' + (process.env.GROQ_API_KEY ? pc.green('API key detected') : pc.yellow('No API key found')));
+  console.log(pc.bold('Groq') + pc.green(' [DEFAULT]') + '  (https://groq.com)');
+  console.log('  Fastest free LLM inference. 30 req/min, 14,400 req/day.');
+  console.log('  Default model: ' + pc.cyan('openai/gpt-oss-120b') + ' — override with your own GROQ_API_KEY for higher limits.');
+  console.log('  Status: ' + (process.env.GROQ_API_KEY ? pc.green('Own API key detected ✓') : pc.dim('Using built-in shared key (set GROQ_API_KEY for higher rate limits)')));
   console.log('  Get a free key at: https://console.groq.com/keys');
   console.log('');
   console.log(pc.bold('Google Gemini') + '  (https://ai.google.dev)');
@@ -45,7 +45,7 @@ module.exports = async function providersCommand() {
   console.log('  Status: ' + (process.env.MOONSHOT_API_KEY ? pc.green('API key detected') : pc.yellow('No API key found')));
   console.log('  Get a key at: https://platform.moonshot.cn/console/api-keys');
   console.log('');
-  console.log(pc.bold('OpenRouter') + pc.green(' [DEFAULT]') + '  (https://openrouter.ai)');
+  console.log(pc.bold('OpenRouter') + '  (https://openrouter.ai)');
   console.log('  Unified gateway to 200+ models (Claude, GPT-4o, Llama, etc). Set OPENROUTER_API_KEY env variable.');
   console.log('  Status: ' + (process.env.OPENROUTER_API_KEY ? pc.green('API key detected') : pc.yellow('No API key found')));
   console.log('  Get a key at: https://openrouter.ai/keys');
@@ -54,23 +54,20 @@ module.exports = async function providersCommand() {
   console.log('  Local offline LLM. No API key required. Run `ollama serve` first.');
   console.log('');
 
-  console.log(pc.bold('Recommended Models (via OpenRouter):'));
+  console.log(pc.bold('Available Groq Models (free, no key required):'));
   console.log('');
-  const header = `  ${'Model ID'.padEnd(48)} ${'Context'.padEnd(8)} ${'Input $/1M'.padEnd(12)} ${'Output $/1M'.padEnd(12)}`;
+  const header = `  ${'Model ID'.padEnd(52)} ${'Context'.padEnd(8)}`;
   console.log(pc.dim(header));
-  console.log(pc.dim('  ' + '-'.repeat(84)));
+  console.log(pc.dim('  ' + '-'.repeat(62)));
 
-  for (const m of RECOMMENDED_MODELS) {
-    const badge = m.free ? pc.green(' [FREE]') : '';
+  for (const m of GROQ_MODELS) {
+    const defaultBadge = m.isDefault ? pc.green(' [DEFAULT]') : '';
     const selected = m.id === config.model ? pc.cyan(' ◀ selected') : '';
-    const inputCostStr = m.free ? 'FREE' : `$${m.inputCost.toFixed(3)}`;
-    const outputCostStr = m.free ? 'FREE' : `$${m.outputCost.toFixed(3)}`;
-    console.log(
-      `  ${m.id.padEnd(48)} ${m.context.padEnd(8)} ${inputCostStr.padEnd(12)} ${outputCostStr.padEnd(12)}${badge}${selected}`
-    );
+    console.log(`  ${m.id.padEnd(52)} ${m.context.padEnd(8)}${defaultBadge}${selected}`);
   }
 
   console.log('');
-  console.log(pc.dim('Fetch live model list from OpenRouter: https://openrouter.ai/api/v1/models'));
+  console.log(pc.dim('Full Groq model list: https://console.groq.com/docs/models'));
+  console.log(pc.dim('For premium models (Claude, GPT-4o, etc.) use --provider openrouter'));
   console.log('');
 };

package/src/cli/ui.js

@@ -102,18 +102,28 @@ function printSummary(stats) {
     process.env.OPENROUTER_API_KEY
   );
   if (!usingOwnKey) {
+    const isWin = process.platform === 'win32';
     console.log(pc.dim('─────────────────────────────────────────────────'));
-    console.log(pc.cyan('  Bring your own API key for better results:'));
+    console.log(pc.cyan('  Running on built-in Groq key') + pc.dim(' (openai/gpt-oss-120b)'));
     console.log('');
-    console.log(`  ${pc.bold('Free tiers')}  — more quota, same zero cost`);
-    console.log(pc.dim('  Groq:      https://console.groq.com/keys'));
-    console.log(pc.dim('  Gemini:    https://aistudio.google.com/apikey'));
+    console.log('  To get higher rate limits, set your own free Groq key:');
+    console.log(pc.dim('  Get key: https://console.groq.com/keys'));
+    if (isWin) {
+      console.log(pc.dim('  PowerShell: $env:GROQ_API_KEY = "your_key"'));
+      console.log(pc.dim('  CMD:        set GROQ_API_KEY=your_key'));
+    } else {
+      console.log(pc.dim('  Mac/Linux:  export GROQ_API_KEY=your_key'));
+    }
+    console.log(pc.dim('  Or run:  legacyver init'));
     console.log('');
-    console.log(`  ${pc.bold('Premium')}     — smarter models (Claude, GPT-4o, etc.)`);
-    console.log(pc.dim('  OpenRouter: https://openrouter.ai/keys'));
-    console.log(pc.dim('  Access 200+ models, pay only for what you use.'));
-    console.log('');
-    console.log(pc.dim('  Run `legacyver init` to set your key, then:'));
+    console.log(`  ${pc.bold('Want premium models?')} (Claude, GPT-4o, etc.)`);
+    console.log(pc.dim('  Get key: https://openrouter.ai/keys'));
+    if (isWin) {
+      console.log(pc.dim('  PowerShell: $env:OPENROUTER_API_KEY = "your_key"'));
+      console.log(pc.dim('  CMD:        set OPENROUTER_API_KEY=your_key'));
+    } else {
+      console.log(pc.dim('  Mac/Linux:  export OPENROUTER_API_KEY=your_key'));
+    }
     console.log(pc.dim('  legacyver analyze --provider openrouter --model anthropic/claude-haiku-3-5'));
     console.log(pc.dim('─────────────────────────────────────────────────'));
     console.log('');

package/src/db/config.js

@@ -1,18 +1,43 @@
 'use strict';
 
+const { createClient } = require('@supabase/supabase-js');
+
 /**
- * PostgreSQL connection config for the Legacyver hackathon database.
- * Uses SSL with self-signed certificate (rejectUnauthorized: false).
+ * Supabase client for Legacyver CLI.
+ *
+ * Uses the public anon key — safe to bundle in an npm package.
+ * Row Level Security (RLS) on Supabase enforces access control.
  */
-module.exports = {
-  host: '103.185.52.138',
-  port: 1185,
-  user: 'weci_holic',
-  password: 'f==+HLH_bvzLN2fo82f3x239MZE3@bGF',
-  database: 'weci_holic',
-  ssl: { rejectUnauthorized: false },
-  // Keep pool small — CLI is short-lived
-  max: 3,
-  idleTimeoutMillis: 5000,
-  connectionTimeoutMillis: 10000,
-};
+const SUPABASE_URL = 'https://kbsxwyoylwhieoljepxr.supabase.co';
+
+// anon/public key — safe to commit, RLS is the gatekeeper
+const SUPABASE_ANON_KEY = process.env.SUPABASE_ANON_KEY || 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZSIsInJlZiI6Imtic3h3eW95bHdoaWVvbGplcHhyIiwicm9sZSI6ImFub24iLCJpYXQiOjE3NzQxMjU4ODksImV4cCI6MjA4OTcwMTg4OX0.GHX8Id1qunhypkN6WurM4UZUgVwrkD_z3bOIJhW2Y7A';
+
+const supabase = createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
+  auth: {
+    persistSession: false,
+    autoRefreshToken: false,
+    detectSessionFromUrl: false,
+  },
+});
+
+/**
+ * Create a Supabase client configured with the CLI token for RLS bypass.
+ */
+function createDbClient(token) {
+  const headers = {};
+  if (token) {
+    headers['x-cli-token'] = token;
+  }
+  
+  return createClient(SUPABASE_URL, SUPABASE_ANON_KEY, {
+    auth: {
+      persistSession: false,
+      autoRefreshToken: false,
+      detectSessionFromUrl: false,
+    },
+    global: { headers }
+  });
+}
+
+module.exports = { supabase, createDbClient };