thumbgate 1.27.2 → 1.27.4

package/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "thumbgate",
   "description": "One 👎 becomes a hard rule the agent cannot bypass. Captures thumbs-down feedback, distills it into PreToolUse Pre-Action Checks, enforced across every future Claude Code session.",
-  "version": "1.27.2",
+  "version": "1.27.4",
   "author": {
     "name": "Igor Ganapolsky",
     "email": "ig5973700@gmail.com",

package/.well-known/mcp/server-card.json

@@ -1,6 +1,6 @@
 {
   "name": "thumbgate",
-  "version": "1.27.2",
+  "version": "1.27.4",
   "description": "ThumbGate — 👍👎 feedback that teaches your AI agent. Thumbs down a mistake, it never happens again.",
   "homepage": "https://thumbgate.ai",
   "transport": "stdio",

package/README.md

@@ -24,7 +24,7 @@ The product is a self-improving enforcement layer: thumbs-down feedback, prompt
 npx thumbgate init   # auto-detects your agent, wires hooks, 30 seconds
 ```
 
-Works with **Claude Code, Cursor, Codex, Gemini CLI, Amp, Cline, OpenCode** and any MCP-compatible agent. Free tier: 5 feedback captures/day, 25 total captures, and 3 active auto-promoted prevention rules. [Pro: $19/mo or $149/yr](https://thumbgate.ai/checkout/pro?utm_source=github&utm_medium=readme) — unlimited feedback captures, unlimited rules, history-aware lessons, feedback sessions, dashboard, DPO export. Team is $49/seat/mo with a shared hosted lesson DB and org dashboard.
+Works with **Claude Code, Cursor, Codex, Gemini CLI, Amp, Cline, OpenCode** and any MCP-compatible agent. Free tier: 5 feedback captures/day (25 total) and up to 3 active auto-promoted prevention rules. [Pro: $19/mo or $149/yr](https://thumbgate.ai/checkout/pro?utm_source=github&utm_medium=readme) — unlimited rules, history-aware lessons, feedback sessions, dashboard, DPO export. Enterprise (custom pricing, scoped after intake) adds a shared hosted lesson DB, org dashboard, and shared org-wide enforcement.
 
 [![CI](https://github.com/IgorGanapolsky/ThumbGate/actions/workflows/ci.yml/badge.svg)](https://github.com/IgorGanapolsky/ThumbGate/actions/workflows/ci.yml)
 [![npm](https://img.shields.io/npm/v/thumbgate)](https://www.npmjs.com/package/thumbgate)
@@ -379,26 +379,26 @@ If you change MCP or hook settings, restart the affected agent session so Claude
 
 ## Pricing
 
-| | Free | Pro ($19/mo) | Team ($49/seat/mo) | Enterprise |
-|---|---|---|---|---|
-| Local CLI + enforced checks | ✅ | ✅ | ✅ | ✅ |
-| Feedback captures | 5/day, 25 total | Unlimited | Unlimited | Unlimited |
-| Auto-promoted prevention rules | 3 active | Unlimited | Unlimited | Unlimited |
-| MCP agent integrations | All | All | All | All |
-| Personal dashboard | — | ✅ | ✅ | ✅ |
-| DPO export (model fine-tuning) | — | ✅ | ✅ | ✅ |
-| Team lesson export/import | — | ✅ | ✅ | ✅ |
-| Shared hosted lesson DB | — | — | ✅ | ✅ |
-| Org-wide dashboard | — | — | ✅ | ✅ |
-| Approval + audit proof | — | — | ✅ | ✅ |
-| Regulatory gate templates | — | — | — | ✅ |
-| Custom policy layers (firm/practice-area) | — | — | — | ✅ |
-| Compliance audit export | — | — | — | ✅ |
-| Dedicated onboarding + SLA | — | — | — | ✅ |
-
-The free tier gives you 5 feedback captures/day, 25 total captures, and up to 3 active auto-promoted prevention rules — enough to prove the loop before buying. MCP integrations for all agents (Claude Code, Cursor, Codex, Gemini, Amp, Cline, OpenCode) ship free.
-
-Pro ($19/mo or $149/yr) removes the rule cap and adds history-aware lesson recall, lesson search, DPO export, and a personal dashboard. Team ($49/seat/mo) adds a shared hosted lesson DB, org dashboard, and shared enforcement across the org. Enterprise adds regulatory gate templates (legal intake, financial compliance, healthcare), custom policy layers scoped to firm/practice-area, compliance audit export, and dedicated onboarding with SLA.
+| | Free | Pro ($19/mo) | Enterprise |
+|---|---|---|---|
+| Local CLI + enforced checks | ✅ | ✅ | ✅ |
+| Feedback captures | 5/day (25 total) | Unlimited | Unlimited |
+| Active auto-promoted prevention rules | 3 | Unlimited | Unlimited |
+| MCP agent integrations | All | All | All |
+| Personal dashboard | — | ✅ | ✅ |
+| DPO export (model fine-tuning) | — | ✅ | ✅ |
+| Lesson export/import | — | ✅ | ✅ |
+| Shared hosted lesson DB | — | — | ✅ |
+| Org-wide dashboard | — | — | ✅ |
+| Approval + audit proof | — | — | ✅ |
+| Regulatory gate templates | — | — | ✅ |
+| Custom policy layers (firm/practice-area) | — | — | ✅ |
+| Compliance audit export | — | — | ✅ |
+| Dedicated onboarding + SLA | — | — | ✅ |
+
+The free tier gives you 5 feedback captures/day (25 total) and up to 3 active auto-promoted prevention rules — enough to make ThumbGate part of your daily flow before you upgrade. MCP integrations for all agents (Claude Code, Cursor, Codex, Gemini, Amp, Cline, OpenCode) ship free.
+
+Pro ($19/mo or $149/yr) removes the rule cap and adds history-aware lesson recall, lesson search, DPO export, and a personal dashboard. Enterprise (custom pricing, scoped after intake) adds a shared hosted lesson DB, org dashboard, and shared enforcement across the org, plus regulatory gate templates (legal intake, financial compliance, healthcare), custom policy layers scoped to firm/practice-area, compliance audit export, and dedicated onboarding with SLA.
 
 **Best first paid motion for teams:** the **Workflow Hardening Sprint** — qualify one repeated failure before committing to a full rollout. **[Start intake →](https://thumbgate.ai/?utm_source=github&utm_medium=readme&utm_campaign=team_rollout#workflow-sprint-intake)**
 
@@ -539,11 +539,13 @@ Free and self-hosted users can invoke `search_lessons` directly through MCP, and
 
 ---
 
-## Enterprise Gating (Vertex AI & Google Cloud)
+## Enterprise Data Chat and Optional Google Adapters
 
-For enterprise subscriptions, ThumbGate natively integrates with Google Cloud Platform and **Vertex AI** to route all agent checks through compliant Gemini models inside your corporate VPC.
+The Enterprise dashboard chat is local/open-source first: it answers over local ThumbGate data using lesson retrieval, LanceDB-backed vectors, and your configured LLM. Set `THUMBGATE_LOCAL_LLM_ENDPOINT` to an OpenAI-compatible local endpoint (Ollama, llama.cpp, vLLM, LM Studio, etc.) when you want generated answers without sending dashboard data to Google.
 
-### Zero-Friction Setup
+Google Cloud is an optional regulated-enterprise adapter, not a dashboard chatbot requirement. If a buyer already standardizes on Vertex AI or Dialogflow CX, ThumbGate can verify that posture and deploy guard adapters in their tenancy.
+
+### Optional Vertex Setup
 To wire local ThumbGate scoring to Vertex AI, run:
 ```bash
 npx thumbgate setup-vertex
@@ -552,7 +554,7 @@ npx thumbgate setup-vertex
 * **Auto-Enablement:** Programmatically enables the Vertex AI API in your project.
 * **Auto-Configuration:** Writes local Vertex routing settings to your `.env` file.
 
-This command does **not** create or verify a live Dialogflow CX agent. On current Google Cloud CLI installs, the old alpha gcloud CX command group is not available; verify Conversational Agents / Dialogflow CX with the Google Cloud console or the official Dialogflow CX REST API (`projects.locations.agents`) before claiming a live DFCX deployment.
+This command does **not** create or verify a live Dialogflow CX agent. Dialogflow is only relevant when a customer wants ThumbGate guard adapters in front of their own production DFCX agents. On current Google Cloud CLI installs, the old alpha gcloud CX command group is not available; verify Conversational Agents / Dialogflow CX with the Google Cloud console or the official Dialogflow CX REST API (`projects.locations.agents`) before claiming a live DFCX deployment.
 
 ### Zero-Friction Cost Containment ($10/mo Hard Cap)
 Google Cloud budget alerts are "alert-only" and do not stop API traffic, risking unexpected bill shock. ThumbGate completely resolves this on the client side:
@@ -575,7 +577,7 @@ If it supports MCP or pre-action hooks, yes. Claude Code, Claude Desktop, Cursor
 **Is it free?**
 The free tier gives you 5 feedback captures/day, 25 total captures, and up to 3 active auto-promoted prevention rules — enough for solo devs to prove a blocked repeat before upgrading. MCP integrations ship free for every agent.
 
-Pro ($19/mo or $149/yr) removes the rule cap and adds history-aware lesson recall, lesson search, and a personal dashboard. Team ($49/seat/mo) adds a shared hosted lesson DB, org dashboard, and shared enforcement.
+Pro ($19/mo or $149/yr) removes the rule cap and adds history-aware lesson recall, lesson search, and a personal dashboard. Enterprise (custom pricing, scoped after intake) adds a shared hosted lesson DB, org dashboard, and shared enforcement.
 
 ---
 

package/adapters/claude/.mcp.json

@@ -2,13 +2,13 @@
   "mcpServers": {
     "thumbgate": {
       "command": "npx",
-      "args": ["--yes", "--package", "thumbgate@1.27.2", "thumbgate", "serve"]
+      "args": ["--yes", "--package", "thumbgate@1.27.4", "thumbgate", "serve"]
     }
   },
   "hooks": {
     "preToolUse": {
       "command": "npx",
-      "args": ["--yes", "--package", "thumbgate@1.27.2", "thumbgate", "gate-check"]
+      "args": ["--yes", "--package", "thumbgate@1.27.4", "thumbgate", "gate-check"]
     }
   }
 }

package/adapters/mcp/server-stdio.js

@@ -231,7 +231,7 @@ const {
   finalizeSession: finalizeFeedbackSession,
 } = require('../../scripts/feedback-session');
 
-const SERVER_INFO = { name: 'thumbgate-mcp', version: '1.27.2' };
+const SERVER_INFO = { name: 'thumbgate-mcp', version: '1.27.4' };
 const COMMERCE_CATEGORIES = [
   'product_recommendation',
   'brand_compliance',
@@ -1480,6 +1480,19 @@ function startStdioServer() {
   acquireLock();
 
   process.stdin.resume();
+
+  // Self-terminate when the client disconnects (stdin EOF/close). A stdio MCP
+  // server must not outlive its parent: clients spawn it over stdin/stdout and
+  // a well-behaved server exits when that pipe closes. Without this, children
+  // abandoned by a client that exits without killing them linger forever and
+  // accumulate. WHY: on 2026-06-05, 117 orphaned `thumbgate serve` processes
+  // (spawned by a Codex app-server over ~4 days, never reaped) piled up and
+  // helped exhaust a 24GB host. The existing exit handlers (cleanupLock /
+  // cleanupSessionLock registered on 'exit') run via process.exit(0).
+  const exitOnDisconnect = () => process.exit(0);
+  process.stdin.on('end', exitOnDisconnect);
+  process.stdin.on('close', exitOnDisconnect);
+
   let buffer = Buffer.alloc(0);
   // Auto-detect transport from first request and lock it for the session.
   // mcp-proxy (Glama) sends NDJSON and expects NDJSON back.

package/adapters/opencode/opencode.json

@@ -7,7 +7,7 @@
         "npx",
         "--yes",
         "--package",
-        "thumbgate@1.27.2",
+        "thumbgate@1.27.4",
         "thumbgate",
         "serve"
       ],

package/bin/cli.js

@@ -32,7 +32,8 @@ const fs = require('fs');
 const os = require('os');
 const path = require('path');
 const crypto = require('crypto');
-const { execSync, execFileSync } = require('child_process');
+const http = require('http');
+const { execSync, execFileSync, execFile, spawn } = require('child_process');
 const {
   codexAutoUpdateCliEntry,
   codexAutoUpdateMcpEntry,
@@ -239,6 +240,58 @@ function parseArgs(argv) {
   return args;
 }
 
+function probeDash(port) {
+  return new Promise((resolve) => {
+    const req = http.get({ hostname: '127.0.0.1', port, path: '/health', timeout: 750 }, (res) => {
+      res.resume();
+      resolve(res.statusCode >= 200 && res.statusCode < 500);
+    });
+    req.on('error', () => resolve(false));
+    req.on('timeout', () => { req.destroy(); resolve(false); });
+  });
+}
+
+async function waitDash(port, timeoutMs = 8000) {
+  const deadline = Date.now() + timeoutMs;
+  while (Date.now() < deadline) {
+    if (await probeDash(port)) return true;
+    await new Promise((r) => setTimeout(r, 250));
+  }
+  return false;
+}
+
+async function ensureDash(port) {
+  if (await probeDash(port)) {
+    return { started: false, pid: null };
+  }
+
+  const serverPath = path.join(PKG_ROOT, 'src', 'api', 'server.js');
+  const child = spawn(process.execPath, [serverPath], {
+    cwd: PKG_ROOT,
+    detached: true,
+    env: { ...process.env, PORT: String(port), THUMBGATE_ALLOW_INSECURE: process.env.THUMBGATE_ALLOW_INSECURE || 'true' },
+    stdio: 'ignore',
+  });
+  child.unref();
+
+  if (!(await waitDash(port))) {
+    throw new Error('Dashboard API timeout');
+  }
+
+  return { started: true, pid: child.pid };
+}
+
+function openBrowser(url) {
+  if (process.env.THUMBGATE_DASHBOARD_NO_OPEN === '1') {
+    console.log(`Ready: ${url}`);
+    return Promise.resolve();
+  }
+  const [command, args] = ({ darwin: ['open', [url]], win32: ['cmd', ['/c', 'start', '', url]] }[process.platform] || ['xdg-open', [url]]);
+  return new Promise((resolve, reject) => {
+    execFile(command, args, (err) => (err ? reject(err) : resolve()));
+  });
+}
+
 function parseTtlMs(value, fallbackMs = 5 * 60 * 1000) {
   if (value === undefined || value === null || value === true || value === '') return fallbackMs;
   const raw = String(value).trim().toLowerCase();
@@ -2502,12 +2555,15 @@ function install() {
 }
 
 async function gateCheck() {
-  // HOTFIX 2026-06-03 emergency owner bypass. Always approve.
-  // Restore: set THUMBGATE_HOTFIX_BYPASS=0
-  if (process.env.THUMBGATE_HOTFIX_BYPASS === '1' || (process.env.NODE_ENV !== 'test' && process.env.THUMBGATE_HOTFIX_BYPASS !== '0')) {
+  // Explicit emergency escape hatch ONLY. The 2026-06-03 hotfix made this
+  // bypass-by-default, which silently disabled ThumbGate's enforcement entirely
+  // (the firewall approved everything). Restored 2026-06-04: enforcement runs by
+  // default in warn-by-default posture (see gates-engine applyEnforcementPosture);
+  // set THUMBGATE_HOTFIX_BYPASS=1 to disable all checks if a gate ever misfires.
+  if (process.env.THUMBGATE_HOTFIX_BYPASS === '1') {
     process.stdout.write(JSON.stringify({
       decision: 'approve',
-      reason: 'hotfix-bypass-2026-06-03',
+      reason: 'hotfix-bypass-opt-in',
       hookSpecificOutput: { hookEventName: 'PreToolUse', additionalContext: '' }
     }) + '\n');
     return;
@@ -2669,28 +2725,23 @@ function installMcp() {
 function dashboard() {
   const args = parseArgs(process.argv.slice(3));
   if (args.open || args.web) {
-    const { exec } = require('child_process');
     const { resolveProjectDir } = require(path.join(PKG_ROOT, 'scripts', 'feedback-paths'));
     const projectDir = resolveProjectDir({ cwd: process.cwd(), env: process.env });
     const port = process.env.PORT || 3456;
-    const url = `http://localhost:${port}/dashboard?project=${encodeURIComponent(projectDir)}`;
-    
-    console.log(`Opening browser to: ${url}`);
-    let command;
-    if (process.platform === 'darwin') {
-      command = `open "${url}"`;
-    } else if (process.platform === 'win32') {
-      command = `start "" "${url}"`;
-    } else {
-      command = `xdg-open "${url}"`;
-    }
-    
-    exec(command, (err) => {
-      if (err) {
-        console.error('Failed to open browser:', err.message);
-      }
-      process.exit(err ? 1 : 0);
-    });
+    const url = `http://127.0.0.1:${port}/dashboard?project=${encodeURIComponent(projectDir)}`;
+
+    ensureDash(Number(port))
+      .then((server) => {
+        if (server.started) {
+          console.log(`API ${port} pid ${server.pid}`);
+        }
+        return openBrowser(url);
+      })
+      .then(() => process.exit(0))
+      .catch((err) => {
+        console.error(err && err.message ? err.message : err);
+        process.exit(1);
+      });
     return;
   }
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "thumbgate",
-  "version": "1.27.2",
+  "version": "1.27.4",
   "description": "ThumbGate self-improving agent governance: thumbs-up/down turns every mistake into a prevention rule and blocks repeat patterns. 36 pre-action checks, budget enforcement, and self-protection for Claude Code, Cursor, Codex, Gemini CLI, and Amp.",
   "homepage": "https://thumbgate.ai",
   "repository": {
@@ -221,7 +221,6 @@
     "scripts/workspace-agent-routines.js",
     "scripts/workspace-evolver.js",
     "scripts/xmemory-lite.js",
-    ".claude-plugin/marketplace.json",
     ".claude-plugin/plugin.json",
     ".well-known/",
     "LICENSE",
@@ -242,6 +241,7 @@
     "bin/postinstall.js",
     "config/",
     "openapi/",
+    "public/about.html",
     "public/agent-manager.html",
     "public/blog.html",
     "public/codex-enterprise.html",
@@ -482,7 +482,7 @@
     "test:session-analyzer": "node --test tests/session-analyzer.test.js",
     "test:tessl": "node --test tests/tessl-export.test.js",
     "test:gates": "node --test tests/gate-templates.test.js tests/gates-engine.test.js tests/claim-verification.test.js tests/secret-scanner.test.js tests/secret-fixture-safety.test.js tests/prompt-guard.test.js tests/audit-trail.test.js tests/profile-router.test.js tests/workflow-sentinel.test.js tests/docker-sandbox-planner.test.js tests/mcp-tools-suggest-fix.test.js",
-    "test:budget": "node --test tests/budget-enforcer.test.js",
+    "test:budget": "node --test tests/budget-guard.test.js tests/budget-enforcer.test.js tests/tokenomics-cost-guard.test.js",
     "test:workers": "npm --prefix workers ci && npm --prefix workers test",
     "test:evoskill": "node --test tests/evoskill.test.js",
     "test:gates-hardening": "node --test tests/gates-hardening.test.js",

package/public/about.html

@@ -0,0 +1,162 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+<meta name="generator" content="ThumbGate">
+<meta name="author" content="Igor Ganapolsky">
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+__GOOGLE_SITE_VERIFICATION_META__
+<link rel="icon" type="image/png" href="/thumbgate-icon.png">
+<link rel="alternate icon" type="image/svg+xml" href="/assets/brand/thumbgate-mark.svg">
+<title>About Igor Ganapolsky — ThumbGate</title>
+<meta name="description" content="Igor Ganapolsky — Senior AI &amp; Mobile Engineer building ThumbGate, an agent-governance layer for Claude Code, Cursor, Codex, and Gemini. Production Stripe Connect, Agentic RAG, and React Native experience.">
+<meta property="og:title" content="About Igor Ganapolsky — ThumbGate">
+<meta property="og:description" content="Senior AI &amp; Mobile Engineer. Builder of ThumbGate. Production Stripe Connect + Agentic RAG + React Native engineer for hire.">
+<meta property="og:type" content="profile">
+<meta property="og:url" content="https://thumbgate.ai/about">
+<meta property="og:image" content="https://thumbgate.ai/og.png">
+<meta name="twitter:card" content="summary_large_image">
+<link rel="canonical" href="https://thumbgate.ai/about">
+<link rel="alternate" type="text/markdown" title="ThumbGate LLM context" href="https://thumbgate.ai/llm-context.md">
+
+<script type="application/ld+json">
+{
+  "@context": "https://schema.org",
+  "@type": "Person",
+  "name": "Igor Ganapolsky",
+  "givenName": "Igor",
+  "familyName": "Ganapolsky",
+  "alternateName": ["iganapolsky", "IgorGanapolsky"],
+  "url": "https://thumbgate.ai/about",
+  "image": "https://thumbgate.ai/og.png",
+  "jobTitle": "Senior AI & Mobile Engineer",
+  "description": "Production Stripe Connect, Agentic RAG, React Native, and AI-agent governance engineer. Creator of ThumbGate — pre-action defense for AI coding agents.",
+  "knowsAbout": [
+    "Agentic RAG",
+    "Stripe Connect",
+    "Stripe Billing",
+    "React Native",
+    "Android",
+    "Claude Code",
+    "Cursor",
+    "Codex",
+    "Gemini",
+    "AI agent governance",
+    "LLM cost optimization",
+    "Pre-action checks",
+    "Workflow hardening",
+    "Context engineering",
+    "MCP servers",
+    "LangChain",
+    "LangGraph",
+    "Patchright",
+    "Playwright",
+    "OpenAI API",
+    "Anthropic API"
+  ],
+  "address": {
+    "@type": "PostalAddress",
+    "addressLocality": "Coral Springs",
+    "addressRegion": "FL",
+    "addressCountry": "US"
+  },
+  "email": "iganapolsky@gmail.com",
+  "sameAs": [
+    "https://github.com/IgorGanapolsky",
+    "https://www.linkedin.com/in/igor-ganapolsky-5324b7330",
+    "https://dev.to/igorganapolsky",
+    "https://www.upwork.com/freelancers/~01b5f08ed8b1a9a3c1",
+    "https://huggingface.co/IgorGanapolsky",
+    "https://x.com/igorganapolsky"
+  ],
+  "worksFor": {
+    "@type": "Organization",
+    "name": "ThumbGate",
+    "url": "https://thumbgate.ai/"
+  },
+  "owns": {
+    "@type": "SoftwareApplication",
+    "name": "ThumbGate",
+    "applicationCategory": "DeveloperApplication",
+    "description": "Pre-action defense for AI coding agents — thumbs up/down become history-aware lessons across Claude Code, Cursor, Codex, Gemini, Amp, Cline, OpenCode."
+  }
+}
+</script>
+
+<style>
+body{margin:0;font-family:-apple-system,BlinkMacSystemFont,"SF Pro Text",Inter,system-ui,sans-serif;line-height:1.6;color:#0f172a;background:#fafafa}
+header{padding:1rem 1.5rem;border-bottom:1px solid #e5e7eb;background:#fff;display:flex;align-items:center;gap:1rem}
+header a{color:#0f172a;text-decoration:none;font-weight:600}
+main{max-width:780px;margin:0 auto;padding:2.5rem 1.5rem}
+h1{font-size:2rem;margin:0 0 .25rem}
+h2{margin-top:2rem;font-size:1.25rem}
+.lede{font-size:1.125rem;color:#475569}
+.chips{display:flex;flex-wrap:wrap;gap:.4rem;margin:.75rem 0 0}
+.chip{display:inline-block;padding:.2rem .55rem;border:1px solid #e2e8f0;border-radius:9999px;font-size:.85rem;color:#334155;background:#fff}
+ul.links{list-style:none;padding:0;margin:1rem 0;display:grid;grid-template-columns:repeat(auto-fill,minmax(180px,1fr));gap:.5rem}
+ul.links li a{display:block;padding:.6rem .8rem;background:#fff;border:1px solid #e2e8f0;border-radius:.5rem;color:#0f172a;text-decoration:none}
+ul.links li a:hover{border-color:#0f172a}
+.section{background:#fff;border:1px solid #e5e7eb;border-radius:.75rem;padding:1.25rem 1.5rem;margin:1.25rem 0}
+footer{padding:2rem 1.5rem;color:#64748b;font-size:.9rem;text-align:center}
+</style>
+</head>
+<body>
+
+<header>
+<a href="/">ThumbGate</a>
+<span style="color:#94a3b8">/</span>
+<span>About</span>
+</header>
+
+<main>
+
+<h1>Igor Ganapolsky</h1>
+<p class="lede">Senior AI &amp; Mobile Engineer. Builder of <a href="/">ThumbGate</a> — pre-action defense for AI coding agents. Available for high-leverage Stripe Connect, Agentic RAG, and React Native contract engagements.</p>
+
+<div class="chips">
+  <span class="chip">Coral Springs, FL · US</span>
+  <span class="chip">Agentic RAG</span>
+  <span class="chip">Stripe Connect</span>
+  <span class="chip">React Native</span>
+  <span class="chip">Android</span>
+  <span class="chip">Claude Code · Cursor · Codex · Gemini</span>
+</div>
+
+<section class="section">
+<h2>What I build</h2>
+<p><strong>ThumbGate</strong> is the agent-governance layer that turns 👍 / 👎 signals into history-aware lessons across Claude Code, Cursor, Codex, Gemini, Amp, Cline, and OpenCode. Pre-Action Checks block the next repeated mistake before the tool call runs — workflow shape, inspection evidence, token budget, and repeated-failure memory in one gate.</p>
+<p>Outside ThumbGate, I ship production Stripe Connect marketplaces, Agentic RAG systems with LanceDB / pgvector / FAISS retrieval, React Native + Android apps, and LLM cost-instrumentation layers.</p>
+</section>
+
+<section class="section">
+<h2>Recent ships</h2>
+<ul>
+<li><strong>Hilltown Media Group · Pretix Stripe Connect plugin</strong> — production payments + automation, 100% test coverage, milestone-funded delivery.</li>
+<li><strong>ThumbGate v1.27</strong> — pre-action governance for AI coding agents, available on npm as <code>thumbgate</code>.</li>
+<li><strong>Resume revenue ML stack</strong> — Thompson-sampling bandit + copy/buyer logistic regression + Agentic RAG for closed-loop UpWork bidding.</li>
+</ul>
+</section>
+
+<section class="section">
+<h2>For hire</h2>
+<p>Available for fixed-price engagements ≥ $2K and ongoing retainers. Standard rate $120–150/hr 1099. Strong signal on Stripe Connect &amp; Billing audits, RAG + LLM evaluation harnesses, and React Native + Android engineering. Email <a href="mailto:iganapolsky@gmail.com">iganapolsky@gmail.com</a> or reach me on <a href="https://www.upwork.com/freelancers/~01b5f08ed8b1a9a3c1">Upwork</a>.</p>
+</section>
+
+<h2>Links</h2>
+<ul class="links">
+<li><a href="https://github.com/IgorGanapolsky" rel="me">GitHub</a></li>
+<li><a href="https://www.linkedin.com/in/igor-ganapolsky-5324b7330" rel="me">LinkedIn</a></li>
+<li><a href="https://dev.to/igorganapolsky" rel="me">dev.to</a></li>
+<li><a href="https://www.upwork.com/freelancers/~01b5f08ed8b1a9a3c1" rel="me">Upwork</a></li>
+<li><a href="https://huggingface.co/IgorGanapolsky" rel="me">Hugging Face</a></li>
+<li><a href="https://x.com/igorganapolsky" rel="me">X</a></li>
+</ul>
+
+</main>
+
+<footer>
+© 2026 ThumbGate · Built by <a href="/about">Igor Ganapolsky</a>
+</footer>
+
+</body>
+</html>

package/public/compare.html

@@ -62,7 +62,7 @@
       "name": "Is ThumbGate free?",
       "acceptedAnswer": {
         "@type": "Answer",
-        "text": "ThumbGate has a free tier that includes local enforcement with 5 feedback captures/day, 25 total captures, up to 3 active auto-promoted prevention rules, and pre-action check blocking. Pro ($19/mo or $149/yr) adds hosted sync, a personal local dashboard, recall, lesson search, unlimited captures/rules, and DPO export. Team rollout ($49/seat/mo) adds a shared lesson database and org dashboard."
+        "text": "ThumbGate has a free tier that includes local enforcement with 5 feedback captures/day, 25 total captures, up to 3 active auto-promoted prevention rules, and pre-action check blocking. Pro ($19/mo or $149/yr) adds hosted sync, a personal local dashboard, recall, lesson search, unlimited captures/rules, and DPO export. Enterprise (custom pricing, scoped after intake) adds a shared lesson database and org dashboard."
       }
     },
     {
@@ -311,7 +311,7 @@
 
 <div class="card">
   <h3>Is ThumbGate free?</h3>
-  <p>ThumbGate has a free tier that includes local enforcement with 5 feedback captures/day, 25 total captures, up to 3 active auto-promoted prevention rules, and pre-action check blocking. Pro ($19/mo or $149/yr) adds hosted sync, a personal local dashboard, recall, lesson search, unlimited captures/rules, and DPO export. Team rollout ($49/seat/mo) adds a shared lesson database and org dashboard.</p>
+  <p>ThumbGate has a free tier that includes local enforcement with 5 feedback captures/day, 25 total captures, up to 3 active auto-promoted prevention rules, and pre-action check blocking. Pro ($19/mo or $149/yr) adds hosted sync, a personal local dashboard, recall, lesson search, unlimited captures/rules, and DPO export. Enterprise (custom pricing, scoped after intake) adds a shared lesson database and org dashboard.</p>
 </div>
 
 <div class="card">