- refactor version fetching to use a dedicated API endpoint
- add validation functions for ObjectId and custom IDs
- improve URL sanitization to prevent path traversal
- implement AbortController in data fetching hooks to prevent memory leaks
- update component structure for better readability and maintainability

config() from md-editor-rt was being called at module scope in layout.tsx,
a Server Component, pulling a client-side library into the server bundle
and letting its global state persist in the Node.js process. Extracted
to a dedicated 'use client' module imported only by the components that
actually render the editor.

sweetalert2 was imported but never used in the NextAuth route, adding
a client-side DOM library to the server bundle unnecessarily. Also added
.catch() to the fire-and-forget axios call in the webhook route to prevent
unhandled promise rejections from accumulating under login traffic.

Condense AGENTS.md into a concise quick-reference, add CLAUDE.md and
GEMINI.md as mirrors, and move detailed content into docs/ subdirectory.

Replace the brief technical description with a structured README
including a banner, feature list, usage guide, FAQ, and tech stack
summary in Traditional Chinese.

Add missing dependencies to useEffect hooks across dashboard, info, post
editor, and utility hooks to prevent stale closure bugs. Fix useLocalStorage
to include key in the setValue callback dependency and drive the effect off
setValue. Restore isLogin as a dep in useUserAccount despite the comment,
and remove userData from edit page's redundant dep.

- Replace string concatenation with template literals in class names
- Use optional chaining (?.) instead of short-circuit logical-and
- Prefix unused variables/catch bindings with underscore (_error, _res, etc.)
- Remove unused imports (React, Link, Fragment, useRef, unused hooks)
- Add explicit radix 10 to parseInt() calls
- Replace new Date().getTime() with Date.now()
- Remove redundant Fragment wrapper elements
- Remove !important from CSS editor wrapper rule

- Extract jumpOut URL validation utility from 4 duplicate implementations
- Extract getBranchVersion API module from 2 duplicate implementations
- Remove unused variables, imports, and dead functions
- Stabilize React state and fix useEffect dependencies
- Replace node:assert with standard error handling in client code
- Parallelize sequential API calls in user page

Add comprehensive Biome config with sorted classes, noForEach,
noConsole, noExplicitAny, block statements, and early return rules.
Pin all dependency versions and add before-push script.

Document enforced and intentionally-off Biome rules to guide
code generation and prevent lint violations.

Sort Tailwind classes, replace forEach with for-of, add block
statements, remove else-after-return, replace any types with
specific types, and remove bare console.log calls.

Use nullish coalescing for sig._id lookup and mark InfiniteData as
optional to prevent undefined key access and prop type mismatches.

Adds a .githooks/pre-push script that runs install, format/lint,
type-check, and build before every push. The prepare script wires
it up automatically via git config core.hooksPath.

Pre-push now runs gitleaks, env-secret detection, console.log check,
and bundle-size validation in addition to install/lint/type/build.
Post-merge skips pnpm install when lockfile is unchanged, cleans
.next cache on next.config changes, and warns on .env.local.example
updates.

Introduces scripts/prepare.mjs which sets the hooksPath and auto-creates
.env.local from the example on first install. Removes framer-motion,
jwt-decode, and react-cookie (unused after dead-code cleanup). Drops
stale turbopack resolveAlias. Updates AGENTS.md commands accordingly.

Next.js 15 passes route params as Promise<{…}>; using use(params)
at the top of the component unwraps it synchronously-safely and
removes the now-redundant inline destructures throughout the file.

Deletes thirteen orphaned files (APIs, utils, SCSS, modules) that are
no longer imported anywhere. Removes CustomCode enum, isValidSigId,
isValidUUID, and isMingdaoEmail which had no remaining callers.
Unexports the Thread component since it is only used within its file.

Disables animations and transitions for users who have requested
reduced motion, improving accessibility compliance.