Upload 112 files

.gitattributes

@@ -1,36 +1,36 @@
-*.7z filter=lfs diff=lfs merge=lfs -text
-*.arrow filter=lfs diff=lfs merge=lfs -text
-*.bin filter=lfs diff=lfs merge=lfs -text
-*.bz2 filter=lfs diff=lfs merge=lfs -text
-*.ckpt filter=lfs diff=lfs merge=lfs -text
-*.ftz filter=lfs diff=lfs merge=lfs -text
-*.gz filter=lfs diff=lfs merge=lfs -text
-*.h5 filter=lfs diff=lfs merge=lfs -text
-*.joblib filter=lfs diff=lfs merge=lfs -text
-*.lfs.* filter=lfs diff=lfs merge=lfs -text
-*.mlmodel filter=lfs diff=lfs merge=lfs -text
-*.model filter=lfs diff=lfs merge=lfs -text
-*.msgpack filter=lfs diff=lfs merge=lfs -text
-*.npy filter=lfs diff=lfs merge=lfs -text
-*.npz filter=lfs diff=lfs merge=lfs -text
-*.onnx filter=lfs diff=lfs merge=lfs -text
-*.ot filter=lfs diff=lfs merge=lfs -text
-*.parquet filter=lfs diff=lfs merge=lfs -text
-*.pb filter=lfs diff=lfs merge=lfs -text
-*.pickle filter=lfs diff=lfs merge=lfs -text
-*.pkl filter=lfs diff=lfs merge=lfs -text
-*.pt filter=lfs diff=lfs merge=lfs -text
-*.pth filter=lfs diff=lfs merge=lfs -text
-*.rar filter=lfs diff=lfs merge=lfs -text
-*.safetensors filter=lfs diff=lfs merge=lfs -text
-saved_model/**/* filter=lfs diff=lfs merge=lfs -text
-*.tar.* filter=lfs diff=lfs merge=lfs -text
-*.tar filter=lfs diff=lfs merge=lfs -text
-*.tflite filter=lfs diff=lfs merge=lfs -text
-*.tgz filter=lfs diff=lfs merge=lfs -text
-*.wasm filter=lfs diff=lfs merge=lfs -text
-*.xz filter=lfs diff=lfs merge=lfs -text
-*.zip filter=lfs diff=lfs merge=lfs -text
-*.zst filter=lfs diff=lfs merge=lfs -text
-*tfevents* filter=lfs diff=lfs merge=lfs -text
-uiprototype2/doc/Refstudio_SRS_v1.0.pdf filter=lfs diff=lfs merge=lfs -text
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.arrow filter=lfs diff=lfs merge=lfs -text
+*.bin filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.ckpt filter=lfs diff=lfs merge=lfs -text
+*.ftz filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.h5 filter=lfs diff=lfs merge=lfs -text
+*.joblib filter=lfs diff=lfs merge=lfs -text
+*.lfs.* filter=lfs diff=lfs merge=lfs -text
+*.mlmodel filter=lfs diff=lfs merge=lfs -text
+*.model filter=lfs diff=lfs merge=lfs -text
+*.msgpack filter=lfs diff=lfs merge=lfs -text
+*.npy filter=lfs diff=lfs merge=lfs -text
+*.npz filter=lfs diff=lfs merge=lfs -text
+*.onnx filter=lfs diff=lfs merge=lfs -text
+*.ot filter=lfs diff=lfs merge=lfs -text
+*.parquet filter=lfs diff=lfs merge=lfs -text
+*.pb filter=lfs diff=lfs merge=lfs -text
+*.pickle filter=lfs diff=lfs merge=lfs -text
+*.pkl filter=lfs diff=lfs merge=lfs -text
+*.pt filter=lfs diff=lfs merge=lfs -text
+*.pth filter=lfs diff=lfs merge=lfs -text
+*.rar filter=lfs diff=lfs merge=lfs -text
+*.safetensors filter=lfs diff=lfs merge=lfs -text
+saved_model/**/* filter=lfs diff=lfs merge=lfs -text
+*.tar.* filter=lfs diff=lfs merge=lfs -text
+*.tar filter=lfs diff=lfs merge=lfs -text
+*.tflite filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.wasm filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
+*tfevents* filter=lfs diff=lfs merge=lfs -text
+uiprototype2/doc/Refstudio_SRS_v1.0.pdf filter=lfs diff=lfs merge=lfs -text

.gitignore

@@ -1,7 +1,7 @@
-node_modules/
-dist/
-src-tauri/target/
-src-tauri/gen/
-.DS_Store
-*.log
-.env
+node_modules/
+dist/
+src-tauri/target/
+src-tauri/gen/
+.DS_Store
+*.log
+.env

README.md

@@ -1,98 +1,98 @@
----
-tags:
-- ml-intern
----
-# MUSE Alpha — Creative Browser
-
-Tauri v2 + Rust + SolidJS · Phase 0–4 implementation.
-
-> *The browser that understands that getting the work done matters more than any single feature.*
-
-## Download
-
-**Latest project:** [`artifacts/musealpha-production.zip`](artifacts/musealpha-production.zip)
-
-## Run
-
-```bash
-deno install
-deno task tauri dev
-```
-
-## Architecture
-
-- **Shell:** SolidJS in main WebView (titlebar, sidebar, URL bar, library, board, study mode)
-- **Browser tabs:** Tauri child WebViews via `window.add_child()` (unstable feature)
-- **Ad-block:** `adblock-rust 0.12` + JS injection scripts (Layer 0-3)
-- **Privacy:** WebRTC protection, canvas fingerprint noise, cookie consent auto-deny
-- **Data:** SQLite (via tauri-plugin-sql) + JSON persistence + Stronghold vault
-- **Design:** 8 production-polished theme presets, tokenized design system
-
-## Implemented Phases
-
-### Phase 0 — Foundation ✓
-Custom titlebar, 8-theme system, onboarding, settings persistence, SQLite migrations.
-
-### Phase 1 — Browser ✓
-Multi-tab via child WebViews, vertical tab sidebar, URL navigation, back/forward/reload/zoom.
-
-### Phase 2 — Ad-Block & Privacy ✓
-adblock-rust engine, bundled filter lists, daily updater, JS injection scripts, cosmetic filtering, navigation blocking, per-domain shield controls, HTTPS-first, Stronghold vault.
-
-### Phase 3 — Library & Board ✓
-Library (add by URL, Blake3 hash, dimensions, palette extraction, grid, detail, search), Board (infinite canvas, pan/zoom, image/note/palette cards, drag from library), hover overlay, downloads, sessions.
-
-### Phase 4 — Artist Features ✓
-Quick Study Mode (timer, opacity, flip, notes), Command Palette (Ctrl+K), Session Manager, Color Export (HEX/CSS/GPL/ASE/Procreate), color search by hue.
-
-## Design System
-
-- **Tokens:** `src/styles/tokens.css` — spacing, radius, motion, z-index, per-theme colors
-- **Primitives:** `src/styles/primitives.css` — buttons, inputs, cards, badges, dividers
-- **Themes:** Dusk, Parchment, Midnight, Studio, Moss, Rose, Obsidian, Linen
-- **State:** `src/store/appStore.ts` — centralized SolidJS store
-
-## Keyboard Shortcuts
-
-| Shortcut | Action |
-|---|---|
-| `Ctrl+K` | Command Palette |
-| `Ctrl+Shift+Y` | Quick Study Mode |
-| `Escape` | Close palette/study |
-
-## Docs
-
-- [`docs/MUSE_SRS_v3.md`](docs/MUSE_SRS_v3.md) — Product requirements
-- [`docs/MUSE_SRS_v4.md`](docs/MUSE_SRS_v4.md) — Implementation guide
-
-## Known Limitations
-
-- Library/Board use JSON persistence, not full SQLite FTS5 yet
-- Password manager UI not implemented (vault backend ready)
-- Board annotations/overlays/export not implemented
-- Remote hover overlay IPC requires broad capabilities
-- No test suite
-
----
-
-Generated by [ML Intern](https://github.com/huggingface/ml-intern).
-
-<!-- ml-intern-provenance -->
-## Generated by ML Intern
-
-This model repository was generated by [ML Intern](https://github.com/huggingface/ml-intern), an agent for machine learning research and development on the Hugging Face Hub.
-
-- Try ML Intern: https://smolagents-ml-intern.hf.space
-- Source code: https://github.com/huggingface/ml-intern
-
-## Usage
-
-```python
-from transformers import AutoModelForCausalLM, AutoTokenizer
-
-model_id = 'asdf98/musealpha'
-tokenizer = AutoTokenizer.from_pretrained(model_id)
-model = AutoModelForCausalLM.from_pretrained(model_id)
-```
-
-For non-causal architectures, replace `AutoModelForCausalLM` with the appropriate `AutoModel` class.
+---
+tags:
+- ml-intern
+---
+# MUSE Alpha — Creative Browser
+
+Tauri v2 + Rust + SolidJS · Phase 0–4 implementation.
+
+> *The browser that understands that getting the work done matters more than any single feature.*
+
+## Download
+
+**Latest project:** [`artifacts/musealpha-production.zip`](artifacts/musealpha-production.zip)
+
+## Run
+
+```bash
+deno install
+deno task tauri dev
+```
+
+## Architecture
+
+- **Shell:** SolidJS in main WebView (titlebar, sidebar, URL bar, library, board, study mode)
+- **Browser tabs:** Tauri child WebViews via `window.add_child()` (unstable feature)
+- **Ad-block:** `adblock-rust 0.12` + JS injection scripts (Layer 0-3)
+- **Privacy:** WebRTC protection, canvas fingerprint noise, cookie consent auto-deny
+- **Data:** SQLite (via tauri-plugin-sql) + JSON persistence + Stronghold vault
+- **Design:** 8 production-polished theme presets, tokenized design system
+
+## Implemented Phases
+
+### Phase 0 — Foundation ✓
+Custom titlebar, 8-theme system, onboarding, settings persistence, SQLite migrations.
+
+### Phase 1 — Browser ✓
+Multi-tab via child WebViews, vertical tab sidebar, URL navigation, back/forward/reload/zoom.
+
+### Phase 2 — Ad-Block & Privacy ✓
+adblock-rust engine, bundled filter lists, daily updater, JS injection scripts, cosmetic filtering, navigation blocking, per-domain shield controls, HTTPS-first, Stronghold vault.
+
+### Phase 3 — Library & Board ✓
+Library (add by URL, Blake3 hash, dimensions, palette extraction, grid, detail, search), Board (infinite canvas, pan/zoom, image/note/palette cards, drag from library), hover overlay, downloads, sessions.
+
+### Phase 4 — Artist Features ✓
+Quick Study Mode (timer, opacity, flip, notes), Command Palette (Ctrl+K), Session Manager, Color Export (HEX/CSS/GPL/ASE/Procreate), color search by hue.
+
+## Design System
+
+- **Tokens:** `src/styles/tokens.css` — spacing, radius, motion, z-index, per-theme colors
+- **Primitives:** `src/styles/primitives.css` — buttons, inputs, cards, badges, dividers
+- **Themes:** Dusk, Parchment, Midnight, Studio, Moss, Rose, Obsidian, Linen
+- **State:** `src/store/appStore.ts` — centralized SolidJS store
+
+## Keyboard Shortcuts
+
+| Shortcut | Action |
+|---|---|
+| `Ctrl+K` | Command Palette |
+| `Ctrl+Shift+Y` | Quick Study Mode |
+| `Escape` | Close palette/study |
+
+## Docs
+
+- [`docs/MUSE_SRS_v3.md`](docs/MUSE_SRS_v3.md) — Product requirements
+- [`docs/MUSE_SRS_v4.md`](docs/MUSE_SRS_v4.md) — Implementation guide
+
+## Known Limitations
+
+- Library/Board use JSON persistence, not full SQLite FTS5 yet
+- Password manager UI not implemented (vault backend ready)
+- Board annotations/overlays/export not implemented
+- Remote hover overlay IPC requires broad capabilities
+- No test suite
+
+---
+
+Generated by [ML Intern](https://github.com/huggingface/ml-intern).
+
+<!-- ml-intern-provenance -->
+## Generated by ML Intern
+
+This model repository was generated by [ML Intern](https://github.com/huggingface/ml-intern), an agent for machine learning research and development on the Hugging Face Hub.
+
+- Try ML Intern: https://smolagents-ml-intern.hf.space
+- Source code: https://github.com/huggingface/ml-intern
+
+## Usage
+
+```python
+from transformers import AutoModelForCausalLM, AutoTokenizer
+
+model_id = 'asdf98/musealpha'
+tokenizer = AutoTokenizer.from_pretrained(model_id)
+model = AutoModelForCausalLM.from_pretrained(model_id)
+```
+
+For non-causal architectures, replace `AutoModelForCausalLM` with the appropriate `AutoModel` class.

deno.json

@@ -1,19 +1,19 @@
-{
-  "tasks": {
-    "dev": "deno run -A npm:vite --port 1420 --host",
-    "build": "deno run -A npm:vite build",
-    "preview": "deno run -A npm:vite preview",
-    "tauri": "deno run -A npm:@tauri-apps/cli"
-  },
-  "imports": {
-    "react": "npm:react@^19",
-    "react-dom": "npm:react-dom@^19",
-    "react/jsx-runtime": "npm:react@^19/jsx-runtime"
-  },
-  "compilerOptions": {
-    "jsx": "react-jsx",
-    "jsxImportSource": "react",
-    "lib": ["dom", "dom.iterable", "esnext"]
-  },
-  "nodeModulesDir": "auto"
-}
+{
+  "tasks": {
+    "dev": "deno run -A npm:vite --port 1420 --host",
+    "build": "deno run -A npm:vite build",
+    "preview": "deno run -A npm:vite preview",
+    "tauri": "deno run -A npm:@tauri-apps/cli"
+  },
+  "imports": {
+    "react": "npm:react@^19",
+    "react-dom": "npm:react-dom@^19",
+    "react/jsx-runtime": "npm:react@^19/jsx-runtime"
+  },
+  "compilerOptions": {
+    "jsx": "react-jsx",
+    "jsxImportSource": "react",
+    "lib": ["dom", "dom.iterable", "esnext"]
+  },
+  "nodeModulesDir": "auto"
+}

deno.lock

@@ -0,0 +1,1128 @@
+{
+  "version": "5",
+  "specifiers": {
+    "npm:@tailwindcss/vite@4": "4.3.0_vite@6.4.2__picomatch@4.0.4",
+    "npm:@tauri-apps/api@2": "2.11.0",
+    "npm:@tauri-apps/cli@*": "2.11.1",
+    "npm:@tauri-apps/cli@2": "2.11.1",
+    "npm:@tauri-apps/plugin-clipboard-manager@2": "2.3.2",
+    "npm:@tauri-apps/plugin-fs@2": "2.5.1",
+    "npm:@tauri-apps/plugin-opener@2": "2.5.3",
+    "npm:@tauri-apps/plugin-store@2": "2.4.3",
+    "npm:@tauri-apps/plugin-stronghold@2": "2.3.1",
+    "npm:@types/react-dom@19": "19.2.3_@types+react@19.2.14",
+    "npm:@types/react@19": "19.2.14",
+    "npm:@vitejs/plugin-react@^4.3.0": "4.7.0_vite@6.4.2__picomatch@4.0.4_@babel+core@7.29.0",
+    "npm:autoprefixer@^10.4.20": "10.5.0_postcss@8.5.14",
+    "npm:lucide-react@0.468": "0.468.0_react@19.2.6",
+    "npm:motion@12": "12.38.0_react@19.2.6_react-dom@19.2.6__react@19.2.6",
+    "npm:postcss@^8.4.49": "8.5.14",
+    "npm:react-dom@19": "19.2.6_react@19.2.6",
+    "npm:react@19": "19.2.6",
+    "npm:tailwindcss@4": "4.3.0",
+    "npm:typescript@~5.6.2": "5.6.3",
+    "npm:vite@*": "6.4.2_picomatch@4.0.4",
+    "npm:vite@6": "6.4.2_picomatch@4.0.4"
+  },
+  "npm": {
+    "@babel/code-frame@7.29.0": {
+      "integrity": "sha512-9NhCeYjq9+3uxgdtp20LSiJXJvN0FeCtNGpJxuMFZ1Kv3cWUNb6DOhJwUvcVCzKGR66cw4njwM6hrJLqgOwbcw==",
+      "dependencies": [
+        "@babel/helper-validator-identifier",
+        "js-tokens",
+        "picocolors"
+      ]
+    },
+    "@babel/compat-data@7.29.3": {
+      "integrity": "sha512-LIVqM46zQWZhj17qA8wb4nW/ixr2y1Nw+r1etiAWgRM6U1IqP+LNhL1yg440jYZR72jCWcWbLWzIosH+uP1fqg=="
+    },
+    "@babel/core@7.29.0": {
+      "integrity": "sha512-CGOfOJqWjg2qW/Mb6zNsDm+u5vFQ8DxXfbM09z69p5Z6+mE1ikP2jUXw+j42Pf1XTYED2Rni5f95npYeuwMDQA==",
+      "dependencies": [
+        "@babel/code-frame",
+        "@babel/generator",
+        "@babel/helper-compilation-targets",
+        "@babel/helper-module-transforms",
+        "@babel/helpers",
+        "@babel/parser",
+        "@babel/template",
+        "@babel/traverse",
+        "@babel/types",
+        "@jridgewell/remapping",
+        "convert-source-map",
+        "debug",
+        "gensync",
+        "json5",
+        "semver"
+      ]
+    },
+    "@babel/generator@7.29.1": {
+      "integrity": "sha512-qsaF+9Qcm2Qv8SRIMMscAvG4O3lJ0F1GuMo5HR/Bp02LopNgnZBC/EkbevHFeGs4ls/oPz9v+Bsmzbkbe+0dUw==",
+      "dependencies": [
+        "@babel/parser",
+        "@babel/types",
+        "@jridgewell/gen-mapping",
+        "@jridgewell/trace-mapping",
+        "jsesc"
+      ]
+    },
+    "@babel/helper-compilation-targets@7.28.6": {
+      "integrity": "sha512-JYtls3hqi15fcx5GaSNL7SCTJ2MNmjrkHXg4FSpOA/grxK8KwyZ5bubHsCq8FXCkua6xhuaaBit+3b7+VZRfcA==",
+      "dependencies": [
+        "@babel/compat-data",
+        "@babel/helper-validator-option",
+        "browserslist",
+        "lru-cache",
+        "semver"
+      ]
+    },
+    "@babel/helper-globals@7.28.0": {
+      "integrity": "sha512-+W6cISkXFa1jXsDEdYA8HeevQT/FULhxzR99pxphltZcVaugps53THCeiWA8SguxxpSp3gKPiuYfSWopkLQ4hw=="
+    },
+    "@babel/helper-module-imports@7.28.6": {
+      "integrity": "sha512-l5XkZK7r7wa9LucGw9LwZyyCUscb4x37JWTPz7swwFE/0FMQAGpiWUZn8u9DzkSBWEcK25jmvubfpw2dnAMdbw==",
+      "dependencies": [
+        "@babel/traverse",
+        "@babel/types"
+      ]
+    },
+    "@babel/helper-module-transforms@7.28.6_@babel+core@7.29.0": {
+      "integrity": "sha512-67oXFAYr2cDLDVGLXTEABjdBJZ6drElUSI7WKp70NrpyISso3plG9SAGEF6y7zbha/wOzUByWWTJvEDVNIUGcA==",
+      "dependencies": [
+        "@babel/core",
+        "@babel/helper-module-imports",
+        "@babel/helper-validator-identifier",
+        "@babel/traverse"
+      ]
+    },
+    "@babel/helper-plugin-utils@7.28.6": {
+      "integrity": "sha512-S9gzZ/bz83GRysI7gAD4wPT/AI3uCnY+9xn+Mx/KPs2JwHJIz1W8PZkg2cqyt3RNOBM8ejcXhV6y8Og7ly/Dug=="
+    },
+    "@babel/helper-string-parser@7.27.1": {
+      "integrity": "sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA=="
+    },
+    "@babel/helper-validator-identifier@7.28.5": {
+      "integrity": "sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q=="
+    },
+    "@babel/helper-validator-option@7.27.1": {
+      "integrity": "sha512-YvjJow9FxbhFFKDSuFnVCe2WxXk1zWc22fFePVNEaWJEu8IrZVlda6N0uHwzZrUM1il7NC9Mlp4MaJYbYd9JSg=="
+    },
+    "@babel/helpers@7.29.2": {
+      "integrity": "sha512-HoGuUs4sCZNezVEKdVcwqmZN8GoHirLUcLaYVNBK2J0DadGtdcqgr3BCbvH8+XUo4NGjNl3VOtSjEKNzqfFgKw==",
+      "dependencies": [
+        "@babel/template",
+        "@babel/types"
+      ]
+    },
+    "@babel/parser@7.29.3": {
+      "integrity": "sha512-b3ctpQwp+PROvU/cttc4OYl4MzfJUWy6FZg+PMXfzmt/+39iHVF0sDfqay8TQM3JA2EUOyKcFZt75jWriQijsA==",
+      "dependencies": [
+        "@babel/types"
+      ],
+      "bin": true
+    },
+    "@babel/plugin-transform-react-jsx-self@7.27.1_@babel+core@7.29.0": {
+      "integrity": "sha512-6UzkCs+ejGdZ5mFFC/OCUrv028ab2fp1znZmCZjAOBKiBK2jXD1O+BPSfX8X2qjJ75fZBMSnQn3Rq2mrBJK2mw==",
+      "dependencies": [
+        "@babel/core",
+        "@babel/helper-plugin-utils"
+      ]
+    },
+    "@babel/plugin-transform-react-jsx-source@7.27.1_@babel+core@7.29.0": {
+      "integrity": "sha512-zbwoTsBruTeKB9hSq73ha66iFeJHuaFkUbwvqElnygoNbj/jHRsSeokowZFN3CZ64IvEqcmmkVe89OPXc7ldAw==",
+      "dependencies": [
+        "@babel/core",
+        "@babel/helper-plugin-utils"
+      ]
+    },
+    "@babel/template@7.28.6": {
+      "integrity": "sha512-YA6Ma2KsCdGb+WC6UpBVFJGXL58MDA6oyONbjyF/+5sBgxY/dwkhLogbMT2GXXyU84/IhRw/2D1Os1B/giz+BQ==",
+      "dependencies": [
+        "@babel/code-frame",
+        "@babel/parser",
+        "@babel/types"
+      ]
+    },
+    "@babel/traverse@7.29.0": {
+      "integrity": "sha512-4HPiQr0X7+waHfyXPZpWPfWL/J7dcN1mx9gL6WdQVMbPnF3+ZhSMs8tCxN7oHddJE9fhNE7+lxdnlyemKfJRuA==",
+      "dependencies": [
+        "@babel/code-frame",
+        "@babel/generator",
+        "@babel/helper-globals",
+        "@babel/parser",
+        "@babel/template",
+        "@babel/types",
+        "debug"
+      ]
+    },
+    "@babel/types@7.29.0": {
+      "integrity": "sha512-LwdZHpScM4Qz8Xw2iKSzS+cfglZzJGvofQICy7W7v4caru4EaAmyUuO6BGrbyQ2mYV11W0U8j5mBhd14dd3B0A==",
+      "dependencies": [
+        "@babel/helper-string-parser",
+        "@babel/helper-validator-identifier"
+      ]
+    },
+    "@esbuild/aix-ppc64@0.25.12": {
+      "integrity": "sha512-Hhmwd6CInZ3dwpuGTF8fJG6yoWmsToE+vYgD4nytZVxcu1ulHpUQRAB1UJ8+N1Am3Mz4+xOByoQoSZf4D+CpkA==",
+      "os": ["aix"],
+      "cpu": ["ppc64"]
+    },
+    "@esbuild/android-arm64@0.25.12": {
+      "integrity": "sha512-6AAmLG7zwD1Z159jCKPvAxZd4y/VTO0VkprYy+3N2FtJ8+BQWFXU+OxARIwA46c5tdD9SsKGZ/1ocqBS/gAKHg==",
+      "os": ["android"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/android-arm@0.25.12": {
+      "integrity": "sha512-VJ+sKvNA/GE7Ccacc9Cha7bpS8nyzVv0jdVgwNDaR4gDMC/2TTRc33Ip8qrNYUcpkOHUT5OZ0bUcNNVZQ9RLlg==",
+      "os": ["android"],
+      "cpu": ["arm"]
+    },
+    "@esbuild/android-x64@0.25.12": {
+      "integrity": "sha512-5jbb+2hhDHx5phYR2By8GTWEzn6I9UqR11Kwf22iKbNpYrsmRB18aX/9ivc5cabcUiAT/wM+YIZ6SG9QO6a8kg==",
+      "os": ["android"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/darwin-arm64@0.25.12": {
+      "integrity": "sha512-N3zl+lxHCifgIlcMUP5016ESkeQjLj/959RxxNYIthIg+CQHInujFuXeWbWMgnTo4cp5XVHqFPmpyu9J65C1Yg==",
+      "os": ["darwin"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/darwin-x64@0.25.12": {
+      "integrity": "sha512-HQ9ka4Kx21qHXwtlTUVbKJOAnmG1ipXhdWTmNXiPzPfWKpXqASVcWdnf2bnL73wgjNrFXAa3yYvBSd9pzfEIpA==",
+      "os": ["darwin"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/freebsd-arm64@0.25.12": {
+      "integrity": "sha512-gA0Bx759+7Jve03K1S0vkOu5Lg/85dou3EseOGUes8flVOGxbhDDh/iZaoek11Y8mtyKPGF3vP8XhnkDEAmzeg==",
+      "os": ["freebsd"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/freebsd-x64@0.25.12": {
+      "integrity": "sha512-TGbO26Yw2xsHzxtbVFGEXBFH0FRAP7gtcPE7P5yP7wGy7cXK2oO7RyOhL5NLiqTlBh47XhmIUXuGciXEqYFfBQ==",
+      "os": ["freebsd"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/linux-arm64@0.25.12": {
+      "integrity": "sha512-8bwX7a8FghIgrupcxb4aUmYDLp8pX06rGh5HqDT7bB+8Rdells6mHvrFHHW2JAOPZUbnjUpKTLg6ECyzvas2AQ==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/linux-arm@0.25.12": {
+      "integrity": "sha512-lPDGyC1JPDou8kGcywY0YILzWlhhnRjdof3UlcoqYmS9El818LLfJJc3PXXgZHrHCAKs/Z2SeZtDJr5MrkxtOw==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "@esbuild/linux-ia32@0.25.12": {
+      "integrity": "sha512-0y9KrdVnbMM2/vG8KfU0byhUN+EFCny9+8g202gYqSSVMonbsCfLjUO+rCci7pM0WBEtz+oK/PIwHkzxkyharA==",
+      "os": ["linux"],
+      "cpu": ["ia32"]
+    },
+    "@esbuild/linux-loong64@0.25.12": {
+      "integrity": "sha512-h///Lr5a9rib/v1GGqXVGzjL4TMvVTv+s1DPoxQdz7l/AYv6LDSxdIwzxkrPW438oUXiDtwM10o9PmwS/6Z0Ng==",
+      "os": ["linux"],
+      "cpu": ["loong64"]
+    },
+    "@esbuild/linux-mips64el@0.25.12": {
+      "integrity": "sha512-iyRrM1Pzy9GFMDLsXn1iHUm18nhKnNMWscjmp4+hpafcZjrr2WbT//d20xaGljXDBYHqRcl8HnxbX6uaA/eGVw==",
+      "os": ["linux"],
+      "cpu": ["mips64el"]
+    },
+    "@esbuild/linux-ppc64@0.25.12": {
+      "integrity": "sha512-9meM/lRXxMi5PSUqEXRCtVjEZBGwB7P/D4yT8UG/mwIdze2aV4Vo6U5gD3+RsoHXKkHCfSxZKzmDssVlRj1QQA==",
+      "os": ["linux"],
+      "cpu": ["ppc64"]
+    },
+    "@esbuild/linux-riscv64@0.25.12": {
+      "integrity": "sha512-Zr7KR4hgKUpWAwb1f3o5ygT04MzqVrGEGXGLnj15YQDJErYu/BGg+wmFlIDOdJp0PmB0lLvxFIOXZgFRrdjR0w==",
+      "os": ["linux"],
+      "cpu": ["riscv64"]
+    },
+    "@esbuild/linux-s390x@0.25.12": {
+      "integrity": "sha512-MsKncOcgTNvdtiISc/jZs/Zf8d0cl/t3gYWX8J9ubBnVOwlk65UIEEvgBORTiljloIWnBzLs4qhzPkJcitIzIg==",
+      "os": ["linux"],
+      "cpu": ["s390x"]
+    },
+    "@esbuild/linux-x64@0.25.12": {
+      "integrity": "sha512-uqZMTLr/zR/ed4jIGnwSLkaHmPjOjJvnm6TVVitAa08SLS9Z0VM8wIRx7gWbJB5/J54YuIMInDquWyYvQLZkgw==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/netbsd-arm64@0.25.12": {
+      "integrity": "sha512-xXwcTq4GhRM7J9A8Gv5boanHhRa/Q9KLVmcyXHCTaM4wKfIpWkdXiMog/KsnxzJ0A1+nD+zoecuzqPmCRyBGjg==",
+      "os": ["netbsd"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/netbsd-x64@0.25.12": {
+      "integrity": "sha512-Ld5pTlzPy3YwGec4OuHh1aCVCRvOXdH8DgRjfDy/oumVovmuSzWfnSJg+VtakB9Cm0gxNO9BzWkj6mtO1FMXkQ==",
+      "os": ["netbsd"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/openbsd-arm64@0.25.12": {
+      "integrity": "sha512-fF96T6KsBo/pkQI950FARU9apGNTSlZGsv1jZBAlcLL1MLjLNIWPBkj5NlSz8aAzYKg+eNqknrUJ24QBybeR5A==",
+      "os": ["openbsd"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/openbsd-x64@0.25.12": {
+      "integrity": "sha512-MZyXUkZHjQxUvzK7rN8DJ3SRmrVrke8ZyRusHlP+kuwqTcfWLyqMOE3sScPPyeIXN/mDJIfGXvcMqCgYKekoQw==",
+      "os": ["openbsd"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/openharmony-arm64@0.25.12": {
+      "integrity": "sha512-rm0YWsqUSRrjncSXGA7Zv78Nbnw4XL6/dzr20cyrQf7ZmRcsovpcRBdhD43Nuk3y7XIoW2OxMVvwuRvk9XdASg==",
+      "os": ["openharmony"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/sunos-x64@0.25.12": {
+      "integrity": "sha512-3wGSCDyuTHQUzt0nV7bocDy72r2lI33QL3gkDNGkod22EsYl04sMf0qLb8luNKTOmgF/eDEDP5BFNwoBKH441w==",
+      "os": ["sunos"],
+      "cpu": ["x64"]
+    },
+    "@esbuild/win32-arm64@0.25.12": {
+      "integrity": "sha512-rMmLrur64A7+DKlnSuwqUdRKyd3UE7oPJZmnljqEptesKM8wx9J8gx5u0+9Pq0fQQW8vqeKebwNXdfOyP+8Bsg==",
+      "os": ["win32"],
+      "cpu": ["arm64"]
+    },
+    "@esbuild/win32-ia32@0.25.12": {
+      "integrity": "sha512-HkqnmmBoCbCwxUKKNPBixiWDGCpQGVsrQfJoVGYLPT41XWF8lHuE5N6WhVia2n4o5QK5M4tYr21827fNhi4byQ==",
+      "os": ["win32"],
+      "cpu": ["ia32"]
+    },
+    "@esbuild/win32-x64@0.25.12": {
+      "integrity": "sha512-alJC0uCZpTFrSL0CCDjcgleBXPnCrEAhTBILpeAp7M/OFgoqtAetfBzX0xM00MUsVVPpVjlPuMbREqnZCXaTnA==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "@jridgewell/gen-mapping@0.3.13": {
+      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
+      "dependencies": [
+        "@jridgewell/sourcemap-codec",
+        "@jridgewell/trace-mapping"
+      ]
+    },
+    "@jridgewell/remapping@2.3.5": {
+      "integrity": "sha512-LI9u/+laYG4Ds1TDKSJW2YPrIlcVYOwi2fUC6xB43lueCjgxV4lffOCZCtYFiH6TNOX+tQKXx97T4IKHbhyHEQ==",
+      "dependencies": [
+        "@jridgewell/gen-mapping",
+        "@jridgewell/trace-mapping"
+      ]
+    },
+    "@jridgewell/resolve-uri@3.1.2": {
+      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw=="
+    },
+    "@jridgewell/sourcemap-codec@1.5.5": {
+      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og=="
+    },
+    "@jridgewell/trace-mapping@0.3.31": {
+      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
+      "dependencies": [
+        "@jridgewell/resolve-uri",
+        "@jridgewell/sourcemap-codec"
+      ]
+    },
+    "@rolldown/pluginutils@1.0.0-beta.27": {
+      "integrity": "sha512-+d0F4MKMCbeVUJwG96uQ4SgAznZNSq93I3V+9NHA4OpvqG8mRCpGdKmK8l/dl02h2CCDHwW2FqilnTyDcAnqjA=="
+    },
+    "@rollup/rollup-android-arm-eabi@4.60.3": {
+      "integrity": "sha512-x35CNW/ANXG3hE/EZpRU8MXX1JDN86hBb2wMGAtltkz7pc6cxgjpy1OMMfDosOQ+2hWqIkag/fGok1Yady9nGw==",
+      "os": ["android"],
+      "cpu": ["arm"]
+    },
+    "@rollup/rollup-android-arm64@4.60.3": {
+      "integrity": "sha512-xw3xtkDApIOGayehp2+Rz4zimfkaX65r4t47iy+ymQB2G4iJCBBfj0ogVg5jpvjpn8UWn/+q9tprxleYeNp3Hw==",
+      "os": ["android"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-darwin-arm64@4.60.3": {
+      "integrity": "sha512-vo6Y5Qfpx7/5EaamIwi0WqW2+zfiusVihKatLvtN1VFVy3D13uERk/6gZLU1UiHRL6fDXqj/ELIeVRGnvcTE1g==",
+      "os": ["darwin"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-darwin-x64@4.60.3": {
+      "integrity": "sha512-D+0QGcZhBzTN82weOnsSlY7V7+RMmPuF1CkbxyMAGE8+ZHeUjyb76ZiWmBlCu//AQQONvxcqRbwZTajZKqjuOw==",
+      "os": ["darwin"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-freebsd-arm64@4.60.3": {
+      "integrity": "sha512-6HnvHCT7fDyj6R0Ph7A6x8dQS/S38MClRWeDLqc0MdfWkxjiu1HSDYrdPhqSILzjTIC/pnXbbJbo+ft+gy/9hQ==",
+      "os": ["freebsd"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-freebsd-x64@4.60.3": {
+      "integrity": "sha512-KHLgC3WKlUYW3ShFKnnosZDOJ0xjg9zp7au3sIm2bs/tGBeC2ipmvRh/N7JKi0t9Ue20C0dpEshi8WUubg+cnA==",
+      "os": ["freebsd"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-linux-arm-gnueabihf@4.60.3": {
+      "integrity": "sha512-DV6fJoxEYWJOvaZIsok7KrYl0tPvga5OZ2yvKHNNYyk/2roMLqQAbGhr78EQ5YhHpnhLKJD3S1WFusAkmUuV5g==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "@rollup/rollup-linux-arm-musleabihf@4.60.3": {
+      "integrity": "sha512-mQKoJAzvuOs6F+TZybQO4GOTSMUu7v0WdxEk24krQ/uUxXoPTtHjuaUuPmFhtBcM4K0ons8nrE3JyhTuCFtT/w==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "@rollup/rollup-linux-arm64-gnu@4.60.3": {
+      "integrity": "sha512-Whjj2qoiJ6+OOJMGptTYazaJvjOJm+iKHpXQM1P3LzGjt7Ff++Tp7nH4N8J/BUA7R9IHfDyx4DJIflifwnbmIA==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-linux-arm64-musl@4.60.3": {
+      "integrity": "sha512-4YTNHKqGng5+yiZt3mg77nmyuCfmNfX4fPmyUapBcIk+BdwSwmCWGXOUxhXbBEkFHtoN5boLj/5NON+u5QC9tg==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-linux-loong64-gnu@4.60.3": {
+      "integrity": "sha512-SU3kNlhkpI4UqlUc2VXPGK9o886ZsSeGfMAX2ba2b8DKmMXq4AL7KUrkSWVbb7koVqx41Yczx6dx5PNargIrEA==",
+      "os": ["linux"],
+      "cpu": ["loong64"]
+    },
+    "@rollup/rollup-linux-loong64-musl@4.60.3": {
+      "integrity": "sha512-6lDLl5h4TXpB1mTf2rQWnAk/LcXrx9vBfu/DT5TIPhvMhRWaZ5MxkIc8u4lJAmBo6klTe1ywXIUHFjylW505sg==",
+      "os": ["linux"],
+      "cpu": ["loong64"]
+    },
+    "@rollup/rollup-linux-ppc64-gnu@4.60.3": {
+      "integrity": "sha512-BMo8bOw8evlup/8G+cj5xWtPyp93xPdyoSN16Zy90Q2QZ0ZYRhCt6ZJSwbrRzG9HApFabjwj2p25TUPDWrhzqQ==",
+      "os": ["linux"],
+      "cpu": ["ppc64"]
+    },
+    "@rollup/rollup-linux-ppc64-musl@4.60.3": {
+      "integrity": "sha512-E0L8X1dZN1/Rph+5VPF6Xj2G7JJvMACVXtamTJIDrVI44Y3K+G8gQaMEAavbqCGTa16InptiVrX6eM6pmJ+7qA==",
+      "os": ["linux"],
+      "cpu": ["ppc64"]
+    },
+    "@rollup/rollup-linux-riscv64-gnu@4.60.3": {
+      "integrity": "sha512-oZJ/WHaVfHUiRAtmTAeo3DcevNsVvH8mbvodjZy7D5QKvCefO371SiKRpxoDcCxB3PTRTLayWBkvmDQKTcX/sw==",
+      "os": ["linux"],
+      "cpu": ["riscv64"]
+    },
+    "@rollup/rollup-linux-riscv64-musl@4.60.3": {
+      "integrity": "sha512-Dhbyh7j9FybM3YaTgaHmVALwA8AkUwTPccyCQ79TG9AJUsMQqgN1DDEZNr4+QUfwiWvLDumW5vdwzoeUF+TNxQ==",
+      "os": ["linux"],
+      "cpu": ["riscv64"]
+    },
+    "@rollup/rollup-linux-s390x-gnu@4.60.3": {
+      "integrity": "sha512-cJd1X5XhHHlltkaypz1UcWLA8AcoIi1aWhsvaWDskD1oz2eKCypnqvTQ8ykMNI0RSmm7NkTdSqSSD7zM0xa6Ig==",
+      "os": ["linux"],
+      "cpu": ["s390x"]
+    },
+    "@rollup/rollup-linux-x64-gnu@4.60.3": {
+      "integrity": "sha512-DAZDBHQfG2oQuhY7mc6I3/qB4LU2fQCjRvxbDwd/Jdvb9fypP4IJ4qmtu6lNjes6B531AI8cg1aKC2di97bUxA==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-linux-x64-musl@4.60.3": {
+      "integrity": "sha512-cRxsE8c13mZOh3vP+wLDxpQBRrOHDIGOWyDL93Sy0Ga8y515fBcC2pjUfFwUe5T7tqvTvWbCpg1URM/AXdWIXA==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-openbsd-x64@4.60.3": {
+      "integrity": "sha512-QaWcIgRxqEdQdhJqW4DJctsH6HCmo5vHxY0krHSX4jMtOqfzC+dqDGuHM87bu4H8JBeibWx7jFz+h6/4C8wA5Q==",
+      "os": ["openbsd"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-openharmony-arm64@4.60.3": {
+      "integrity": "sha512-AaXwSvUi3QIPtroAUw1t5yHGIyqKEXwH54WUocFolZhpGDruJcs8c+xPNDRn4XiQsS7MEwnYsHW2l0MBLDMkWg==",
+      "os": ["openharmony"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-win32-arm64-msvc@4.60.3": {
+      "integrity": "sha512-65LAKM/bAWDqKNEelHlcHvm2V+Vfb8C6INFxQXRHCvaVN1rJfwr4NvdP4FyzUaLqWfaCGaadf6UbTm8xJeYfEg==",
+      "os": ["win32"],
+      "cpu": ["arm64"]
+    },
+    "@rollup/rollup-win32-ia32-msvc@4.60.3": {
+      "integrity": "sha512-EEM2gyhBF5MFnI6vMKdX1LAosE627RGBzIoGMdLloPZkXrUN0Ckqgr2Qi8+J3zip/8NVVro3/FjB+tjhZUgUHA==",
+      "os": ["win32"],
+      "cpu": ["ia32"]
+    },
+    "@rollup/rollup-win32-x64-gnu@4.60.3": {
+      "integrity": "sha512-E5Eb5H/DpxaoXH++Qkv28RcUJboMopmdDUALBczvHMf7hNIxaDZqwY5lK12UK1BHacSmvupoEWGu+n993Z0y1A==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "@rollup/rollup-win32-x64-msvc@4.60.3": {
+      "integrity": "sha512-hPt/bgL5cE+Qp+/TPHBqptcAgPzgj46mPcg/16zNUmbQk0j+mOEQV/+Lqu8QRtDV3Ek95Q6FeFITpuhl6OTsAA==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/node@4.3.0": {
+      "integrity": "sha512-aFb4gUhFOgdh9AXo4IzBEOzBkkAxm9VigwDJnMIYv3lcfXCJVesNfbEaBl4BNgVRyid92AmdviqwBUBRKSeY3g==",
+      "dependencies": [
+        "@jridgewell/remapping",
+        "enhanced-resolve",
+        "jiti",
+        "lightningcss",
+        "magic-string",
+        "source-map-js",
+        "tailwindcss"
+      ]
+    },
+    "@tailwindcss/oxide-android-arm64@4.3.0": {
+      "integrity": "sha512-TJPiq67tKlLuObP6RkwvVGDoxCMBVtDgKkLfa/uyj7/FyxvQwHS+UOnVrXXgbEsfUaMgiVvC4KbJnRr26ho4Ng==",
+      "os": ["android"],
+      "cpu": ["arm64"]
+    },
+    "@tailwindcss/oxide-darwin-arm64@4.3.0": {
+      "integrity": "sha512-oMN/WZRb+SO37BmUElEgeEWuU8E/HXRkiODxJxLe1UTHVXLrdVSgfaJV7pSlhRGMSOiXLuxTIjfsF3wYvz8cgQ==",
+      "os": ["darwin"],
+      "cpu": ["arm64"]
+    },
+    "@tailwindcss/oxide-darwin-x64@4.3.0": {
+      "integrity": "sha512-N6CUmu4a6bKVADfw77p+iw6Yd9Q3OBhe0veaDX+QazfuVYlQsHfDgxBrsjQ/IW+zywL8mTrNd0SdJT/zgtvMdA==",
+      "os": ["darwin"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/oxide-freebsd-x64@4.3.0": {
+      "integrity": "sha512-zDL5hBkQdH5C6MpqbK3gQAgP80tsMwSI26vjOzjJtNCMUo0lFgOItzHKBIupOZNQxt3ouPH7RPhvNhiTfCe5CQ==",
+      "os": ["freebsd"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/oxide-linux-arm-gnueabihf@4.3.0": {
+      "integrity": "sha512-R06HdNi7A7OEoMsf6d4tjZ71RCWnZQPHj2mnotSFURjNLdBC+cIgXQ7l81CqeoiQftjf6OOblxXMInMgN2VzMA==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "@tailwindcss/oxide-linux-arm64-gnu@4.3.0": {
+      "integrity": "sha512-qTJHELX8jetjhRQHCLilkVLmybpzNQAtaI/gaoVoidn/ufbNDbAo8KlK2J+yPoc8wQxvDxCmh/5lr8nC1+lTbg==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@tailwindcss/oxide-linux-arm64-musl@4.3.0": {
+      "integrity": "sha512-Z6sukiQsngnWO+l39X4pPbiWT81IC+PLKF+PHxIlyZbGNb9MODfYlXEVlFvej5BOZInWX01kVyzeLvHsXhfczQ==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@tailwindcss/oxide-linux-x64-gnu@4.3.0": {
+      "integrity": "sha512-DRNdQRpSGzRGfARVuVkxvM8Q12nh19l4BF/G7zGA1oe+9wcC6saFBHTISrpIcKzhiXtSrlSrluCfvMuledoCTQ==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/oxide-linux-x64-musl@4.3.0": {
+      "integrity": "sha512-Z0IADbDo8bh6I7h2IQMx601AdXBLfFpEdUotft86evd/8ZPflZe9COPO8Q1vw+pfLWIUo9zN/JGZvwuAJqduqg==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/oxide-wasm32-wasi@4.3.0": {
+      "integrity": "sha512-HNZGOUxEmElksYR7S6sC5jTeNGpobAsy9u7Gu0AskJ8/20FR9GqebUyB+HBcU/ax6BHuiuJi+Oda4B+YX6H1yA==",
+      "cpu": ["wasm32"]
+    },
+    "@tailwindcss/oxide-win32-arm64-msvc@4.3.0": {
+      "integrity": "sha512-Pe+RPVTi1T+qymuuRpcdvwSVZjnll/f7n8gBxMMh3xLTctMDKqpdfGimbMyioqtLhUYZxdJ9wGNhV7MKHvgZsQ==",
+      "os": ["win32"],
+      "cpu": ["arm64"]
+    },
+    "@tailwindcss/oxide-win32-x64-msvc@4.3.0": {
+      "integrity": "sha512-Mvrf2kXW/yeW/OTezZlCGOirXRcUuLIBx/5Y12BaPM7wJoryG6dfS/NJL8aBPqtTEx/Vm4T4vKzFUcKDT+TKUA==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "@tailwindcss/oxide@4.3.0": {
+      "integrity": "sha512-F7HZGBeN9I0/AuuJS5PwcD8xayx5ri5GhjYUDBEVYUkexyA/giwbDNjRVrxSezE3T250OU2K/wp/ltWx3UOefg==",
+      "optionalDependencies": [
+        "@tailwindcss/oxide-android-arm64",
+        "@tailwindcss/oxide-darwin-arm64",
+        "@tailwindcss/oxide-darwin-x64",
+        "@tailwindcss/oxide-freebsd-x64",
+        "@tailwindcss/oxide-linux-arm-gnueabihf",
+        "@tailwindcss/oxide-linux-arm64-gnu",
+        "@tailwindcss/oxide-linux-arm64-musl",
+        "@tailwindcss/oxide-linux-x64-gnu",
+        "@tailwindcss/oxide-linux-x64-musl",
+        "@tailwindcss/oxide-wasm32-wasi",
+        "@tailwindcss/oxide-win32-arm64-msvc",
+        "@tailwindcss/oxide-win32-x64-msvc"
+      ]
+    },
+    "@tailwindcss/vite@4.3.0_vite@6.4.2__picomatch@4.0.4": {
+      "integrity": "sha512-t6J3OrB5Fc0ExuhohouH0fWUGMYL6PTLhW+E7zIk/pdbnJARZDCwjBznFnkh5ynRnIRSI4YjtTH0t6USjJISrw==",
+      "dependencies": [
+        "@tailwindcss/node",
+        "@tailwindcss/oxide",
+        "tailwindcss",
+        "vite"
+      ]
+    },
+    "@tauri-apps/api@2.11.0": {
+      "integrity": "sha512-7CinYODhky9lmO23xHnUFv0Xt43fbtWMyxZcLcRBlFkcgXKuEirBvHpmtJ89YMhyeGcq20Wuc47Fa4XjyniywA=="
+    },
+    "@tauri-apps/cli-darwin-arm64@2.11.1": {
+      "integrity": "sha512-6eEKMBXsQPCuM1EmvrjT2+aBuxWQuFdKdW8pzNuNQtpq45nEEpBlD5gr8pUeAyOU1DQKlkFaEc/MPBxb/Pfjtg==",
+      "os": ["darwin"],
+      "cpu": ["arm64"]
+    },
+    "@tauri-apps/cli-darwin-x64@2.11.1": {
+      "integrity": "sha512-LQUO7exfRWjWALNhetph5guWpMeHphRpokOLk0OIbTTExaNwJNFu3I4vb+CCM/4G/QGoZe/5XikZOJdNEFP1ig==",
+      "os": ["darwin"],
+      "cpu": ["x64"]
+    },
+    "@tauri-apps/cli-linux-arm-gnueabihf@2.11.1": {
+      "integrity": "sha512-5i/awiBCRRhOUG8yjn0fMHXIWD5Ez8eEk5LtvOxyQrKuJkRaZDvnbIjZbE183blAwkoA4xN3aO/prJiqscl02Q==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "@tauri-apps/cli-linux-arm64-gnu@2.11.1": {
+      "integrity": "sha512-9LrwDw3S9Fygtw/Q6WDhOP+3svJRGAsejeE+GKrc0eO1ThMVhwi2LL6hw4dlKw93IfS7VY1G19sWGxJ/NcU4nA==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@tauri-apps/cli-linux-arm64-musl@2.11.1": {
+      "integrity": "sha512-mNA5dbbqPqDUdTIwdUYYuhO2GvIe9UnB2r0VU2njxBOS3Opbx4gKNC5yP0Iu4rYmEmqdlwry9VzGZQ3wq9dyFg==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "@tauri-apps/cli-linux-riscv64-gnu@2.11.1": {
+      "integrity": "sha512-fZj3Gwq+6fUs305T5WQiD5iSGJw+j/4w/HGmk4sHDAcy+rp9zU5eaxB7nOyz5/I/nkNAuKPqfp6uIbiUBXkBCw==",
+      "os": ["linux"],
+      "cpu": ["riscv64"]
+    },
+    "@tauri-apps/cli-linux-x64-gnu@2.11.1": {
+      "integrity": "sha512-XFxGxOvHM7jjeD6ozCKdGfhzJ7lERYDGZl1/Kb4fsvchaJsfLJ981TlyTG8Qy/gFq+f5GitH3bfrX9JAkjPEyw==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@tauri-apps/cli-linux-x64-musl@2.11.1": {
+      "integrity": "sha512-d5C2/Zm+68v7R9wTuTCjRQEVrWjcdMkJBZ1+rXse+QdMMlTB9+u9PDNDLw9PQflWxYLaYZ7tjxxL9Nb9II6PbA==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "@tauri-apps/cli-win32-arm64-msvc@2.11.1": {
+      "integrity": "sha512-YdeVWFAR1pTXzUU6NLstPq4G6OLxuDrXCXEBdmBH+5EZIDXUx0D2kJlz3+YjpazkKvAzYpgziTsyRagls0OfRQ==",
+      "os": ["win32"],
+      "cpu": ["arm64"]
+    },
+    "@tauri-apps/cli-win32-ia32-msvc@2.11.1": {
+      "integrity": "sha512-VBGkuH0eB9K9LLSMv361Gzr5Ou72sCS4+ztpmkWEQ+wd/amhcYOsf3X6qn1RJZDzIhiOYHJEOysZUC3baD01rA==",
+      "os": ["win32"],
+      "cpu": ["ia32"]
+    },
+    "@tauri-apps/cli-win32-x64-msvc@2.11.1": {
+      "integrity": "sha512-b3ORhIAKgp9ZYY+zBt7b7r0kLU2kjvyGF0+MS2SBym3emsweGPybEqocJcmtMuxyBhkOKHP4CiuEJEDuAlTx6A==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "@tauri-apps/cli@2.11.1": {
+      "integrity": "sha512-rpEbaJ/HzNb6fwsquwoAbq29/Vt4gADhS423A8fdkwL4edJ0wZmoB8ar7O6JPDL834MUKOCm/rrJ7c9oAaEaYQ==",
+      "optionalDependencies": [
+        "@tauri-apps/cli-darwin-arm64",
+        "@tauri-apps/cli-darwin-x64",
+        "@tauri-apps/cli-linux-arm-gnueabihf",
+        "@tauri-apps/cli-linux-arm64-gnu",
+        "@tauri-apps/cli-linux-arm64-musl",
+        "@tauri-apps/cli-linux-riscv64-gnu",
+        "@tauri-apps/cli-linux-x64-gnu",
+        "@tauri-apps/cli-linux-x64-musl",
+        "@tauri-apps/cli-win32-arm64-msvc",
+        "@tauri-apps/cli-win32-ia32-msvc",
+        "@tauri-apps/cli-win32-x64-msvc"
+      ],
+      "bin": true
+    },
+    "@tauri-apps/plugin-clipboard-manager@2.3.2": {
+      "integrity": "sha512-CUlb5Hqi2oZbcZf4VUyUH53XWPPdtpw43EUpCza5HWZJwxEoDowFzNUDt1tRUXA8Uq+XPn17Ysfptip33sG4eQ==",
+      "dependencies": [
+        "@tauri-apps/api"
+      ]
+    },
+    "@tauri-apps/plugin-fs@2.5.1": {
+      "integrity": "sha512-9Lz+Jopp6QyeEWhlpkMx4R/+P9HgR+AVAI4vOZhlT8Xaymtz8iVI/Ov984/XTqgJz/5gz5NretqPB/XEMS3NhQ==",
+      "dependencies": [
+        "@tauri-apps/api"
+      ]
+    },
+    "@tauri-apps/plugin-opener@2.5.3": {
+      "integrity": "sha512-CCcUltXMOfUEArbf3db3kCE7Ggy1ExBEBl51Ko2ODJ6GDYHRp1nSNlQm5uNCFY5k7/ufaK5Ib3Du/Zir19IYQQ==",
+      "dependencies": [
+        "@tauri-apps/api"
+      ]
+    },
+    "@tauri-apps/plugin-store@2.4.3": {
+      "integrity": "sha512-9LWPj9yMphRi9czEtUv87XHbl1b6xgd9EXpPrUnq6nG7+nbtoF84d4Kwz9xhAv/Hf30sr58pq7EOlyI936y8qw==",
+      "dependencies": [
+        "@tauri-apps/api"
+      ]
+    },
+    "@tauri-apps/plugin-stronghold@2.3.1": {
+      "integrity": "sha512-zFbD1Apk/VFdWaoGaoKcouRrZnzLFiNY9b1KDeBaN47sMaMHRYIa+ZDhvbzMOyH314+OHCQBXfe8I/ph59Lp9g==",
+      "dependencies": [
+        "@tauri-apps/api"
+      ]
+    },
+    "@types/babel__core@7.20.5": {
+      "integrity": "sha512-qoQprZvz5wQFJwMDqeseRXWv3rqMvhgpbXFfVyWhbx9X47POIA6i/+dXefEmZKoAgOaTdaIgNSMqMIU61yRyzA==",
+      "dependencies": [
+        "@babel/parser",
+        "@babel/types",
+        "@types/babel__generator",
+        "@types/babel__template",
+        "@types/babel__traverse"
+      ]
+    },
+    "@types/babel__generator@7.27.0": {
+      "integrity": "sha512-ufFd2Xi92OAVPYsy+P4n7/U7e68fex0+Ee8gSG9KX7eo084CWiQ4sdxktvdl0bOPupXtVJPY19zk6EwWqUQ8lg==",
+      "dependencies": [
+        "@babel/types"
+      ]
+    },
+    "@types/babel__template@7.4.4": {
+      "integrity": "sha512-h/NUaSyG5EyxBIp8YRxo4RMe2/qQgvyowRwVMzhYhBCONbW8PUsg4lkFMrhgZhUe5z3L3MiLDuvyJ/CaPa2A8A==",
+      "dependencies": [
+        "@babel/parser",
+        "@babel/types"
+      ]
+    },
+    "@types/babel__traverse@7.28.0": {
+      "integrity": "sha512-8PvcXf70gTDZBgt9ptxJ8elBeBjcLOAcOtoO/mPJjtji1+CdGbHgm77om1GrsPxsiE+uXIpNSK64UYaIwQXd4Q==",
+      "dependencies": [
+        "@babel/types"
+      ]
+    },
+    "@types/estree@1.0.8": {
+      "integrity": "sha512-dWHzHa2WqEXI/O1E9OjrocMTKJl2mSrEolh1Iomrv6U+JuNwaHXsXx9bLu5gG7BUWFIN0skIQJQ/L1rIex4X6w=="
+    },
+    "@types/react-dom@19.2.3_@types+react@19.2.14": {
+      "integrity": "sha512-jp2L/eY6fn+KgVVQAOqYItbF0VY/YApe5Mz2F0aykSO8gx31bYCZyvSeYxCHKvzHG5eZjc+zyaS5BrBWya2+kQ==",
+      "dependencies": [
+        "@types/react"
+      ]
+    },
+    "@types/react@19.2.14": {
+      "integrity": "sha512-ilcTH/UniCkMdtexkoCN0bI7pMcJDvmQFPvuPvmEaYA/NSfFTAgdUSLAoVjaRJm7+6PvcM+q1zYOwS4wTYMF9w==",
+      "dependencies": [
+        "csstype"
+      ]
+    },
+    "@vitejs/plugin-react@4.7.0_vite@6.4.2__picomatch@4.0.4_@babel+core@7.29.0": {
+      "integrity": "sha512-gUu9hwfWvvEDBBmgtAowQCojwZmJ5mcLn3aufeCsitijs3+f2NsrPtlAWIR6OPiqljl96GVCUbLe0HyqIpVaoA==",
+      "dependencies": [
+        "@babel/core",
+        "@babel/plugin-transform-react-jsx-self",
+        "@babel/plugin-transform-react-jsx-source",
+        "@rolldown/pluginutils",
+        "@types/babel__core",
+        "react-refresh",
+        "vite"
+      ]
+    },
+    "autoprefixer@10.5.0_postcss@8.5.14": {
+      "integrity": "sha512-FMhOoZV4+qR6aTUALKX2rEqGG+oyATvwBt9IIzVR5rMa2HRWPkxf+P+PAJLD1I/H5/II+HuZcBJYEFBpq39ong==",
+      "dependencies": [
+        "browserslist",
+        "caniuse-lite",
+        "fraction.js",
+        "picocolors",
+        "postcss",
+        "postcss-value-parser"
+      ],
+      "bin": true
+    },
+    "baseline-browser-mapping@2.10.29": {
+      "integrity": "sha512-Asa2krT+XTPZINCS+2QcyS8WTkObE77RwkydwF7h6DmnKqbvlalz93m/dnphUyCa6SWSP51VgtEUf2FN+gelFQ==",
+      "bin": true
+    },
+    "browserslist@4.28.2": {
+      "integrity": "sha512-48xSriZYYg+8qXna9kwqjIVzuQxi+KYWp2+5nCYnYKPTr0LvD89Jqk2Or5ogxz0NUMfIjhh2lIUX/LyX9B4oIg==",
+      "dependencies": [
+        "baseline-browser-mapping",
+        "caniuse-lite",
+        "electron-to-chromium",
+        "node-releases",
+        "update-browserslist-db"
+      ],
+      "bin": true
+    },
+    "caniuse-lite@1.0.30001792": {
+      "integrity": "sha512-hVLMUZFgR4JJ6ACt1uEESvQN1/dBVqPAKY0hgrV70eN3391K6juAfTjKZLKvOMsx8PxA7gsY1/tLMMTcfFLLpw=="
+    },
+    "convert-source-map@2.0.0": {
+      "integrity": "sha512-Kvp459HrV2FEJ1CAsi1Ku+MY3kasH19TFykTz2xWmMeq6bk2NU3XXvfJ+Q61m0xktWwt+1HSYf3JZsTms3aRJg=="
+    },
+    "csstype@3.2.3": {
+      "integrity": "sha512-z1HGKcYy2xA8AGQfwrn0PAy+PB7X/GSj3UVJW9qKyn43xWa+gl5nXmU4qqLMRzWVLFC8KusUX8T/0kCiOYpAIQ=="
+    },
+    "debug@4.4.3": {
+      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
+      "dependencies": [
+        "ms"
+      ]
+    },
+    "detect-libc@2.1.2": {
+      "integrity": "sha512-Btj2BOOO83o3WyH59e8MgXsxEQVcarkUOpEYrubB0urwnN10yQ364rsiByU11nZlqWYZm05i/of7io4mzihBtQ=="
+    },
+    "electron-to-chromium@1.5.353": {
+      "integrity": "sha512-kOrWphBi8TOZyiJZqsgqIle0lw+tzmnQK83pV9dZUd01Nm2POECSyFQMAuarzZdYqQW7FH9RaYOuaRo3h+bQ3w=="
+    },
+    "enhanced-resolve@5.21.2": {
+      "integrity": "sha512-xe9vQb5kReirPUxgQrXA3ihgbCqssmTiM7cOZ+Gzu+VeGWgpV98lLZvp0dl4yriyAePcewxGUs9UpKD8PET9KQ==",
+      "dependencies": [
+        "graceful-fs",
+        "tapable"
+      ]
+    },
+    "esbuild@0.25.12": {
+      "integrity": "sha512-bbPBYYrtZbkt6Os6FiTLCTFxvq4tt3JKall1vRwshA3fdVztsLAatFaZobhkBC8/BrPetoa0oksYoKXoG4ryJg==",
+      "optionalDependencies": [
+        "@esbuild/aix-ppc64",
+        "@esbuild/android-arm",
+        "@esbuild/android-arm64",
+        "@esbuild/android-x64",
+        "@esbuild/darwin-arm64",
+        "@esbuild/darwin-x64",
+        "@esbuild/freebsd-arm64",
+        "@esbuild/freebsd-x64",
+        "@esbuild/linux-arm",
+        "@esbuild/linux-arm64",
+        "@esbuild/linux-ia32",
+        "@esbuild/linux-loong64",
+        "@esbuild/linux-mips64el",
+        "@esbuild/linux-ppc64",
+        "@esbuild/linux-riscv64",
+        "@esbuild/linux-s390x",
+        "@esbuild/linux-x64",
+        "@esbuild/netbsd-arm64",
+        "@esbuild/netbsd-x64",
+        "@esbuild/openbsd-arm64",
+        "@esbuild/openbsd-x64",
+        "@esbuild/openharmony-arm64",
+        "@esbuild/sunos-x64",
+        "@esbuild/win32-arm64",
+        "@esbuild/win32-ia32",
+        "@esbuild/win32-x64"
+      ],
+      "scripts": true,
+      "bin": true
+    },
+    "escalade@3.2.0": {
+      "integrity": "sha512-WUj2qlxaQtO4g6Pq5c29GTcWGDyd8itL8zTlipgECz3JesAiiOKotd8JU6otB3PACgG6xkJUyVhboMS+bje/jA=="
+    },
+    "fdir@6.5.0_picomatch@4.0.4": {
+      "integrity": "sha512-tIbYtZbucOs0BRGqPJkshJUYdL+SDH7dVM8gjy+ERp3WAUjLEFJE+02kanyHtwjWOnwrKYBiwAmM0p4kLJAnXg==",
+      "dependencies": [
+        "picomatch"
+      ],
+      "optionalPeers": [
+        "picomatch"
+      ]
+    },
+    "fraction.js@5.3.4": {
+      "integrity": "sha512-1X1NTtiJphryn/uLQz3whtY6jK3fTqoE3ohKs0tT+Ujr1W59oopxmoEh7Lu5p6vBaPbgoM0bzveAW4Qi5RyWDQ=="
+    },
+    "framer-motion@12.38.0_react@19.2.6_react-dom@19.2.6__react@19.2.6": {
+      "integrity": "sha512-rFYkY/pigbcswl1XQSb7q424kSTQ8q6eAC+YUsSKooHQYuLdzdHjrt6uxUC+PRAO++q5IS7+TamgIw1AphxR+g==",
+      "dependencies": [
+        "motion-dom",
+        "motion-utils",
+        "react",
+        "react-dom",
+        "tslib"
+      ],
+      "optionalPeers": [
+        "react",
+        "react-dom"
+      ]
+    },
+    "fsevents@2.3.3": {
+      "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==",
+      "os": ["darwin"],
+      "scripts": true
+    },
+    "gensync@1.0.0-beta.2": {
+      "integrity": "sha512-3hN7NaskYvMDLQY55gnW3NQ+mesEAepTqlg+VEbj7zzqEMBVNhzcGYYeqFo/TlYz6eQiFcp1HcsCZO+nGgS8zg=="
+    },
+    "graceful-fs@4.2.11": {
+      "integrity": "sha512-RbJ5/jmFcNNCcDV5o9eTnBLJ/HszWV0P73bc+Ff4nS/rJj+YaS6IGyiOL0VoBYX+l1Wrl3k63h/KrH+nhJ0XvQ=="
+    },
+    "jiti@2.7.0": {
+      "integrity": "sha512-AC/7JofJvZGrrneWNaEnJeOLUx+JlGt7tNa0wZiRPT4MY1wmfKjt2+6O2p2uz2+skll8OZZmJMNqeke7kKbNgQ==",
+      "bin": true
+    },
+    "js-tokens@4.0.0": {
+      "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ=="
+    },
+    "jsesc@3.1.0": {
+      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
+      "bin": true
+    },
+    "json5@2.2.3": {
+      "integrity": "sha512-XmOWe7eyHYH14cLdVPoyg+GOH3rYX++KpzrylJwSW98t3Nk+U8XOl8FWKOgwtzdb8lXGf6zYwDUzeHMWfxasyg==",
+      "bin": true
+    },
+    "lightningcss-android-arm64@1.32.0": {
+      "integrity": "sha512-YK7/ClTt4kAK0vo6w3X+Pnm0D2cf2vPHbhOXdoNti1Ga0al1P4TBZhwjATvjNwLEBCnKvjJc2jQgHXH0NEwlAg==",
+      "os": ["android"],
+      "cpu": ["arm64"]
+    },
+    "lightningcss-darwin-arm64@1.32.0": {
+      "integrity": "sha512-RzeG9Ju5bag2Bv1/lwlVJvBE3q6TtXskdZLLCyfg5pt+HLz9BqlICO7LZM7VHNTTn/5PRhHFBSjk5lc4cmscPQ==",
+      "os": ["darwin"],
+      "cpu": ["arm64"]
+    },
+    "lightningcss-darwin-x64@1.32.0": {
+      "integrity": "sha512-U+QsBp2m/s2wqpUYT/6wnlagdZbtZdndSmut/NJqlCcMLTWp5muCrID+K5UJ6jqD2BFshejCYXniPDbNh73V8w==",
+      "os": ["darwin"],
+      "cpu": ["x64"]
+    },
+    "lightningcss-freebsd-x64@1.32.0": {
+      "integrity": "sha512-JCTigedEksZk3tHTTthnMdVfGf61Fky8Ji2E4YjUTEQX14xiy/lTzXnu1vwiZe3bYe0q+SpsSH/CTeDXK6WHig==",
+      "os": ["freebsd"],
+      "cpu": ["x64"]
+    },
+    "lightningcss-linux-arm-gnueabihf@1.32.0": {
+      "integrity": "sha512-x6rnnpRa2GL0zQOkt6rts3YDPzduLpWvwAF6EMhXFVZXD4tPrBkEFqzGowzCsIWsPjqSK+tyNEODUBXeeVHSkw==",
+      "os": ["linux"],
+      "cpu": ["arm"]
+    },
+    "lightningcss-linux-arm64-gnu@1.32.0": {
+      "integrity": "sha512-0nnMyoyOLRJXfbMOilaSRcLH3Jw5z9HDNGfT/gwCPgaDjnx0i8w7vBzFLFR1f6CMLKF8gVbebmkUN3fa/kQJpQ==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "lightningcss-linux-arm64-musl@1.32.0": {
+      "integrity": "sha512-UpQkoenr4UJEzgVIYpI80lDFvRmPVg6oqboNHfoH4CQIfNA+HOrZ7Mo7KZP02dC6LjghPQJeBsvXhJod/wnIBg==",
+      "os": ["linux"],
+      "cpu": ["arm64"]
+    },
+    "lightningcss-linux-x64-gnu@1.32.0": {
+      "integrity": "sha512-V7Qr52IhZmdKPVr+Vtw8o+WLsQJYCTd8loIfpDaMRWGUZfBOYEJeyJIkqGIDMZPwPx24pUMfwSxxI8phr/MbOA==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "lightningcss-linux-x64-musl@1.32.0": {
+      "integrity": "sha512-bYcLp+Vb0awsiXg/80uCRezCYHNg1/l3mt0gzHnWV9XP1W5sKa5/TCdGWaR/zBM2PeF/HbsQv/j2URNOiVuxWg==",
+      "os": ["linux"],
+      "cpu": ["x64"]
+    },
+    "lightningcss-win32-arm64-msvc@1.32.0": {
+      "integrity": "sha512-8SbC8BR40pS6baCM8sbtYDSwEVQd4JlFTOlaD3gWGHfThTcABnNDBda6eTZeqbofalIJhFx0qKzgHJmcPTnGdw==",
+      "os": ["win32"],
+      "cpu": ["arm64"]
+    },
+    "lightningcss-win32-x64-msvc@1.32.0": {
+      "integrity": "sha512-Amq9B/SoZYdDi1kFrojnoqPLxYhQ4Wo5XiL8EVJrVsB8ARoC1PWW6VGtT0WKCemjy8aC+louJnjS7U18x3b06Q==",
+      "os": ["win32"],
+      "cpu": ["x64"]
+    },
+    "lightningcss@1.32.0": {
+      "integrity": "sha512-NXYBzinNrblfraPGyrbPoD19C1h9lfI/1mzgWYvXUTe414Gz/X1FD2XBZSZM7rRTrMA8JL3OtAaGifrIKhQ5yQ==",
+      "dependencies": [
+        "detect-libc"
+      ],
+      "optionalDependencies": [
+        "lightningcss-android-arm64",
+        "lightningcss-darwin-arm64",
+        "lightningcss-darwin-x64",
+        "lightningcss-freebsd-x64",
+        "lightningcss-linux-arm-gnueabihf",
+        "lightningcss-linux-arm64-gnu",
+        "lightningcss-linux-arm64-musl",
+        "lightningcss-linux-x64-gnu",
+        "lightningcss-linux-x64-musl",
+        "lightningcss-win32-arm64-msvc",
+        "lightningcss-win32-x64-msvc"
+      ]
+    },
+    "lru-cache@5.1.1": {
+      "integrity": "sha512-KpNARQA3Iwv+jTA0utUVVbrh+Jlrr1Fv0e56GGzAFOXN7dk/FviaDW8LHmK52DlcH4WP2n6gI8vN1aesBFgo9w==",
+      "dependencies": [
+        "yallist"
+      ]
+    },
+    "lucide-react@0.468.0_react@19.2.6": {
+      "integrity": "sha512-6koYRhnM2N0GGZIdXzSeiNwguv1gt/FAjZOiPl76roBi3xKEXa4WmfpxgQwTTL4KipXjefrnf3oV4IsYhi4JFA==",
+      "dependencies": [
+        "react"
+      ]
+    },
+    "magic-string@0.30.21": {
+      "integrity": "sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ==",
+      "dependencies": [
+        "@jridgewell/sourcemap-codec"
+      ]
+    },
+    "motion-dom@12.38.0": {
+      "integrity": "sha512-pdkHLD8QYRp8VfiNLb8xIBJis1byQ9gPT3Jnh2jqfFtAsWUA3dEepDlsWe/xMpO8McV+VdpKVcp+E+TGJEtOoA==",
+      "dependencies": [
+        "motion-utils"
+      ]
+    },
+    "motion-utils@12.36.0": {
+      "integrity": "sha512-eHWisygbiwVvf6PZ1vhaHCLamvkSbPIeAYxWUuL3a2PD/TROgE7FvfHWTIH4vMl798QLfMw15nRqIaRDXTlYRg=="
+    },
+    "motion@12.38.0_react@19.2.6_react-dom@19.2.6__react@19.2.6": {
+      "integrity": "sha512-uYfXzeHlgThchzwz5Te47dlv5JOUC7OB4rjJ/7XTUgtBZD8CchMN8qEJ4ZVsUmTyYA44zjV0fBwsiktRuFnn+w==",
+      "dependencies": [
+        "framer-motion",
+        "react",
+        "react-dom",
+        "tslib"
+      ],
+      "optionalPeers": [
+        "react",
+        "react-dom"
+      ]
+    },
+    "ms@2.1.3": {
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA=="
+    },
+    "nanoid@3.3.12": {
+      "integrity": "sha512-ZB9RH/39qpq5Vu6Y+NmUaFhQR6pp+M2Xt76XBnEwDaGcVAqhlvxrl3B2bKS5D3NH3QR76v3aSrKaF/Kiy7lEtQ==",
+      "bin": true
+    },
+    "node-releases@2.0.38": {
+      "integrity": "sha512-3qT/88Y3FbH/Kx4szpQQ4HzUbVrHPKTLVpVocKiLfoYvw9XSGOX2FmD2d6DrXbVYyAQTF2HeF6My8jmzx7/CRw=="
+    },
+    "picocolors@1.1.1": {
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA=="
+    },
+    "picomatch@4.0.4": {
+      "integrity": "sha512-QP88BAKvMam/3NxH6vj2o21R6MjxZUAd6nlwAS/pnGvN9IVLocLHxGYIzFhg6fUQ+5th6P4dv4eW9jX3DSIj7A=="
+    },
+    "postcss-value-parser@4.2.0": {
+      "integrity": "sha512-1NNCs6uurfkVbeXG4S8JFT9t19m45ICnif8zWLd5oPSZ50QnwMfK+H3jv408d4jw/7Bttv5axS5IiHoLaVNHeQ=="
+    },
+    "postcss@8.5.14": {
+      "integrity": "sha512-SoSL4+OSEtR99LHFZQiJLkT59C5B1amGO1NzTwj7TT1qCUgUO6hxOvzkOYxD+vMrXBM3XJIKzokoERdqQq/Zmg==",
+      "dependencies": [
+        "nanoid",
+        "picocolors",
+        "source-map-js"
+      ]
+    },
+    "react-dom@19.2.6_react@19.2.6": {
+      "integrity": "sha512-0prMI+hvBbPjsWnxDLxlCGyM8PN6UuWjEUCYmZhO67xIV9Xasa/r/vDnq+Xyq4Lo27g8QSbO5YzARu0D1Sps3g==",
+      "dependencies": [
+        "react",
+        "scheduler"
+      ]
+    },
+    "react-refresh@0.17.0": {
+      "integrity": "sha512-z6F7K9bV85EfseRCp2bzrpyQ0Gkw1uLoCel9XBVWPg/TjRj94SkJzUTGfOa4bs7iJvBWtQG0Wq7wnI0syw3EBQ=="
+    },
+    "react@19.2.6": {
+      "integrity": "sha512-sfWGGfavi0xr8Pg0sVsyHMAOziVYKgPLNrS7ig+ivMNb3wbCBw3KxtflsGBAwD3gYQlE/AEZsTLgToRrSCjb0Q=="
+    },
+    "rollup@4.60.3": {
+      "integrity": "sha512-pAQK9HalE84QSm4Po3EmWIZPd3FnjkShVkiMlz1iligWYkWQ7wHYd1PF/T7QZ5TVSD6uSTon5gBVMSM4JfBV+A==",
+      "dependencies": [
+        "@types/estree"
+      ],
+      "optionalDependencies": [
+        "@rollup/rollup-android-arm-eabi",
+        "@rollup/rollup-android-arm64",
+        "@rollup/rollup-darwin-arm64",
+        "@rollup/rollup-darwin-x64",
+        "@rollup/rollup-freebsd-arm64",
+        "@rollup/rollup-freebsd-x64",
+        "@rollup/rollup-linux-arm-gnueabihf",
+        "@rollup/rollup-linux-arm-musleabihf",
+        "@rollup/rollup-linux-arm64-gnu",
+        "@rollup/rollup-linux-arm64-musl",
+        "@rollup/rollup-linux-loong64-gnu",
+        "@rollup/rollup-linux-loong64-musl",
+        "@rollup/rollup-linux-ppc64-gnu",
+        "@rollup/rollup-linux-ppc64-musl",
+        "@rollup/rollup-linux-riscv64-gnu",
+        "@rollup/rollup-linux-riscv64-musl",
+        "@rollup/rollup-linux-s390x-gnu",
+        "@rollup/rollup-linux-x64-gnu",
+        "@rollup/rollup-linux-x64-musl",
+        "@rollup/rollup-openbsd-x64",
+        "@rollup/rollup-openharmony-arm64",
+        "@rollup/rollup-win32-arm64-msvc",
+        "@rollup/rollup-win32-ia32-msvc",
+        "@rollup/rollup-win32-x64-gnu",
+        "@rollup/rollup-win32-x64-msvc",
+        "fsevents"
+      ],
+      "bin": true
+    },
+    "scheduler@0.27.0": {
+      "integrity": "sha512-eNv+WrVbKu1f3vbYJT/xtiF5syA5HPIMtf9IgY/nKg0sWqzAUEvqY/xm7OcZc/qafLx/iO9FgOmeSAp4v5ti/Q=="
+    },
+    "semver@6.3.1": {
+      "integrity": "sha512-BR7VvDCVHO+q2xBEWskxS6DJE1qRnb7DxzUrogb71CWoSficBxYsiAGd+Kl0mmq/MprG9yArRkyrQxTO6XjMzA==",
+      "bin": true
+    },
+    "source-map-js@1.2.1": {
+      "integrity": "sha512-UXWMKhLOwVKb728IUtQPXxfYU+usdybtUrK/8uGE8CQMvrhOpwvzDBwj0QhSL7MQc7vIsISBG8VQ8+IDQxpfQA=="
+    },
+    "tailwindcss@4.3.0": {
+      "integrity": "sha512-y6nxMGB1nMW9R6k96e5gdIFzcfL/gTJRNaqGes1YvkLnPVXzWgbqFF2yLC0T8G774n24cx3Pe8XrKoniCOAH+Q=="
+    },
+    "tapable@2.3.3": {
+      "integrity": "sha512-uxc/zpqFg6x7C8vOE7lh6Lbda8eEL9zmVm/PLeTPBRhh1xCgdWaQ+J1CUieGpIfm2HdtsUpRv+HshiasBMcc6A=="
+    },
+    "tinyglobby@0.2.16_picomatch@4.0.4": {
+      "integrity": "sha512-pn99VhoACYR8nFHhxqix+uvsbXineAasWm5ojXoN8xEwK5Kd3/TrhNn1wByuD52UxWRLy8pu+kRMniEi6Eq9Zg==",
+      "dependencies": [
+        "fdir",
+        "picomatch"
+      ]
+    },
+    "tslib@2.8.1": {
+      "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w=="
+    },
+    "typescript@5.6.3": {
+      "integrity": "sha512-hjcS1mhfuyi4WW8IWtjP7brDrG2cuDZukyrYrSauoXGNgx0S7zceP07adYkJycEr56BOUTNPzbInooiN3fn1qw==",
+      "bin": true
+    },
+    "update-browserslist-db@1.2.3_browserslist@4.28.2": {
+      "integrity": "sha512-Js0m9cx+qOgDxo0eMiFGEueWztz+d4+M3rGlmKPT+T4IS/jP4ylw3Nwpu6cpTTP8R1MAC1kF4VbdLt3ARf209w==",
+      "dependencies": [
+        "browserslist",
+        "escalade",
+        "picocolors"
+      ],
+      "bin": true
+    },
+    "vite@6.4.2_picomatch@4.0.4": {
+      "integrity": "sha512-2N/55r4JDJ4gdrCvGgINMy+HH3iRpNIz8K6SFwVsA+JbQScLiC+clmAxBgwiSPgcG9U15QmvqCGWzMbqda5zGQ==",
+      "dependencies": [
+        "esbuild",
+        "fdir",
+        "picomatch",
+        "postcss",
+        "rollup",
+        "tinyglobby"
+      ],
+      "optionalDependencies": [
+        "fsevents"
+      ],
+      "bin": true
+    },
+    "yallist@3.1.1": {
+      "integrity": "sha512-a4UGQaWPH59mOXUYnAG2ewncQS4i4F43Tv3JoAM+s2VDAmS9NsK8GpDMLrCHPksFT7h3K6TOoUNn2pb7RoXx4g=="
+    }
+  },
+  "workspace": {
+    "dependencies": [
+      "npm:react-dom@19",
+      "npm:react@19"
+    ],
+    "packageJson": {
+      "dependencies": [
+        "npm:@tailwindcss/vite@4",
+        "npm:@tauri-apps/api@2",
+        "npm:@tauri-apps/cli@2",
+        "npm:@tauri-apps/plugin-clipboard-manager@2",
+        "npm:@tauri-apps/plugin-fs@2",
+        "npm:@tauri-apps/plugin-opener@2",
+        "npm:@tauri-apps/plugin-store@2",
+        "npm:@tauri-apps/plugin-stronghold@2",
+        "npm:@types/react-dom@19",
+        "npm:@types/react@19",
+        "npm:@vitejs/plugin-react@^4.3.0",
+        "npm:autoprefixer@^10.4.20",
+        "npm:lucide-react@0.468",
+        "npm:motion@12",
+        "npm:postcss@^8.4.49",
+        "npm:react-dom@19",
+        "npm:react@19",
+        "npm:tailwindcss@4",
+        "npm:typescript@~5.6.2",
+        "npm:vite@6"
+      ]
+    }
+  }
+}

docs/ARCHITECTURE_PIVOT.md

@@ -1,43 +1,43 @@
-# Browser-First Era Archive
-
-This document marks the architectural pivot from **browser-first** (Muse Alpha v0.2) to **board-first** (RefStudio v1.0).
-
-## What was the browser-first approach?
-- Main workspace was a web browser with tabs
-- Sidebar navigation between Home/Browser/Library/Board/Settings views
-- Board was a secondary view accessed from the sidebar
-- Image hover overlay injected into browser tabs for saving references
-- Ad-blocking engine for browsing comfort
-
-## Why the pivot?
-The core use case is **reference organization**, not web browsing. Artists need:
-- An infinite canvas as the PRIMARY workspace (like PureRef)
-- Browser as a TOOL (embedded panel) to find references, not the main UI
-- Zero-friction image capture from browser → canvas
-- Always-on-top mode for overlaying references while working in art apps
-- Click-through transparency for tracing
-
-## What's preserved from browser-first era?
-- Rust adblock engine (`adblock/` module)
-- Tauri child webview architecture for embedded browser
-- Image download + library persistence (`library.rs`, `persistence.rs`)
-- Board item CRUD (`board.rs`)
-- SQLite migrations
-- Credentials/stronghold setup
-
-## New architecture (board-first / RefStudio)
-- Infinite canvas is the main and only workspace
-- Browser panel slides in from the right as a capture tool
-- Library panel slides in from the left for asset management
-- Three.js GPU-accelerated image rendering with shaders
-- Annotations (freehand drawing) directly on canvas
-- Text notes with rich formatting
-- Image cropping, flipping, grouping, desaturate
-- Minimap for navigation
-- StarterHub for project management
-- Always-on-top + click-through + opacity control
-
-## Files archived
-The previous `artifacts/musealpha-production.zip` contains the browser-first build.
-The `ui-prototype/` directory contains the browser-first prototype.
-The source in `src/` and `src-tauri/` is now being replaced with the board-first architecture from `uiprototype2/`.
+# Browser-First Era Archive
+
+This document marks the architectural pivot from **browser-first** (Muse Alpha v0.2) to **board-first** (RefStudio v1.0).
+
+## What was the browser-first approach?
+- Main workspace was a web browser with tabs
+- Sidebar navigation between Home/Browser/Library/Board/Settings views
+- Board was a secondary view accessed from the sidebar
+- Image hover overlay injected into browser tabs for saving references
+- Ad-blocking engine for browsing comfort
+
+## Why the pivot?
+The core use case is **reference organization**, not web browsing. Artists need:
+- An infinite canvas as the PRIMARY workspace (like PureRef)
+- Browser as a TOOL (embedded panel) to find references, not the main UI
+- Zero-friction image capture from browser → canvas
+- Always-on-top mode for overlaying references while working in art apps
+- Click-through transparency for tracing
+
+## What's preserved from browser-first era?
+- Rust adblock engine (`adblock/` module)
+- Tauri child webview architecture for embedded browser
+- Image download + library persistence (`library.rs`, `persistence.rs`)
+- Board item CRUD (`board.rs`)
+- SQLite migrations
+- Credentials/stronghold setup
+
+## New architecture (board-first / RefStudio)
+- Infinite canvas is the main and only workspace
+- Browser panel slides in from the right as a capture tool
+- Library panel slides in from the left for asset management
+- Three.js GPU-accelerated image rendering with shaders
+- Annotations (freehand drawing) directly on canvas
+- Text notes with rich formatting
+- Image cropping, flipping, grouping, desaturate
+- Minimap for navigation
+- StarterHub for project management
+- Always-on-top + click-through + opacity control
+
+## Files archived
+The previous `artifacts/musealpha-production.zip` contains the browser-first build.
+The `ui-prototype/` directory contains the browser-first prototype.
+The source in `src/` and `src-tauri/` is now being replaced with the board-first architecture from `uiprototype2/`.

docs/MUSE_SRS_v3.md

@@ -1,205 +1,205 @@
-# MUSE — Master Software Requirements Specification v3.0
-### Creative Browser · Tauri v2 + Rust · Complete Product Definition
-
-> Canonical v3 requirements document supplied by the product owner in the implementation prompt.
-
-This document defines the full Muse product vision, architecture, browser fundamentals, ad-block v3, creative modules, artist-exclusive features, UI/UX system, business model, roadmap, and non-goals.
-
-## Document map
-
-Incorporates and supersedes:
-- SRS v1.0 (original vision + market research)
-- SRS v2.0 (deep UX/UI + themes + ad-block)
-- 01-DATABASE-ARCHITECTURE.md
-- 02-ADBLOCK-INTEGRATION.md
-- 03-RUST-ARCHITECTURE.md
-- 04-USER-RESEARCH.md
-- 05-PLATFORM-SPECIFIC.md
-- 06-MOBILE-TABLET-UX.md
-- 07-ALGORITHMS-THIRDPARTY.md
-- 08-UI-UX-COMPLETE.md
-
-## Core mission
-
-Muse is the first browser designed specifically for the visual artist's creative loop:
-
-```text
-Discover → Collect → Organize → Reference → Create → Repeat
-```
-
-Muse replaces the fragmented five-app workflow:
-- Chrome/Firefox: full browser
-- PureRef: Board module / infinite reference canvas
-- Eagle App: Library module
-- Pinterest/Are.na: Boards + Library without algorithm/account/subscription
-- Standalone color picker: integrated extraction, picker, search, export
-
-## Locked non-goals
-
-- No AI image generation
-- No subscription model
-- No hosted cloud storage
-- No social feed or algorithm
-- No drawing tools
-- No real-time collaboration for v1 scope
-- No telemetry without explicit consent
-- No bundled Chromium
-- No mandatory account
-
-## Architecture summary
-
-Stack:
-- Tauri v2 + Rust core
-- SolidJS shell frontend
-- System WebViews for browser tabs
-- SQLite + WAL for local data
-- Stronghold for encrypted credentials
-- `tauri-plugin-store` for settings
-- `brave/adblock-rust` for filter-rule engine
-
-Rust module plan:
-- `browser/` tab lifecycle, navigation, injection, tab sleep, find
-- `adblock/` engine, filter lists, user rules, subscriptions, stats, cosmetic injection
-- `library/` SQLite CRUD, thumbnails, color extraction, dedupe, FTS5 search, smart folders
-- `board/` infinite canvas, autosave, items, export, annotations
-- `credentials/` vault, autofill, generator
-- `downloads/`, `cookies/`, `sessions/`, `permissions/`, `privacy/`, `color/`, `workspace/`
-
-## Database summary
-
-SQLite with startup PRAGMAs:
-
-```sql
-PRAGMA journal_mode = WAL;
-PRAGMA synchronous = NORMAL;
-PRAGMA mmap_size = 268435456;
-PRAGMA cache_size = -16384;
-PRAGMA temp_store = MEMORY;
-PRAGMA foreign_keys = ON;
-PRAGMA busy_timeout = 5000;
-PRAGMA auto_vacuum = INCREMENTAL;
-```
-
-New v3 tables include:
-- `sessions`, `session_tabs`
-- `credentials` pointers to Stronghold keys
-- `downloads`
-- `cookie_rules`
-- `site_permissions`
-- `site_zoom`
-- `adblock_subscriptions`
-- `adblock_user_rules`
-- `board_annotations`
-- `study_sessions`
-
-## Browser fundamentals covered
-
-- Cookie management
-- Password and credential manager
-- Download manager
-- Tab sleep
-- Session management
-- Find in page
-- Per-site zoom memory
-- Permission system
-- HTTPS-first and safe browsing without Google URL API
-- DNS over HTTPS
-- Print
-- Autofill
-- WebRTC and fingerprint protection
-- Offline/error pages
-- Media autoplay policy
-- Certificate/security info
-
-## Ad-block v3
-
-Hybrid design in v3:
-- Navigation blocking
-- Native network blocking where available
-- Cosmetic filtering
-- Built-in multi-list subscriptions
-- Custom uBlock-syntax rules
-- Statistics and transparency
-- Cookie consent auto-denial
-
-Built-in lists:
-- EasyList
-- EasyPrivacy
-- uBlock filters
-- uBlock Unbreak
-- Fanboy Annoyances
-- Peter Lowe
-- Malware Domains
-- AdGuard Base
-- AdGuard Social
-- IndianList
-
-## Core creative modules
-
-- Home Page
-- URL Bar System
-- Sidebar & Tab System
-- Library Module
-- Board Module / PureRef replacement
-- Split View System
-- Color Tools
-- Image Hover Overlay
-
-## Artist-exclusive v3 modules
-
-- Quick Study Mode
-- Board annotations/markup
-- Rotation, flip, light table, overlays
-- Proportion and grid overlays
-- Source site intelligence profiles
-- Library timeline view
-- Color export for artist apps
-- Reference sheet export
-- Workspace sessions for projects
-
-## UI/UX system
-
-Theme presets:
-- Dusk
-- Parchment
-- Midnight
-- Studio
-- Moss
-- Rose
-- Obsidian
-- Linen
-
-Typography:
-- Geist UI
-- Lora reader body
-- Geist Mono for code/dimensions
-
-Onboarding:
-1. Welcome
-2. Make it yours (name + theme)
-3. Name first workspace
-
-Keyboard/command palette includes standard browser shortcuts plus Muse creative shortcuts.
-
-## Business model
-
-- Free tier forever
-- Muse one-time purchase
-- Muse Pro one-time upgrade
-- Pay-What-You-Want launch window
-- No subscription
-
-## Roadmap
-
-- Phase 0: Foundation
-- Phase 1: Browser basics
-- Phase 2: Browser fundamentals complete
-- Phase 3: Creative core
-- Phase 4: Power features
-- Phase 5: Ship Windows
-- Phase 6: Cross-platform
-- Phase 7: Ecosystem
-
-## Note
-
-The original full v3 text was supplied in-chat and is treated as the requirements source for this repository. Phase 0 implementation begins from the v4 implementation guide while preserving these v3 product requirements.
+# MUSE — Master Software Requirements Specification v3.0
+### Creative Browser · Tauri v2 + Rust · Complete Product Definition
+
+> Canonical v3 requirements document supplied by the product owner in the implementation prompt.
+
+This document defines the full Muse product vision, architecture, browser fundamentals, ad-block v3, creative modules, artist-exclusive features, UI/UX system, business model, roadmap, and non-goals.
+
+## Document map
+
+Incorporates and supersedes:
+- SRS v1.0 (original vision + market research)
+- SRS v2.0 (deep UX/UI + themes + ad-block)
+- 01-DATABASE-ARCHITECTURE.md
+- 02-ADBLOCK-INTEGRATION.md
+- 03-RUST-ARCHITECTURE.md
+- 04-USER-RESEARCH.md
+- 05-PLATFORM-SPECIFIC.md
+- 06-MOBILE-TABLET-UX.md
+- 07-ALGORITHMS-THIRDPARTY.md
+- 08-UI-UX-COMPLETE.md
+
+## Core mission
+
+Muse is the first browser designed specifically for the visual artist's creative loop:
+
+```text
+Discover → Collect → Organize → Reference → Create → Repeat
+```
+
+Muse replaces the fragmented five-app workflow:
+- Chrome/Firefox: full browser
+- PureRef: Board module / infinite reference canvas
+- Eagle App: Library module
+- Pinterest/Are.na: Boards + Library without algorithm/account/subscription
+- Standalone color picker: integrated extraction, picker, search, export
+
+## Locked non-goals
+
+- No AI image generation
+- No subscription model
+- No hosted cloud storage
+- No social feed or algorithm
+- No drawing tools
+- No real-time collaboration for v1 scope
+- No telemetry without explicit consent
+- No bundled Chromium
+- No mandatory account
+
+## Architecture summary
+
+Stack:
+- Tauri v2 + Rust core
+- SolidJS shell frontend
+- System WebViews for browser tabs
+- SQLite + WAL for local data
+- Stronghold for encrypted credentials
+- `tauri-plugin-store` for settings
+- `brave/adblock-rust` for filter-rule engine
+
+Rust module plan:
+- `browser/` tab lifecycle, navigation, injection, tab sleep, find
+- `adblock/` engine, filter lists, user rules, subscriptions, stats, cosmetic injection
+- `library/` SQLite CRUD, thumbnails, color extraction, dedupe, FTS5 search, smart folders
+- `board/` infinite canvas, autosave, items, export, annotations
+- `credentials/` vault, autofill, generator
+- `downloads/`, `cookies/`, `sessions/`, `permissions/`, `privacy/`, `color/`, `workspace/`
+
+## Database summary
+
+SQLite with startup PRAGMAs:
+
+```sql
+PRAGMA journal_mode = WAL;
+PRAGMA synchronous = NORMAL;
+PRAGMA mmap_size = 268435456;
+PRAGMA cache_size = -16384;
+PRAGMA temp_store = MEMORY;
+PRAGMA foreign_keys = ON;
+PRAGMA busy_timeout = 5000;
+PRAGMA auto_vacuum = INCREMENTAL;
+```
+
+New v3 tables include:
+- `sessions`, `session_tabs`
+- `credentials` pointers to Stronghold keys
+- `downloads`
+- `cookie_rules`
+- `site_permissions`
+- `site_zoom`
+- `adblock_subscriptions`
+- `adblock_user_rules`
+- `board_annotations`
+- `study_sessions`
+
+## Browser fundamentals covered
+
+- Cookie management
+- Password and credential manager
+- Download manager
+- Tab sleep
+- Session management
+- Find in page
+- Per-site zoom memory
+- Permission system
+- HTTPS-first and safe browsing without Google URL API
+- DNS over HTTPS
+- Print
+- Autofill
+- WebRTC and fingerprint protection
+- Offline/error pages
+- Media autoplay policy
+- Certificate/security info
+
+## Ad-block v3
+
+Hybrid design in v3:
+- Navigation blocking
+- Native network blocking where available
+- Cosmetic filtering
+- Built-in multi-list subscriptions
+- Custom uBlock-syntax rules
+- Statistics and transparency
+- Cookie consent auto-denial
+
+Built-in lists:
+- EasyList
+- EasyPrivacy
+- uBlock filters
+- uBlock Unbreak
+- Fanboy Annoyances
+- Peter Lowe
+- Malware Domains
+- AdGuard Base
+- AdGuard Social
+- IndianList
+
+## Core creative modules
+
+- Home Page
+- URL Bar System
+- Sidebar & Tab System
+- Library Module
+- Board Module / PureRef replacement
+- Split View System
+- Color Tools
+- Image Hover Overlay
+
+## Artist-exclusive v3 modules
+
+- Quick Study Mode
+- Board annotations/markup
+- Rotation, flip, light table, overlays
+- Proportion and grid overlays
+- Source site intelligence profiles
+- Library timeline view
+- Color export for artist apps
+- Reference sheet export
+- Workspace sessions for projects
+
+## UI/UX system
+
+Theme presets:
+- Dusk
+- Parchment
+- Midnight
+- Studio
+- Moss
+- Rose
+- Obsidian
+- Linen
+
+Typography:
+- Geist UI
+- Lora reader body
+- Geist Mono for code/dimensions
+
+Onboarding:
+1. Welcome
+2. Make it yours (name + theme)
+3. Name first workspace
+
+Keyboard/command palette includes standard browser shortcuts plus Muse creative shortcuts.
+
+## Business model
+
+- Free tier forever
+- Muse one-time purchase
+- Muse Pro one-time upgrade
+- Pay-What-You-Want launch window
+- No subscription
+
+## Roadmap
+
+- Phase 0: Foundation
+- Phase 1: Browser basics
+- Phase 2: Browser fundamentals complete
+- Phase 3: Creative core
+- Phase 4: Power features
+- Phase 5: Ship Windows
+- Phase 6: Cross-platform
+- Phase 7: Ecosystem
+
+## Note
+
+The original full v3 text was supplied in-chat and is treated as the requirements source for this repository. Phase 0 implementation begins from the v4 implementation guide while preserving these v3 product requirements.

docs/MUSE_SRS_v4.md

@@ -1,170 +1,170 @@
-# MUSE — Master SRS v4.0
-## Creative Browser · Tauri v2 + Rust · Complete Implementation Guide
-
-> One window. Multiple child webviews. One ad-block engine. All platforms.
-
-This implementation guide supersedes earlier architecture/code notes for v1.0 implementation sequencing.
-
-## Critical architecture decisions
-
-### 1. Single OS window + child webviews for tabs
-
-Muse is one OS window containing:
-- Shell WebView: SolidJS UI (titlebar, sidebar, URL bar, home, library, boards)
-- Child tab WebViews: one per browser tab
-
-Implemented later with `window.add_child()` behind Tauri's `unstable` feature. Phase 0 does **not** use child WebViews yet.
-
-### 2. Cross-platform ad-block = Rust engine + JS injection
-
-The v4 guide deliberately removes platform-native WebView2/WKContentRuleList/WebKitGTK-specific blocking from the v1 cross-platform plan.
-
-Ad-block layers:
-- Layer 0: Navigation handler in Rust
-- Layer 1: JS fetch/XHR override
-- Layer 2: DOM CSP injection
-- Layer 3: Cosmetic CSS injection
-- Layer 4: Scriptlet injection
-
-### 3. `unstable` feature is acceptable for desktop tabs
-
-`tauri = { version = "2", features = ["unstable"] }` is planned once Phase 1 implements child tab WebViews.
-
-### 4. Mobile tab model differs
-
-Mobile uses conceptual tab state plus `WebviewWindow` until Tauri supports child webviews on mobile. Desktop Windows remains v1 target.
-
-## Repository structure target
-
-```text
-muse/
-├── package.json
-├── vite.config.ts
-├── index.html
-├── src/
-│   ├── index.tsx
-│   ├── App.tsx
-│   ├── components/
-│   ├── store/
-│   └── styles/
-└── src-tauri/
-    ├── Cargo.toml
-    ├── build.rs
-    ├── tauri.conf.json
-    ├── capabilities/default.json
-    ├── migrations/
-    └── src/
-        ├── main.rs
-        ├── lib.rs
-        ├── state.rs
-        ├── settings.rs
-        ├── browser/
-        ├── adblock/
-        ├── library/
-        ├── board/
-        ├── credentials/
-        ├── downloads/
-        ├── sessions/
-        └── db/
-```
-
-## Phase 0 implementation scope
-
-Deliverable: running app with custom titlebar, theme, and sidebar navigation.
-
-User can:
-- Open Muse on Windows
-- See Dusk theme, custom titlebar, sidebar
-- Click sidebar icons (Library/Board placeholders)
-- See Home page with greeting and static URL bar
-- Switch all 8 themes
-- Complete onboarding in under 60 seconds
-
-Not included yet:
-- Real browser tabs
-- Ad-block
-- Library/Board functionality
-
-Phase 0 work items:
-- SolidJS Tauri app skeleton
-- Tauri v2 `Cargo.toml`
-- `tauri.conf.json` with undecorated window
-- Capabilities file
-- Custom titlebar with window controls
-- Sidebar shell
-- Home page shell
-- Theme token CSS for 8 themes
-- App state module
-- SQLite init and migration
-- Tauri Store settings
-- Onboarding flow
-
-## Phase 1 target
-
-Real multi-tab browser:
-- `TabManager`
-- `window.add_child()` child WebViews
-- tab create/close/switch/navigate
-- sidebar tab list
-- URL bar navigation
-- title/favicon observer
-- resize handling
-- per-site zoom
-
-## Phase 2 target
-
-Ad-block and privacy:
-- adblock-rust engine
-- 10 bundled lists
-- JS network-request interception
-- cookie consent scriptlet
-- WebRTC protection
-- canvas noise
-- navigation blocking
-- cosmetic injection
-- updater
-- allowlist
-- shield UI
-- tab sleep
-- HTTPS-first
-- Stronghold password vault basics
-
-## Phase 3 target
-
-Library + Board core:
-- image hover overlay
-- save-to-library
-- library search/grid/detail
-- board infinite canvas
-- board item CRUD/autosave
-- palette extraction
-- download manager
-- sessions auto-save
-
-## Phase 4 target
-
-Artist features and polish:
-- Quick Study Mode
-- annotations
-- rotate/flip/light table
-- overlays
-- timeline
-- source profiles
-- export formats
-- reference sheets
-- session manager UI
-- command palette
-- permissions/cert/offline/print/DoH
-
-## Phase 5 target
-
-Windows v1 shipping:
-- NSIS installer
-- updater
-- code signing
-- optional crash reporting
-- performance audit
-
-## Current implementation note
-
-The committed code implements the Phase 0 scope only. Phase 1+ modules are represented as directory placeholders and comments where useful, but no tab WebViews are created in Phase 0.
+# MUSE — Master SRS v4.0
+## Creative Browser · Tauri v2 + Rust · Complete Implementation Guide
+
+> One window. Multiple child webviews. One ad-block engine. All platforms.
+
+This implementation guide supersedes earlier architecture/code notes for v1.0 implementation sequencing.
+
+## Critical architecture decisions
+
+### 1. Single OS window + child webviews for tabs
+
+Muse is one OS window containing:
+- Shell WebView: SolidJS UI (titlebar, sidebar, URL bar, home, library, boards)
+- Child tab WebViews: one per browser tab
+
+Implemented later with `window.add_child()` behind Tauri's `unstable` feature. Phase 0 does **not** use child WebViews yet.
+
+### 2. Cross-platform ad-block = Rust engine + JS injection
+
+The v4 guide deliberately removes platform-native WebView2/WKContentRuleList/WebKitGTK-specific blocking from the v1 cross-platform plan.
+
+Ad-block layers:
+- Layer 0: Navigation handler in Rust
+- Layer 1: JS fetch/XHR override
+- Layer 2: DOM CSP injection
+- Layer 3: Cosmetic CSS injection
+- Layer 4: Scriptlet injection
+
+### 3. `unstable` feature is acceptable for desktop tabs
+
+`tauri = { version = "2", features = ["unstable"] }` is planned once Phase 1 implements child tab WebViews.
+
+### 4. Mobile tab model differs
+
+Mobile uses conceptual tab state plus `WebviewWindow` until Tauri supports child webviews on mobile. Desktop Windows remains v1 target.
+
+## Repository structure target
+
+```text
+muse/
+├── package.json
+├── vite.config.ts
+├── index.html
+├── src/
+│   ├── index.tsx
+│   ├── App.tsx
+│   ├── components/
+│   ├── store/
+│   └── styles/
+└── src-tauri/
+    ├── Cargo.toml
+    ├── build.rs
+    ├── tauri.conf.json
+    ├── capabilities/default.json
+    ├── migrations/
+    └── src/
+        ├── main.rs
+        ├── lib.rs
+        ├── state.rs
+        ├── settings.rs
+        ├── browser/
+        ├── adblock/
+        ├── library/
+        ├── board/
+        ├── credentials/
+        ├── downloads/
+        ├── sessions/
+        └── db/
+```
+
+## Phase 0 implementation scope
+
+Deliverable: running app with custom titlebar, theme, and sidebar navigation.
+
+User can:
+- Open Muse on Windows
+- See Dusk theme, custom titlebar, sidebar
+- Click sidebar icons (Library/Board placeholders)
+- See Home page with greeting and static URL bar
+- Switch all 8 themes
+- Complete onboarding in under 60 seconds
+
+Not included yet:
+- Real browser tabs
+- Ad-block
+- Library/Board functionality
+
+Phase 0 work items:
+- SolidJS Tauri app skeleton
+- Tauri v2 `Cargo.toml`
+- `tauri.conf.json` with undecorated window
+- Capabilities file
+- Custom titlebar with window controls
+- Sidebar shell
+- Home page shell
+- Theme token CSS for 8 themes
+- App state module
+- SQLite init and migration
+- Tauri Store settings
+- Onboarding flow
+
+## Phase 1 target
+
+Real multi-tab browser:
+- `TabManager`
+- `window.add_child()` child WebViews
+- tab create/close/switch/navigate
+- sidebar tab list
+- URL bar navigation
+- title/favicon observer
+- resize handling
+- per-site zoom
+
+## Phase 2 target
+
+Ad-block and privacy:
+- adblock-rust engine
+- 10 bundled lists
+- JS network-request interception
+- cookie consent scriptlet
+- WebRTC protection
+- canvas noise
+- navigation blocking
+- cosmetic injection
+- updater
+- allowlist
+- shield UI
+- tab sleep
+- HTTPS-first
+- Stronghold password vault basics
+
+## Phase 3 target
+
+Library + Board core:
+- image hover overlay
+- save-to-library
+- library search/grid/detail
+- board infinite canvas
+- board item CRUD/autosave
+- palette extraction
+- download manager
+- sessions auto-save
+
+## Phase 4 target
+
+Artist features and polish:
+- Quick Study Mode
+- annotations
+- rotate/flip/light table
+- overlays
+- timeline
+- source profiles
+- export formats
+- reference sheets
+- session manager UI
+- command palette
+- permissions/cert/offline/print/DoH
+
+## Phase 5 target
+
+Windows v1 shipping:
+- NSIS installer
+- updater
+- code signing
+- optional crash reporting
+- performance audit
+
+## Current implementation note
+
+The committed code implements the Phase 0 scope only. Phase 1+ modules are represented as directory placeholders and comments where useful, but no tab WebViews are created in Phase 0.

index.html

@@ -1,12 +1,12 @@
-<!doctype html>
-<html lang="en">
-  <head>
-    <meta charset="UTF-8" />
-    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>Refstudio</title>
-  </head>
-  <body>
-    <div id="root"></div>
-    <script type="module" src="/src/main.tsx"></script>
-  </body>
-</html>
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="UTF-8" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <title>Refstudio</title>
+  </head>
+  <body>
+    <div id="root"></div>
+    <script type="module" src="/src/main.tsx"></script>
+  </body>
+</html>

package.json

@@ -1,36 +1,36 @@
-{
-  "name": "refstudio",
-  "private": true,
-  "version": "1.0.0-alpha",
-  "type": "module",
-  "scripts": {
-    "dev": "vite --port 1420 --host",
-    "build": "vite build",
-    "preview": "vite preview",
-    "tauri": "tauri"
-  },
-  "dependencies": {
-    "@tauri-apps/api": "^2.9.0",
-    "@tauri-apps/plugin-clipboard-manager": "^2.3.0",
-    "@tauri-apps/plugin-fs": "^2.4.0",
-    "@tauri-apps/plugin-opener": "^2.5.0",
-    "@tauri-apps/plugin-store": "^2.4.0",
-    "@tauri-apps/plugin-stronghold": "^2.3.0",
-    "lucide-react": "^0.546.0",
-    "motion": "^12.23.0",
-    "react": "^19.0.0",
-    "react-dom": "^19.0.0"
-  },
-  "devDependencies": {
-    "@tauri-apps/cli": "^2.9.0",
-    "@tailwindcss/vite": "^4.1.0",
-    "@types/react": "^19.0.0",
-    "@types/react-dom": "^19.0.0",
-    "@vitejs/plugin-react": "^5.0.0",
-    "autoprefixer": "^10.4.21",
-    "postcss": "^8.5.0",
-    "tailwindcss": "^4.1.0",
-    "typescript": "~5.8.2",
-    "vite": "^6.2.0"
-  }
-}
+{
+  "name": "refstudio",
+  "private": true,
+  "version": "1.0.0-alpha",
+  "type": "module",
+  "scripts": {
+    "dev": "vite --port 1420 --host",
+    "build": "vite build",
+    "preview": "vite preview",
+    "tauri": "tauri"
+  },
+  "dependencies": {
+    "@tauri-apps/api": "^2",
+    "@tauri-apps/plugin-clipboard-manager": "^2",
+    "@tauri-apps/plugin-fs": "^2",
+    "@tauri-apps/plugin-opener": "^2",
+    "@tauri-apps/plugin-store": "^2",
+    "@tauri-apps/plugin-stronghold": "^2",
+    "lucide-react": "^0.468.0",
+    "motion": "^12.0.0",
+    "react": "^19.0.0",
+    "react-dom": "^19.0.0"
+  },
+  "devDependencies": {
+    "@tauri-apps/cli": "^2",
+    "@tailwindcss/vite": "^4.0.0",
+    "@types/react": "^19.0.0",
+    "@types/react-dom": "^19.0.0",
+    "@vitejs/plugin-react": "^4.3.0",
+    "autoprefixer": "^10.4.20",
+    "postcss": "^8.4.49",
+    "tailwindcss": "^4.0.0",
+    "typescript": "~5.6.2",
+    "vite": "^6.0.0"
+  }
+}

src-tauri/Cargo.toml

@@ -39,6 +39,8 @@ base64 = "0.22"
 uuid = { version = "1", features = ["v4", "serde"] }
 chrono = { version = "0.4", features = ["serde"] }
 screenshots = "0.8"
+sha2 = "0.10"
+zip = { version = "2.4", default-features = false, features = ["deflate"] }
 
 [target."cfg(not(any(target_os = \"android\", target_os = \"ios\")))".dependencies]
 tauri-plugin-global-shortcut = "2"

src-tauri/build.rs

@@ -1,3 +1,3 @@
-fn main() {
-    tauri_build::build()
-}
+fn main() {
+    tauri_build::build()
+}

src-tauri/capabilities/default.json

@@ -1,29 +1,29 @@
-{
-  "$schema": "../gen/schemas/desktop-schema.json",
-  "identifier": "default",
-  "description": "MUSE Alpha Phase 3 production capabilities",
-  "windows": ["main"],
-  "remote": {
-    "urls": ["https://*"]
-  },
-  "permissions": [
-    "core:default",
-    "opener:default",
-    "core:window:allow-start-dragging",
-    "core:window:allow-minimize",
-    "core:window:allow-toggle-maximize",
-    "core:window:allow-close",
-    "core:window:allow-inner-size",
-    "store:default",
-    "sql:default",
-    "sql:allow-execute",
-    "fs:default",
-    "clipboard-manager:allow-read-text",
-    "clipboard-manager:allow-write-text",
-    "global-shortcut:allow-register",
-    "global-shortcut:allow-unregister",
-    "global-shortcut:allow-unregister-all",
-    "global-shortcut:allow-is-registered",
-    "stronghold:default"
-  ]
-}
+{
+  "$schema": "../gen/schemas/desktop-schema.json",
+  "identifier": "default",
+  "description": "MUSE Alpha Phase 3 production capabilities",
+  "windows": ["main"],
+  "remote": {
+    "urls": ["https://*"]
+  },
+  "permissions": [
+    "core:default",
+    "opener:default",
+    "core:window:allow-start-dragging",
+    "core:window:allow-minimize",
+    "core:window:allow-toggle-maximize",
+    "core:window:allow-close",
+    "core:window:allow-inner-size",
+    "store:default",
+    "sql:default",
+    "sql:allow-execute",
+    "fs:default",
+    "clipboard-manager:allow-read-text",
+    "clipboard-manager:allow-write-text",
+    "global-shortcut:allow-register",
+    "global-shortcut:allow-unregister",
+    "global-shortcut:allow-unregister-all",
+    "global-shortcut:allow-is-registered",
+    "stronghold:default"
+  ]
+}

src-tauri/gen/schemas/capabilities.json

@@ -0,0 +1 @@
+{"default":{"identifier":"default","description":"MUSE Alpha Phase 3 production capabilities","remote":{"urls":["https://*"]},"local":true,"windows":["main"],"permissions":["core:default","opener:default","core:window:allow-start-dragging","core:window:allow-minimize","core:window:allow-toggle-maximize","core:window:allow-close","core:window:allow-inner-size","store:default","sql:default","sql:allow-execute","fs:default","clipboard-manager:allow-read-text","clipboard-manager:allow-write-text","global-shortcut:allow-register","global-shortcut:allow-unregister","global-shortcut:allow-unregister-all","global-shortcut:allow-is-registered","stronghold:default"]}}

src-tauri/icons/README.md

@@ -1 +1 @@
-Add generated Tauri icon assets here before packaging (`pnpm tauri icon`).
+Add generated Tauri icon assets here before packaging (`pnpm tauri icon`).

src-tauri/migrations/001_phase0_init.sql

@@ -1,21 +1,21 @@
-CREATE TABLE IF NOT EXISTS app_meta (
-  key TEXT PRIMARY KEY NOT NULL,
-  value TEXT NOT NULL,
-  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
-);
-
-CREATE TABLE IF NOT EXISTS settings (
-  key TEXT PRIMARY KEY NOT NULL,
-  value_json TEXT NOT NULL,
-  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
-);
-
-CREATE TABLE IF NOT EXISTS workspaces (
-  id TEXT PRIMARY KEY NOT NULL,
-  name TEXT NOT NULL,
-  accent TEXT NOT NULL DEFAULT '#C49A3C',
-  created_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP,
-  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
-);
-
-INSERT OR IGNORE INTO app_meta (key, value) VALUES ('schema_version', '1');
+CREATE TABLE IF NOT EXISTS app_meta (
+  key TEXT PRIMARY KEY NOT NULL,
+  value TEXT NOT NULL,
+  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
+);
+
+CREATE TABLE IF NOT EXISTS settings (
+  key TEXT PRIMARY KEY NOT NULL,
+  value_json TEXT NOT NULL,
+  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
+);
+
+CREATE TABLE IF NOT EXISTS workspaces (
+  id TEXT PRIMARY KEY NOT NULL,
+  name TEXT NOT NULL,
+  accent TEXT NOT NULL DEFAULT '#C49A3C',
+  created_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP,
+  updated_at TEXT NOT NULL DEFAULT CURRENT_TIMESTAMP
+);
+
+INSERT OR IGNORE INTO app_meta (key, value) VALUES ('schema_version', '1');

src-tauri/migrations/002_phase3_tables.sql

@@ -1,94 +1,94 @@
--- Library items table
-CREATE TABLE IF NOT EXISTS library_items (
-    id TEXT PRIMARY KEY NOT NULL,
-    url TEXT NOT NULL,
-    source_url TEXT NOT NULL DEFAULT '',
-    title TEXT NOT NULL DEFAULT 'Untitled',
-    hash TEXT NOT NULL,
-    width INTEGER NOT NULL DEFAULT 0,
-    height INTEGER NOT NULL DEFAULT 0,
-    colors TEXT NOT NULL DEFAULT '[]',
-    tags TEXT NOT NULL DEFAULT '[]',
-    notes TEXT NOT NULL DEFAULT '',
-    created_at INTEGER NOT NULL DEFAULT 0
-);
-
-CREATE UNIQUE INDEX IF NOT EXISTS idx_library_hash ON library_items(hash);
-
--- FTS5 for library search
-CREATE VIRTUAL TABLE IF NOT EXISTS library_fts USING fts5(
-    title, tags, notes, source_url,
-    content='library_items',
-    content_rowid='rowid'
-);
-
--- Board items table
-CREATE TABLE IF NOT EXISTS board_items (
-    id TEXT PRIMARY KEY NOT NULL,
-    kind TEXT NOT NULL DEFAULT 'image',
-    library_id TEXT,
-    text TEXT,
-    colors TEXT NOT NULL DEFAULT '[]',
-    x REAL NOT NULL DEFAULT 0,
-    y REAL NOT NULL DEFAULT 0,
-    w REAL NOT NULL DEFAULT 200,
-    h REAL NOT NULL DEFAULT 200,
-    z INTEGER NOT NULL DEFAULT 0
-);
-
--- Sessions
-CREATE TABLE IF NOT EXISTS sessions (
-    id TEXT PRIMARY KEY NOT NULL,
-    name TEXT NOT NULL,
-    tabs TEXT NOT NULL DEFAULT '[]',
-    created_at INTEGER NOT NULL DEFAULT 0
-);
-
--- Downloads
-CREATE TABLE IF NOT EXISTS downloads (
-    id TEXT PRIMARY KEY NOT NULL,
-    url TEXT NOT NULL,
-    filename TEXT NOT NULL DEFAULT '',
-    status TEXT NOT NULL DEFAULT 'pending',
-    saved_to_library INTEGER NOT NULL DEFAULT 0,
-    created_at INTEGER NOT NULL DEFAULT 0
-);
-
--- Credentials index (passwords stored in Stronghold, only metadata here)
-CREATE TABLE IF NOT EXISTS credentials (
-    id TEXT PRIMARY KEY NOT NULL,
-    domain TEXT NOT NULL,
-    username TEXT NOT NULL,
-    vault_key TEXT NOT NULL,
-    label TEXT NOT NULL DEFAULT '',
-    last_used INTEGER NOT NULL DEFAULT 0,
-    created_at INTEGER NOT NULL DEFAULT 0
-);
-
-CREATE INDEX IF NOT EXISTS idx_credentials_domain ON credentials(domain);
-
--- Adblock user rules
-CREATE TABLE IF NOT EXISTS adblock_user_rules (
-    id TEXT PRIMARY KEY NOT NULL,
-    rule_text TEXT NOT NULL,
-    enabled INTEGER NOT NULL DEFAULT 1,
-    comment TEXT NOT NULL DEFAULT '',
-    created_at INTEGER NOT NULL DEFAULT 0
-);
-
--- Adblock subscriptions
-CREATE TABLE IF NOT EXISTS adblock_subscriptions (
-    id TEXT PRIMARY KEY NOT NULL,
-    name TEXT NOT NULL,
-    url TEXT NOT NULL UNIQUE,
-    enabled INTEGER NOT NULL DEFAULT 1,
-    last_updated INTEGER NOT NULL DEFAULT 0,
-    is_builtin INTEGER NOT NULL DEFAULT 0
-);
-
-INSERT OR IGNORE INTO adblock_subscriptions (id, name, url, enabled, is_builtin) VALUES
-('easylist', 'EasyList', 'https://easylist.to/easylist/easylist.txt', 1, 1),
-('easyprivacy', 'EasyPrivacy', 'https://easylist.to/easylist/easyprivacy.txt', 1, 1),
-('fanboy', 'Fanboy Annoyances', 'https://secure.fanboy.co.nz/fanboy-annoyance.txt', 1, 1),
-('ublock', 'uBlock Filters', 'https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/filters.txt', 1, 1),
-('peter-lowe', 'Peter Lowe', 'https://pgl.yoyo.org/adservers/serverlist.php?mimetype=plaintext', 1, 1);
+-- Library items table
+CREATE TABLE IF NOT EXISTS library_items (
+    id TEXT PRIMARY KEY NOT NULL,
+    url TEXT NOT NULL,
+    source_url TEXT NOT NULL DEFAULT '',
+    title TEXT NOT NULL DEFAULT 'Untitled',
+    hash TEXT NOT NULL,
+    width INTEGER NOT NULL DEFAULT 0,
+    height INTEGER NOT NULL DEFAULT 0,
+    colors TEXT NOT NULL DEFAULT '[]',
+    tags TEXT NOT NULL DEFAULT '[]',
+    notes TEXT NOT NULL DEFAULT '',
+    created_at INTEGER NOT NULL DEFAULT 0
+);
+
+CREATE UNIQUE INDEX IF NOT EXISTS idx_library_hash ON library_items(hash);
+
+-- FTS5 for library search
+CREATE VIRTUAL TABLE IF NOT EXISTS library_fts USING fts5(
+    title, tags, notes, source_url,
+    content='library_items',
+    content_rowid='rowid'
+);
+
+-- Board items table
+CREATE TABLE IF NOT EXISTS board_items (
+    id TEXT PRIMARY KEY NOT NULL,
+    kind TEXT NOT NULL DEFAULT 'image',
+    library_id TEXT,
+    text TEXT,
+    colors TEXT NOT NULL DEFAULT '[]',
+    x REAL NOT NULL DEFAULT 0,
+    y REAL NOT NULL DEFAULT 0,
+    w REAL NOT NULL DEFAULT 200,
+    h REAL NOT NULL DEFAULT 200,
+    z INTEGER NOT NULL DEFAULT 0
+);
+
+-- Sessions
+CREATE TABLE IF NOT EXISTS sessions (
+    id TEXT PRIMARY KEY NOT NULL,
+    name TEXT NOT NULL,
+    tabs TEXT NOT NULL DEFAULT '[]',
+    created_at INTEGER NOT NULL DEFAULT 0
+);
+
+-- Downloads
+CREATE TABLE IF NOT EXISTS downloads (
+    id TEXT PRIMARY KEY NOT NULL,
+    url TEXT NOT NULL,
+    filename TEXT NOT NULL DEFAULT '',
+    status TEXT NOT NULL DEFAULT 'pending',
+    saved_to_library INTEGER NOT NULL DEFAULT 0,
+    created_at INTEGER NOT NULL DEFAULT 0
+);
+
+-- Credentials index (passwords stored in Stronghold, only metadata here)
+CREATE TABLE IF NOT EXISTS credentials (
+    id TEXT PRIMARY KEY NOT NULL,
+    domain TEXT NOT NULL,
+    username TEXT NOT NULL,
+    vault_key TEXT NOT NULL,
+    label TEXT NOT NULL DEFAULT '',
+    last_used INTEGER NOT NULL DEFAULT 0,
+    created_at INTEGER NOT NULL DEFAULT 0
+);
+
+CREATE INDEX IF NOT EXISTS idx_credentials_domain ON credentials(domain);
+
+-- Adblock user rules
+CREATE TABLE IF NOT EXISTS adblock_user_rules (
+    id TEXT PRIMARY KEY NOT NULL,
+    rule_text TEXT NOT NULL,
+    enabled INTEGER NOT NULL DEFAULT 1,
+    comment TEXT NOT NULL DEFAULT '',
+    created_at INTEGER NOT NULL DEFAULT 0
+);
+
+-- Adblock subscriptions
+CREATE TABLE IF NOT EXISTS adblock_subscriptions (
+    id TEXT PRIMARY KEY NOT NULL,
+    name TEXT NOT NULL,
+    url TEXT NOT NULL UNIQUE,
+    enabled INTEGER NOT NULL DEFAULT 1,
+    last_updated INTEGER NOT NULL DEFAULT 0,
+    is_builtin INTEGER NOT NULL DEFAULT 0
+);
+
+INSERT OR IGNORE INTO adblock_subscriptions (id, name, url, enabled, is_builtin) VALUES
+('easylist', 'EasyList', 'https://easylist.to/easylist/easylist.txt', 1, 1),
+('easyprivacy', 'EasyPrivacy', 'https://easylist.to/easylist/easyprivacy.txt', 1, 1),
+('fanboy', 'Fanboy Annoyances', 'https://secure.fanboy.co.nz/fanboy-annoyance.txt', 1, 1),
+('ublock', 'uBlock Filters', 'https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/filters.txt', 1, 1),
+('peter-lowe', 'Peter Lowe', 'https://pgl.yoyo.org/adservers/serverlist.php?mimetype=plaintext', 1, 1);

src-tauri/resources/filters/annoyances_mini.txt

@@ -1,20 +1,20 @@
-! Title: Muse Annoyances Mini (bundled subset)
-! Cookie consent auto-dismiss
-||onetrust.com^$third-party
-||cookielaw.org^$third-party
-||trustarc.com^$third-party
-||consensu.org^$third-party
-||cookiebot.com^$third-party
-||cookiepro.com^$third-party
-||iubenda.com^$third-party
-||termly.io^$third-party
-! Newsletter/signup popups
-||sumo.com^$third-party
-||privy.com^$third-party
-||optinmonster.com^$third-party
-||mailchimp.com^$third-party,image
-||convertkit.com^$third-party
-! Social widgets
-||platform.twitter.com/widgets^$third-party
-||connect.facebook.net/*/sdk.js^$third-party
-||apis.google.com/js/plusone^$third-party
+! Title: Muse Annoyances Mini (bundled subset)
+! Cookie consent auto-dismiss
+||onetrust.com^$third-party
+||cookielaw.org^$third-party
+||trustarc.com^$third-party
+||consensu.org^$third-party
+||cookiebot.com^$third-party
+||cookiepro.com^$third-party
+||iubenda.com^$third-party
+||termly.io^$third-party
+! Newsletter/signup popups
+||sumo.com^$third-party
+||privy.com^$third-party
+||optinmonster.com^$third-party
+||mailchimp.com^$third-party,image
+||convertkit.com^$third-party
+! Social widgets
+||platform.twitter.com/widgets^$third-party
+||connect.facebook.net/*/sdk.js^$third-party
+||apis.google.com/js/plusone^$third-party

src-tauri/resources/filters/easylist_mini.txt

@@ -1,51 +1,51 @@
-! Title: Muse EasyList Mini (bundled subset)
-! Compact version for instant startup. Full lists loaded via daily updater.
-||googlesyndication.com^
-||doubleclick.net^
-||google-analytics.com^
-||googletagmanager.com/gtag^$third-party
-||amazon-adsystem.com^
-||facebook.net/tr^
-||connect.facebook.net^$third-party
-||adnxs.com^
-||criteo.com^
-||outbrain.com^
-||taboola.com^
-||rubiconproject.com^
-||pubmatic.com^
-||openx.net^
-||moatads.com^
-||2mdn.net^
-||adsymptotic.com^
-||advertising.com^
-||scorecardresearch.com^
-||quantserve.com^
-||bluekai.com^
-||turn.com^
-||serving-sys.com^
-||bidswitch.net^
-||media.net^
-||casalemedia.com^
-||indexexchange.com^
-||mathtag.com^
-||adform.net^
-||eyeota.net^
-||sharethrough.com^
-||smartadserver.com^
-||rlcdn.com^
-||demdex.net^
-||agkn.com^
-||3lift.com^
-||33across.com^
-||liadm.com^
-||adsrvr.org^
-||contextweb.com^
-||everesttech.net^
-||krxd.net^
-||yieldmo.com^
-! Popular site-specific
-||pagead2.googlesyndication.com^
-||tpc.googlesyndication.com^
-||securepubads.g.doubleclick.net^
-||ad.doubleclick.net^
-||stats.g.doubleclick.net^
+! Title: Muse EasyList Mini (bundled subset)
+! Compact version for instant startup. Full lists loaded via daily updater.
+||googlesyndication.com^
+||doubleclick.net^
+||google-analytics.com^
+||googletagmanager.com/gtag^$third-party
+||amazon-adsystem.com^
+||facebook.net/tr^
+||connect.facebook.net^$third-party
+||adnxs.com^
+||criteo.com^
+||outbrain.com^
+||taboola.com^
+||rubiconproject.com^
+||pubmatic.com^
+||openx.net^
+||moatads.com^
+||2mdn.net^
+||adsymptotic.com^
+||advertising.com^
+||scorecardresearch.com^
+||quantserve.com^
+||bluekai.com^
+||turn.com^
+||serving-sys.com^
+||bidswitch.net^
+||media.net^
+||casalemedia.com^
+||indexexchange.com^
+||mathtag.com^
+||adform.net^
+||eyeota.net^
+||sharethrough.com^
+||smartadserver.com^
+||rlcdn.com^
+||demdex.net^
+||agkn.com^
+||3lift.com^
+||33across.com^
+||liadm.com^
+||adsrvr.org^
+||contextweb.com^
+||everesttech.net^
+||krxd.net^
+||yieldmo.com^
+! Popular site-specific
+||pagead2.googlesyndication.com^
+||tpc.googlesyndication.com^
+||securepubads.g.doubleclick.net^
+||ad.doubleclick.net^
+||stats.g.doubleclick.net^

src-tauri/resources/filters/easyprivacy_mini.txt

@@ -1,28 +1,28 @@
-! Title: Muse EasyPrivacy Mini (bundled subset)
-||hotjar.com^
-||mixpanel.com^
-||segment.io^
-||segment.com^
-||amplitude.com^
-||fullstory.com^
-||heap-analytics.com^
-||crazyegg.com^
-||mouseflow.com^
-||clarity.ms^
-||newrelic.com^
-||nr-data.net^
-||sentry.io^$third-party
-||bugsnag.com^$third-party
-||rollbar.com^$third-party
-||optimizely.com^$third-party
-||branch.io^$third-party
-||appsflyer.com^
-||adjust.com^$third-party
-||app.link^$third-party
-||tealiumiq.com^
-||omtrdc.net^
-||2o7.net^
-||hit.gemius.pl^
-||chartbeat.com^$third-party
-||parsely.com^$third-party
-||pixel.wp.com^$third-party
+! Title: Muse EasyPrivacy Mini (bundled subset)
+||hotjar.com^
+||mixpanel.com^
+||segment.io^
+||segment.com^
+||amplitude.com^
+||fullstory.com^
+||heap-analytics.com^
+||crazyegg.com^
+||mouseflow.com^
+||clarity.ms^
+||newrelic.com^
+||nr-data.net^
+||sentry.io^$third-party
+||bugsnag.com^$third-party
+||rollbar.com^$third-party
+||optimizely.com^$third-party
+||branch.io^$third-party
+||appsflyer.com^
+||adjust.com^$third-party
+||app.link^$third-party
+||tealiumiq.com^
+||omtrdc.net^
+||2o7.net^
+||hit.gemius.pl^
+||chartbeat.com^$third-party
+||parsely.com^$third-party
+||pixel.wp.com^$third-party

src-tauri/resources/scriptlets/muse_ubo_compatible_scriptlets.js

@@ -1,105 +1,105 @@
-/// json-prune.js
-(function() {
-    'use strict';
-    const args = Array.from(arguments);
-    const prunePaths = (args[0] || '').split(/\s+/).filter(Boolean);
-    if (prunePaths.length === 0) return;
-    function prune(obj, path) {
-        if (!obj || typeof obj !== 'object') return;
-        const parts = path.split('.');
-        let target = obj;
-        for (let i = 0; i < parts.length - 1; i++) {
-            const part = parts[i];
-            if (part.endsWith('[]')) {
-                const key = part.slice(0, -2);
-                if (Array.isArray(target[key])) {
-                    target[key].forEach(item => prune(item, parts.slice(i + 1).join('.')));
-                }
-                return;
-            }
-            if (!target[part]) return;
-            target = target[part];
-        }
-        delete target[parts[parts.length - 1]];
-    }
-    function pruneAll(obj) { for (const p of prunePaths) prune(obj, p); return obj; }
-    const jp = JSON.parse;
-    JSON.parse = function() { return pruneAll(jp.apply(this, arguments)); };
-    const rj = Response.prototype.json;
-    Response.prototype.json = function() { return rj.apply(this, arguments).then(pruneAll); };
-})();
-
-/// set-constant.js
-(function() {
-    'use strict';
-    const prop = arguments[0];
-    const raw = arguments[1];
-    if (!prop) return;
-    let value;
-    if (raw === 'undefined') value = undefined;
-    else if (raw === 'false') value = false;
-    else if (raw === 'true') value = true;
-    else if (raw === 'null') value = null;
-    else value = raw;
-    const parts = prop.split('.');
-    let obj = window;
-    for (let i = 0; i < parts.length - 1; i++) {
-        obj = obj[parts[i]] = obj[parts[i]] || {};
-    }
-    try {
-        Object.defineProperty(obj, parts[parts.length - 1], { get: () => value, set: () => {}, configurable: true });
-    } catch {}
-})();
-
-/// abort-current-script.js
-(function() {
-    'use strict';
-    const needle = arguments[0] || '';
-    const prop = arguments[1] || '';
-    if (!needle && !prop) return;
-    const re = new RegExp(needle);
-    const oe = document.createElement.bind(document);
-    document.createElement = function(tag) {
-        const el = oe(tag);
-        if (String(tag).toLowerCase() === 'script') {
-            const set = el.setAttribute.bind(el);
-            el.setAttribute = function(name, value) {
-                if (name === 'src' && re.test(String(value))) return;
-                return set(name, value);
-            };
-        }
-        return el;
-    };
-})();
-
-/// prevent-fetch.js
-(function() {
-    'use strict';
-    const needle = arguments[0] || '';
-    if (!needle) return;
-    const re = new RegExp(needle);
-    const of = window.fetch;
-    window.fetch = function(input, init) {
-        const url = typeof input === 'string' ? input : input && input.url || '';
-        if (re.test(url)) return Promise.resolve(new Response('', { status: 204 }));
-        return of.apply(this, arguments);
-    };
-})();
-
-/// m3u8-prune.js
-(function() {
-    'use strict';
-    const needle = arguments[0] || 'stitched-ad|advertisement|DATERANGE';
-    const re = new RegExp(needle);
-    const of = window.fetch;
-    window.fetch = function(input, init) {
-        const url = typeof input === 'string' ? input : input && input.url || '';
-        return of.apply(this, arguments).then(resp => {
-            if (!String(url).includes('.m3u8')) return resp;
-            return resp.clone().text().then(text => {
-                const out = text.split('\n').filter(line => !re.test(line)).join('\n');
-                return new Response(out, { status: resp.status, headers: resp.headers });
-            }).catch(() => resp);
-        });
-    };
-})();
+/// json-prune.js
+(function() {
+    'use strict';
+    const args = Array.from(arguments);
+    const prunePaths = (args[0] || '').split(/\s+/).filter(Boolean);
+    if (prunePaths.length === 0) return;
+    function prune(obj, path) {
+        if (!obj || typeof obj !== 'object') return;
+        const parts = path.split('.');
+        let target = obj;
+        for (let i = 0; i < parts.length - 1; i++) {
+            const part = parts[i];
+            if (part.endsWith('[]')) {
+                const key = part.slice(0, -2);
+                if (Array.isArray(target[key])) {
+                    target[key].forEach(item => prune(item, parts.slice(i + 1).join('.')));
+                }
+                return;
+            }
+            if (!target[part]) return;
+            target = target[part];
+        }
+        delete target[parts[parts.length - 1]];
+    }
+    function pruneAll(obj) { for (const p of prunePaths) prune(obj, p); return obj; }
+    const jp = JSON.parse;
+    JSON.parse = function() { return pruneAll(jp.apply(this, arguments)); };
+    const rj = Response.prototype.json;
+    Response.prototype.json = function() { return rj.apply(this, arguments).then(pruneAll); };
+})();
+
+/// set-constant.js
+(function() {
+    'use strict';
+    const prop = arguments[0];
+    const raw = arguments[1];
+    if (!prop) return;
+    let value;
+    if (raw === 'undefined') value = undefined;
+    else if (raw === 'false') value = false;
+    else if (raw === 'true') value = true;
+    else if (raw === 'null') value = null;
+    else value = raw;
+    const parts = prop.split('.');
+    let obj = window;
+    for (let i = 0; i < parts.length - 1; i++) {
+        obj = obj[parts[i]] = obj[parts[i]] || {};
+    }
+    try {
+        Object.defineProperty(obj, parts[parts.length - 1], { get: () => value, set: () => {}, configurable: true });
+    } catch {}
+})();
+
+/// abort-current-script.js
+(function() {
+    'use strict';
+    const needle = arguments[0] || '';
+    const prop = arguments[1] || '';
+    if (!needle && !prop) return;
+    const re = new RegExp(needle);
+    const oe = document.createElement.bind(document);
+    document.createElement = function(tag) {
+        const el = oe(tag);
+        if (String(tag).toLowerCase() === 'script') {
+            const set = el.setAttribute.bind(el);
+            el.setAttribute = function(name, value) {
+                if (name === 'src' && re.test(String(value))) return;
+                return set(name, value);
+            };
+        }
+        return el;
+    };
+})();
+
+/// prevent-fetch.js
+(function() {
+    'use strict';
+    const needle = arguments[0] || '';
+    if (!needle) return;
+    const re = new RegExp(needle);
+    const of = window.fetch;
+    window.fetch = function(input, init) {
+        const url = typeof input === 'string' ? input : input && input.url || '';
+        if (re.test(url)) return Promise.resolve(new Response('', { status: 204 }));
+        return of.apply(this, arguments);
+    };
+})();
+
+/// m3u8-prune.js
+(function() {
+    'use strict';
+    const needle = arguments[0] || 'stitched-ad|advertisement|DATERANGE';
+    const re = new RegExp(needle);
+    const of = window.fetch;
+    window.fetch = function(input, init) {
+        const url = typeof input === 'string' ? input : input && input.url || '';
+        return of.apply(this, arguments).then(resp => {
+            if (!String(url).includes('.m3u8')) return resp;
+            return resp.clone().text().then(text => {
+                const out = text.split('\n').filter(line => !re.test(line)).join('\n');
+                return new Response(out, { status: resp.status, headers: resp.headers });
+            }).catch(() => resp);
+        });
+    };
+})();

src-tauri/resources/scripts/adblock_layer1.js

@@ -1,141 +1,141 @@
-(function() {
-'use strict';
-
-const blocked = new Set(window.__MUSE_BLOCKED_DOMAINS__ || []);
-
-function extractDomain(url) {
-    try {
-        const absolute = String(url || '').startsWith('http') ? String(url) : location.origin + String(url || '');
-        return new URL(absolute).hostname.replace(/^www\./, '');
-    } catch { return null; }
-}
-
-function isDomainBlocked(url) {
-    if (!url || typeof url !== 'string') return false;
-    const domain = extractDomain(url);
-    if (!domain) return false;
-    const parts = domain.split('.');
-    for (let i = 0; i < parts.length - 1; i++) {
-        if (blocked.has(parts.slice(i).join('.'))) return true;
-    }
-    return false;
-}
-
-function emptyResponseFor(url) {
-    const type = String(url || '').toLowerCase();
-    if (type.includes('.json') || type.includes('/api/') || type.includes('youtubei')) {
-        return new Response('{}', { status: 200, headers: { 'Content-Type': 'application/json' } });
-    }
-    if (type.includes('.js')) {
-        return new Response('/* blocked by Muse Shield */', { status: 200, headers: { 'Content-Type': 'application/javascript' } });
-    }
-    return new Response('', { status: 204 });
-}
-
-// Patch fetch
-const _fetch = window.fetch;
-window.fetch = function(input, init) {
-    const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
-    if (isDomainBlocked(url)) {
-        return Promise.resolve(emptyResponseFor(url));
-    }
-    return _fetch.apply(this, arguments);
-};
-
-// Patch XMLHttpRequest
-const _xhrOpen = XMLHttpRequest.prototype.open;
-XMLHttpRequest.prototype.open = function(method, url) {
-    this.__muse_blocked = isDomainBlocked(url);
-    return _xhrOpen.apply(this, arguments);
-};
-const _xhrSend = XMLHttpRequest.prototype.send;
-XMLHttpRequest.prototype.send = function() {
-    if (this.__muse_blocked) {
-        Object.defineProperty(this, 'readyState', { get: () => 4 });
-        Object.defineProperty(this, 'status', { get: () => 204 });
-        Object.defineProperty(this, 'responseText', { get: () => '' });
-        Object.defineProperty(this, 'response', { get: () => '' });
-        if (typeof this.onload === 'function') setTimeout(() => this.onload(new Event('load')), 0);
-        if (typeof this.onreadystatechange === 'function') setTimeout(() => this.onreadystatechange(new Event('readystatechange')), 0);
-        return;
-    }
-    return _xhrSend.apply(this, arguments);
-};
-
-// Patch WebSocket
-const _WS = window.WebSocket;
-if (_WS) {
-    window.WebSocket = function(url, protocols) {
-        if (isDomainBlocked(url)) {
-            return { readyState: 3, send() {}, close() {}, addEventListener() {}, removeEventListener() {} };
-        }
-        return new _WS(url, protocols);
-    };
-    Object.setPrototypeOf(window.WebSocket, _WS);
-}
-
-const placeholderSelectors = [
-    '[id^="google_ads_iframe"]', '[id*="google_ads"]', '[id*="googleads"]',
-    '[id*="doubleclick"]', '[id*="div-gpt-ad"]', '[id*="gpt_unit"]',
-    '[class*="ad-slot"]', '[class*="adSlot"]', '[class*="ads-slot"]',
-    '[class*="advert"]', '[class*="sponsor"]', '[class*="promoted"]',
-    '[class*="ad-container"]', '[class*="ad_wrapper"]', '[class*="ad-wrapper"]',
-    '[aria-label*="advertisement" i]', '[data-ad]', '[data-ad-unit]', '[data-ad-slot]',
-    'iframe[src*="doubleclick"]', 'iframe[src*="googlesyndication"]',
-    'iframe[src*="adnxs"]', 'iframe[src*="taboola"]', 'iframe[src*="outbrain"]',
-    '.ytp-ad-module', '.ytp-ad-overlay-container', '#player-ads', '#masthead-ad',
-    'ytd-ad-slot-renderer', 'ytd-promoted-sparkles-web-renderer', 'ytd-display-ad-renderer',
-    'ytd-promoted-video-renderer', 'ytd-in-feed-ad-layout-renderer'
-];
-
-function hidePlaceholders(root = document) {
-    try {
-        for (const sel of placeholderSelectors) {
-            root.querySelectorAll(sel).forEach(el => {
-                el.style.setProperty('display', 'none', 'important');
-                el.style.setProperty('visibility', 'hidden', 'important');
-                el.setAttribute('data-muse-hidden-ad', 'true');
-            });
-        }
-        // Collapse empty ad-shaped containers
-        root.querySelectorAll('div, section, aside').forEach(el => {
-            const id = (el.id || '').toLowerCase();
-            const cls = (el.className || '').toString().toLowerCase();
-            if ((/\bads?\b|advert|sponsor|promoted|dfp|gpt|taboola|outbrain/.test(id + ' ' + cls)) && el.offsetHeight < 260) {
-                el.style.setProperty('display', 'none', 'important');
-            }
-        });
-    } catch (_) {}
-}
-
-// Initial cosmetic cleanup
-if (document.documentElement) {
-    const style = document.createElement('style');
-    style.id = '__muse_generic_cosmetic';
-    style.textContent = placeholderSelectors.join(',') + '{display:none!important;visibility:hidden!important;min-height:0!important;height:0!important}';
-    document.documentElement.appendChild(style);
-}
-
-// Block tracking images/scripts/iframes added dynamically + cleanup placeholders
-const observer = new MutationObserver((mutations) => {
-    for (const mutation of mutations) {
-        for (const node of mutation.addedNodes) {
-            if (node.nodeType !== 1) continue;
-            if (node.tagName === 'SCRIPT' && node.src && isDomainBlocked(node.src)) { node.remove(); continue; }
-            if (node.tagName === 'IMG' && node.src && isDomainBlocked(node.src)) {
-                node.src = 'data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7';
-                node.style.display = 'none'; continue;
-            }
-            if (node.tagName === 'IFRAME' && node.src && isDomainBlocked(node.src)) { node.remove(); continue; }
-            hidePlaceholders(node);
-        }
-    }
-});
-
-function start() {
-    hidePlaceholders();
-    observer.observe(document.documentElement, { childList: true, subtree: true });
-    setInterval(hidePlaceholders, 2000);
-}
-if (document.readyState === 'loading') document.addEventListener('DOMContentLoaded', start, { once: true }); else start();
-})();
+(function() {
+'use strict';
+
+const blocked = new Set(window.__MUSE_BLOCKED_DOMAINS__ || []);
+
+function extractDomain(url) {
+    try {
+        const absolute = String(url || '').startsWith('http') ? String(url) : location.origin + String(url || '');
+        return new URL(absolute).hostname.replace(/^www\./, '');
+    } catch { return null; }
+}
+
+function isDomainBlocked(url) {
+    if (!url || typeof url !== 'string') return false;
+    const domain = extractDomain(url);
+    if (!domain) return false;
+    const parts = domain.split('.');
+    for (let i = 0; i < parts.length - 1; i++) {
+        if (blocked.has(parts.slice(i).join('.'))) return true;
+    }
+    return false;
+}
+
+function emptyResponseFor(url) {
+    const type = String(url || '').toLowerCase();
+    if (type.includes('.json') || type.includes('/api/') || type.includes('youtubei')) {
+        return new Response('{}', { status: 200, headers: { 'Content-Type': 'application/json' } });
+    }
+    if (type.includes('.js')) {
+        return new Response('/* blocked by Muse Shield */', { status: 200, headers: { 'Content-Type': 'application/javascript' } });
+    }
+    return new Response('', { status: 204 });
+}
+
+// Patch fetch
+const _fetch = window.fetch;
+window.fetch = function(input, init) {
+    const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
+    if (isDomainBlocked(url)) {
+        return Promise.resolve(emptyResponseFor(url));
+    }
+    return _fetch.apply(this, arguments);
+};
+
+// Patch XMLHttpRequest
+const _xhrOpen = XMLHttpRequest.prototype.open;
+XMLHttpRequest.prototype.open = function(method, url) {
+    this.__muse_blocked = isDomainBlocked(url);
+    return _xhrOpen.apply(this, arguments);
+};
+const _xhrSend = XMLHttpRequest.prototype.send;
+XMLHttpRequest.prototype.send = function() {
+    if (this.__muse_blocked) {
+        Object.defineProperty(this, 'readyState', { get: () => 4 });
+        Object.defineProperty(this, 'status', { get: () => 204 });
+        Object.defineProperty(this, 'responseText', { get: () => '' });
+        Object.defineProperty(this, 'response', { get: () => '' });
+        if (typeof this.onload === 'function') setTimeout(() => this.onload(new Event('load')), 0);
+        if (typeof this.onreadystatechange === 'function') setTimeout(() => this.onreadystatechange(new Event('readystatechange')), 0);
+        return;
+    }
+    return _xhrSend.apply(this, arguments);
+};
+
+// Patch WebSocket
+const _WS = window.WebSocket;
+if (_WS) {
+    window.WebSocket = function(url, protocols) {
+        if (isDomainBlocked(url)) {
+            return { readyState: 3, send() {}, close() {}, addEventListener() {}, removeEventListener() {} };
+        }
+        return new _WS(url, protocols);
+    };
+    Object.setPrototypeOf(window.WebSocket, _WS);
+}
+
+const placeholderSelectors = [
+    '[id^="google_ads_iframe"]', '[id*="google_ads"]', '[id*="googleads"]',
+    '[id*="doubleclick"]', '[id*="div-gpt-ad"]', '[id*="gpt_unit"]',
+    '[class*="ad-slot"]', '[class*="adSlot"]', '[class*="ads-slot"]',
+    '[class*="advert"]', '[class*="sponsor"]', '[class*="promoted"]',
+    '[class*="ad-container"]', '[class*="ad_wrapper"]', '[class*="ad-wrapper"]',
+    '[aria-label*="advertisement" i]', '[data-ad]', '[data-ad-unit]', '[data-ad-slot]',
+    'iframe[src*="doubleclick"]', 'iframe[src*="googlesyndication"]',
+    'iframe[src*="adnxs"]', 'iframe[src*="taboola"]', 'iframe[src*="outbrain"]',
+    '.ytp-ad-module', '.ytp-ad-overlay-container', '#player-ads', '#masthead-ad',
+    'ytd-ad-slot-renderer', 'ytd-promoted-sparkles-web-renderer', 'ytd-display-ad-renderer',
+    'ytd-promoted-video-renderer', 'ytd-in-feed-ad-layout-renderer'
+];
+
+function hidePlaceholders(root = document) {
+    try {
+        for (const sel of placeholderSelectors) {
+            root.querySelectorAll(sel).forEach(el => {
+                el.style.setProperty('display', 'none', 'important');
+                el.style.setProperty('visibility', 'hidden', 'important');
+                el.setAttribute('data-muse-hidden-ad', 'true');
+            });
+        }
+        // Collapse empty ad-shaped containers
+        root.querySelectorAll('div, section, aside').forEach(el => {
+            const id = (el.id || '').toLowerCase();
+            const cls = (el.className || '').toString().toLowerCase();
+            if ((/\bads?\b|advert|sponsor|promoted|dfp|gpt|taboola|outbrain/.test(id + ' ' + cls)) && el.offsetHeight < 260) {
+                el.style.setProperty('display', 'none', 'important');
+            }
+        });
+    } catch (_) {}
+}
+
+// Initial cosmetic cleanup
+if (document.documentElement) {
+    const style = document.createElement('style');
+    style.id = '__muse_generic_cosmetic';
+    style.textContent = placeholderSelectors.join(',') + '{display:none!important;visibility:hidden!important;min-height:0!important;height:0!important}';
+    document.documentElement.appendChild(style);
+}
+
+// Block tracking images/scripts/iframes added dynamically + cleanup placeholders
+const observer = new MutationObserver((mutations) => {
+    for (const mutation of mutations) {
+        for (const node of mutation.addedNodes) {
+            if (node.nodeType !== 1) continue;
+            if (node.tagName === 'SCRIPT' && node.src && isDomainBlocked(node.src)) { node.remove(); continue; }
+            if (node.tagName === 'IMG' && node.src && isDomainBlocked(node.src)) {
+                node.src = 'data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7';
+                node.style.display = 'none'; continue;
+            }
+            if (node.tagName === 'IFRAME' && node.src && isDomainBlocked(node.src)) { node.remove(); continue; }
+            hidePlaceholders(node);
+        }
+    }
+});
+
+function start() {
+    hidePlaceholders();
+    observer.observe(document.documentElement, { childList: true, subtree: true });
+    setInterval(hidePlaceholders, 2000);
+}
+if (document.readyState === 'loading') document.addEventListener('DOMContentLoaded', start, { once: true }); else start();
+})();

src-tauri/resources/scripts/autofill_suppress.js

@@ -1,71 +1,71 @@
-/**
- * Muse Autofill Suppression
- * 
- * Disables native browser autofill (WebView2/WKWebView/WebKitGTK) so that
- * the Muse password vault is the only credential source for form fields.
- *
- * Why: System WebView engines may show their own password save/autofill UIs
- * which conflict with our Stronghold-backed vault. We suppress them by:
- * 1. Setting autocomplete="off" on all form/input elements
- * 2. Using autocomplete="new-password" on password fields (tells browsers not to autofill)
- * 3. Adding data-* attributes that third-party password managers check
- * 4. Intercepting dynamically created inputs via MutationObserver
- *
- * Platform notes:
- * - Windows WebView2: general_autofill_enabled(false) is also set via Rust builder.
- *   Password save is already off by default (IsPasswordAutosaveEnabled=false).
- * - macOS WKWebView: No public API exists. This JS approach + the Rust
- *   .general_autofill_enabled(false) builder call (noop on mac but future-proof).
- * - Linux WebKitGTK: No built-in password manager UI — this is purely defensive.
- */
-(function() {
-  if (window.__museAutofillSuppressed) return;
-  window.__museAutofillSuppressed = true;
-
-  function suppress(el) {
-    if (!el || !el.setAttribute) return;
-    var tag = el.tagName;
-    if (tag === 'FORM') {
-      el.setAttribute('autocomplete', 'off');
-    } else if (tag === 'INPUT') {
-      var type = (el.type || '').toLowerCase();
-      if (type === 'password') {
-        // "new-password" tells browsers: don't autofill existing passwords
-        el.setAttribute('autocomplete', 'new-password');
-      } else if (type === 'email' || type === 'text' || type === 'tel') {
-        el.setAttribute('autocomplete', 'off');
-      }
-      // Suppress third-party password managers too
-      el.setAttribute('data-lpignore', 'true');       // LastPass
-      el.setAttribute('data-form-type', 'other');     // Dashlane
-      el.setAttribute('data-1p-ignore', 'true');      // 1Password
-    }
-  }
-
-  function suppressAll() {
-    document.querySelectorAll('form, input').forEach(suppress);
-  }
-
-  // Initial pass
-  if (document.readyState === 'loading') {
-    document.addEventListener('DOMContentLoaded', suppressAll);
-  } else {
-    suppressAll();
-  }
-
-  // Watch for dynamically added forms/inputs (SPAs)
-  var observer = new MutationObserver(function(mutations) {
-    for (var i = 0; i < mutations.length; i++) {
-      var added = mutations[i].addedNodes;
-      for (var j = 0; j < added.length; j++) {
-        var node = added[j];
-        if (node.nodeType !== 1) continue;
-        suppress(node);
-        if (node.querySelectorAll) {
-          node.querySelectorAll('form, input').forEach(suppress);
-        }
-      }
-    }
-  });
-  observer.observe(document.documentElement, { childList: true, subtree: true });
-})();
+/**
+ * Muse Autofill Suppression
+ * 
+ * Disables native browser autofill (WebView2/WKWebView/WebKitGTK) so that
+ * the Muse password vault is the only credential source for form fields.
+ *
+ * Why: System WebView engines may show their own password save/autofill UIs
+ * which conflict with our Stronghold-backed vault. We suppress them by:
+ * 1. Setting autocomplete="off" on all form/input elements
+ * 2. Using autocomplete="new-password" on password fields (tells browsers not to autofill)
+ * 3. Adding data-* attributes that third-party password managers check
+ * 4. Intercepting dynamically created inputs via MutationObserver
+ *
+ * Platform notes:
+ * - Windows WebView2: general_autofill_enabled(false) is also set via Rust builder.
+ *   Password save is already off by default (IsPasswordAutosaveEnabled=false).
+ * - macOS WKWebView: No public API exists. This JS approach + the Rust
+ *   .general_autofill_enabled(false) builder call (noop on mac but future-proof).
+ * - Linux WebKitGTK: No built-in password manager UI — this is purely defensive.
+ */
+(function() {
+  if (window.__museAutofillSuppressed) return;
+  window.__museAutofillSuppressed = true;
+
+  function suppress(el) {
+    if (!el || !el.setAttribute) return;
+    var tag = el.tagName;
+    if (tag === 'FORM') {
+      el.setAttribute('autocomplete', 'off');
+    } else if (tag === 'INPUT') {
+      var type = (el.type || '').toLowerCase();
+      if (type === 'password') {
+        // "new-password" tells browsers: don't autofill existing passwords
+        el.setAttribute('autocomplete', 'new-password');
+      } else if (type === 'email' || type === 'text' || type === 'tel') {
+        el.setAttribute('autocomplete', 'off');
+      }
+      // Suppress third-party password managers too
+      el.setAttribute('data-lpignore', 'true');       // LastPass
+      el.setAttribute('data-form-type', 'other');     // Dashlane
+      el.setAttribute('data-1p-ignore', 'true');      // 1Password
+    }
+  }
+
+  function suppressAll() {
+    document.querySelectorAll('form, input').forEach(suppress);
+  }
+
+  // Initial pass
+  if (document.readyState === 'loading') {
+    document.addEventListener('DOMContentLoaded', suppressAll);
+  } else {
+    suppressAll();
+  }
+
+  // Watch for dynamically added forms/inputs (SPAs)
+  var observer = new MutationObserver(function(mutations) {
+    for (var i = 0; i < mutations.length; i++) {
+      var added = mutations[i].addedNodes;
+      for (var j = 0; j < added.length; j++) {
+        var node = added[j];
+        if (node.nodeType !== 1) continue;
+        suppress(node);
+        if (node.querySelectorAll) {
+          node.querySelectorAll('form, input').forEach(suppress);
+        }
+      }
+    }
+  });
+  observer.observe(document.documentElement, { childList: true, subtree: true });
+})();

src-tauri/resources/scripts/canvas_noise.js

@@ -1,42 +1,42 @@
-(function() {
-'use strict';
-
-// Add imperceptible noise to canvas fingerprinting attempts
-const origToDataURL = HTMLCanvasElement.prototype.toDataURL;
-const origToBlob = HTMLCanvasElement.prototype.toBlob;
-const origGetImageData = CanvasRenderingContext2D.prototype.getImageData;
-
-function addNoise(ctx, canvas) {
-    try {
-        const w = Math.min(canvas.width, 2);
-        const h = Math.min(canvas.height, 2);
-        const imageData = ctx.getImageData.call(ctx, 0, 0, w, h);
-        // Modify one sub-pixel by ±1
-        const idx = Math.floor(Math.random() * imageData.data.length);
-        imageData.data[idx] = Math.max(0, Math.min(255, imageData.data[idx] + (Math.random() > 0.5 ? 1 : -1)));
-        ctx.putImageData(imageData, 0, 0);
-    } catch(e) { /* cross-origin or tainted canvas */ }
-}
-
-HTMLCanvasElement.prototype.toDataURL = function() {
-    const ctx = this.getContext('2d');
-    if (ctx) addNoise(ctx, this);
-    return origToDataURL.apply(this, arguments);
-};
-
-HTMLCanvasElement.prototype.toBlob = function() {
-    const ctx = this.getContext('2d');
-    if (ctx) addNoise(ctx, this);
-    return origToBlob.apply(this, arguments);
-};
-
-CanvasRenderingContext2D.prototype.getImageData = function() {
-    const result = origGetImageData.apply(this, arguments);
-    // Add noise to returned data for fingerprint resistance
-    if (result.data.length > 4) {
-        const idx = Math.floor(Math.random() * result.data.length);
-        result.data[idx] = Math.max(0, Math.min(255, result.data[idx] + (Math.random() > 0.5 ? 1 : -1)));
-    }
-    return result;
-};
-})();
+(function() {
+'use strict';
+
+// Add imperceptible noise to canvas fingerprinting attempts
+const origToDataURL = HTMLCanvasElement.prototype.toDataURL;
+const origToBlob = HTMLCanvasElement.prototype.toBlob;
+const origGetImageData = CanvasRenderingContext2D.prototype.getImageData;
+
+function addNoise(ctx, canvas) {
+    try {
+        const w = Math.min(canvas.width, 2);
+        const h = Math.min(canvas.height, 2);
+        const imageData = ctx.getImageData.call(ctx, 0, 0, w, h);
+        // Modify one sub-pixel by ±1
+        const idx = Math.floor(Math.random() * imageData.data.length);
+        imageData.data[idx] = Math.max(0, Math.min(255, imageData.data[idx] + (Math.random() > 0.5 ? 1 : -1)));
+        ctx.putImageData(imageData, 0, 0);
+    } catch(e) { /* cross-origin or tainted canvas */ }
+}
+
+HTMLCanvasElement.prototype.toDataURL = function() {
+    const ctx = this.getContext('2d');
+    if (ctx) addNoise(ctx, this);
+    return origToDataURL.apply(this, arguments);
+};
+
+HTMLCanvasElement.prototype.toBlob = function() {
+    const ctx = this.getContext('2d');
+    if (ctx) addNoise(ctx, this);
+    return origToBlob.apply(this, arguments);
+};
+
+CanvasRenderingContext2D.prototype.getImageData = function() {
+    const result = origGetImageData.apply(this, arguments);
+    // Add noise to returned data for fingerprint resistance
+    if (result.data.length > 4) {
+        const idx = Math.floor(Math.random() * result.data.length);
+        result.data[idx] = Math.max(0, Math.min(255, result.data[idx] + (Math.random() > 0.5 ? 1 : -1)));
+    }
+    return result;
+};
+})();

src-tauri/resources/scripts/cookie_consent.js

@@ -1,72 +1,72 @@
-(function() {
-'use strict';
-
-const rejectSelectors = [
-    '[id*="reject"]', '[class*="reject"]',
-    '[id*="decline"]', '[class*="decline"]',
-    'button[aria-label*="Reject"]', 'button[aria-label*="reject"]',
-    '#onetrust-reject-all-handler',
-    '.js-cookie-decline',
-    '[data-testid="cookie-policy-dialog-reject-button"]',
-    '[class*="cookie"] [class*="reject"]',
-    '[class*="consent"] [class*="reject"]',
-    '[id*="consent"] button[class*="secondary"]',
-    '.fc-cta-do-not-consent',
-    '#CybotCookiebotDialogBodyButtonDecline',
-    '[class*="CookieConsent"] button:last-child',
-];
-
-const bannerSelectors = [
-    '[class*="cookie-banner"]', '[class*="cookie-notice"]',
-    '[class*="consent-banner"]', '[class*="consent-modal"]',
-    '[id*="cookie-banner"]', '[id*="cookie-notice"]',
-    '#onetrust-banner-sdk', '.fc-consent-root',
-    '#CybotCookiebotDialog', '[class*="CookieConsent"]',
-    '[class*="gdpr"]', '[id*="gdpr"]',
-];
-
-function clickReject() {
-    for (const selector of rejectSelectors) {
-        const btn = document.querySelector(selector);
-        if (btn && btn.offsetParent !== null) {
-            btn.click();
-            return true;
-        }
-    }
-    return false;
-}
-
-function hideBanners() {
-    for (const selector of bannerSelectors) {
-        const el = document.querySelector(selector);
-        if (el && el.offsetParent !== null) {
-            el.style.display = 'none';
-        }
-    }
-}
-
-function attempt() {
-    if (clickReject()) return true;
-    hideBanners();
-    return false;
-}
-
-// Try immediately
-if (!attempt()) {
-    // Watch for dynamically added consent banners
-    const obs = new MutationObserver(() => {
-        if (attempt()) obs.disconnect();
-    });
-    if (document.body) {
-        obs.observe(document.body, { childList: true, subtree: true });
-    } else {
-        document.addEventListener('DOMContentLoaded', () => {
-            if (!attempt()) {
-                obs.observe(document.body, { childList: true, subtree: true });
-            }
-        });
-    }
-    // Safety timeout
-    setTimeout(() => { attempt(); obs.disconnect(); }, 8000);
-}
-})();
+(function() {
+'use strict';
+
+const rejectSelectors = [
+    '[id*="reject"]', '[class*="reject"]',
+    '[id*="decline"]', '[class*="decline"]',
+    'button[aria-label*="Reject"]', 'button[aria-label*="reject"]',
+    '#onetrust-reject-all-handler',
+    '.js-cookie-decline',
+    '[data-testid="cookie-policy-dialog-reject-button"]',
+    '[class*="cookie"] [class*="reject"]',
+    '[class*="consent"] [class*="reject"]',
+    '[id*="consent"] button[class*="secondary"]',
+    '.fc-cta-do-not-consent',
+    '#CybotCookiebotDialogBodyButtonDecline',
+    '[class*="CookieConsent"] button:last-child',
+];
+
+const bannerSelectors = [
+    '[class*="cookie-banner"]', '[class*="cookie-notice"]',
+    '[class*="consent-banner"]', '[class*="consent-modal"]',
+    '[id*="cookie-banner"]', '[id*="cookie-notice"]',
+    '#onetrust-banner-sdk', '.fc-consent-root',
+    '#CybotCookiebotDialog', '[class*="CookieConsent"]',
+    '[class*="gdpr"]', '[id*="gdpr"]',
+];
+
+function clickReject() {
+    for (const selector of rejectSelectors) {
+        const btn = document.querySelector(selector);
+        if (btn && btn.offsetParent !== null) {
+            btn.click();
+            return true;
+        }
+    }
+    return false;
+}
+
+function hideBanners() {
+    for (const selector of bannerSelectors) {
+        const el = document.querySelector(selector);
+        if (el && el.offsetParent !== null) {
+            el.style.display = 'none';
+        }
+    }
+}
+
+function attempt() {
+    if (clickReject()) return true;
+    hideBanners();
+    return false;
+}
+
+// Try immediately
+if (!attempt()) {
+    // Watch for dynamically added consent banners
+    const obs = new MutationObserver(() => {
+        if (attempt()) obs.disconnect();
+    });
+    if (document.body) {
+        obs.observe(document.body, { childList: true, subtree: true });
+    } else {
+        document.addEventListener('DOMContentLoaded', () => {
+            if (!attempt()) {
+                obs.observe(document.body, { childList: true, subtree: true });
+            }
+        });
+    }
+    // Safety timeout
+    setTimeout(() => { attempt(); obs.disconnect(); }, 8000);
+}
+})();

src-tauri/resources/scripts/hover_overlay.js

@@ -1,144 +1,144 @@
-/* Refstudio hover overlay: + ADD button. Prevents click-through to underlying links. */
-(function () {
-  if (window.__muse_hover_v7) return;
-  window.__muse_hover_v7 = true;
-
-  var MIN = 90;
-  var activeImg = null;
-  var badge = null;
-  var showTimer = 0;
-  var hideTimer = 0;
-
-  function injectCSS() {
-    if (document.getElementById('__muse_badge_css')) return;
-    var s = document.createElement('style'); s.id = '__muse_badge_css';
-    s.textContent = '#__muse_add_badge{all:initial;position:fixed;z-index:2147483647;display:flex;align-items:center;gap:4px;padding:7px 14px;background:rgba(255,255,255,0.97);color:#111;border-radius:999px;box-shadow:0 4px 20px rgba(0,0,0,0.3),0 0 0 1px rgba(0,0,0,0.05);font:700 11px/1 -apple-system,BlinkMacSystemFont,"Inter",sans-serif;cursor:pointer;opacity:0;transform:translateY(4px) scale(0.92);transition:opacity .15s,transform .15s;pointer-events:none;letter-spacing:0.02em;user-select:none}#__muse_add_badge.v{opacity:1;transform:none;pointer-events:auto}#__muse_add_badge:hover{background:#fff;box-shadow:0 6px 28px rgba(0,0,0,0.35),0 0 0 1px rgba(0,0,0,0.08);transform:scale(1.05)}#__muse_add_badge:active{transform:scale(0.94)}#__muse_add_badge svg{width:14px;height:14px;stroke-width:2.5}#__mt7{all:initial;position:fixed;left:50%;bottom:24px;transform:translateX(-50%) translateY(8px);z-index:2147483647;padding:9px 16px;border-radius:999px;background:rgba(20,20,20,.97);border:1px solid rgba(255,255,255,.1);box-shadow:0 10px 36px rgba(0,0,0,.5);font:600 12px/1 -apple-system,sans-serif;color:#fff;opacity:0;transition:opacity .16s,transform .16s;pointer-events:none}#__mt7.s{opacity:1;transform:translateX(-50%) translateY(0)}';
-    (document.head || document.documentElement).appendChild(s);
-  }
-
-  function enc(v) { return encodeURIComponent(v == null ? '' : String(v)); }
-  function absUrl(s) { try { return new URL(s || '', location.href).href; } catch (_) { return s || ''; } }
-
-  function toast(m) {
-    var t = document.getElementById('__mt7');
-    if (!t) { t = document.createElement('div'); t.id = '__mt7'; document.documentElement.appendChild(t); }
-    t.textContent = m; t.classList.add('s');
-    clearTimeout(t._t); t._t = setTimeout(function () { t.classList.remove('s'); }, 1500);
-  }
-
-  function addToBoard(url, title, w, h) {
-    var u = 'muse-action://board?url=' + enc(url) + '&source=' + enc(location.href) + '&title=' + enc(title) + '&w=' + enc(w) + '&h=' + enc(h);
-    // Use an iframe to trigger navigation without changing current page
-    var frame = document.createElement('iframe');
-    frame.style.cssText = 'display:none;width:0;height:0;border:none;position:absolute;';
-    document.documentElement.appendChild(frame);
-    try { frame.contentWindow.location.href = u; } catch (_) {
-      // Fallback: direct navigation (Rust will block it via on_navigation returning false)
-      try { window.location.href = u; } catch (_2) {}
-    }
-    setTimeout(function () { if (frame.parentNode) frame.parentNode.removeChild(frame); }, 200);
-  }
-
-  function pos(el, img) {
-    var r = img.getBoundingClientRect();
-    // Position at top-right corner of the image (where user expects action buttons)
-    var x = r.right - 70;
-    var y = r.top + 8;
-    if (x < r.left + 8) x = r.left + 8;
-    if (x > innerWidth - 80) x = innerWidth - 80;
-    if (y < 4) y = 4;
-    if (y > innerHeight - 40) y = innerHeight - 40;
-    el.style.left = x + 'px';
-    el.style.top = y + 'px';
-  }
-
-  function hide() {
-    if (!badge) return;
-    badge.classList.remove('v');
-    activeImg = null;
-    setTimeout(function () { if (badge && !badge.classList.contains('v')) badge.style.pointerEvents = 'none'; }, 160);
-  }
-
-  function show(img) {
-    if (img === activeImg && badge && badge.classList.contains('v')) return;
-    injectCSS();
-    activeImg = img;
-
-    if (!badge) {
-      badge = document.createElement('div');
-      badge.id = '__muse_add_badge';
-      badge.innerHTML = '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round"><line x1="12" y1="5" x2="12" y2="19"/><line x1="5" y1="12" x2="19" y2="12"/></svg> ADD';
-
-      // Use mousedown + prevent everything to ensure no link/image click passes through
-      badge.addEventListener('mousedown', function (e) {
-        e.preventDefault();
-        e.stopPropagation();
-        e.stopImmediatePropagation();
-      }, true);
-
-      badge.addEventListener('click', function (e) {
-        e.preventDefault();
-        e.stopPropagation();
-        e.stopImmediatePropagation();
-        if (!activeImg) return;
-        var url = absUrl(activeImg.currentSrc || activeImg.src);
-        var title = activeImg.alt || activeImg.title || document.title || 'Reference';
-        var w = activeImg.naturalWidth || Math.round(activeImg.getBoundingClientRect().width);
-        var h = activeImg.naturalHeight || Math.round(activeImg.getBoundingClientRect().height);
-        addToBoard(url, title, w, h);
-        toast('✓ Added to Board');
-      }, true);
-
-      // Prevent any pointer event from bubbling to parent links
-      badge.addEventListener('pointerdown', function (e) {
-        e.stopPropagation();
-        e.stopImmediatePropagation();
-      }, true);
-
-      badge.addEventListener('pointerup', function (e) {
-        e.stopPropagation();
-        e.stopImmediatePropagation();
-      }, true);
-
-      badge.onmouseenter = function () { clearTimeout(hideTimer); };
-      badge.onmouseleave = function () { hideTimer = setTimeout(hide, 300); };
-
-      document.documentElement.appendChild(badge);
-    }
-
-    pos(badge, activeImg);
-    badge.offsetHeight;
-    badge.classList.add('v');
-  }
-
-  // Only show on IMG elements, not on elements inside links that happen to be images
-  function isValidTarget(el) {
-    if (!el || el.tagName !== 'IMG') return false;
-    var r = el.getBoundingClientRect();
-    return r.width >= MIN && r.height >= MIN;
-  }
-
-  document.addEventListener('mouseover', function (e) {
-    var t = e.target;
-    if (!isValidTarget(t)) return;
-    if (t === activeImg) { clearTimeout(hideTimer); return; }
-    clearTimeout(hideTimer); clearTimeout(showTimer);
-    showTimer = setTimeout(function () { show(t); }, 250);
-  }, true);
-
-  document.addEventListener('mouseout', function (e) {
-    var t = e.target;
-    if (!t || t.tagName !== 'IMG' || t !== activeImg) return;
-    var rel = e.relatedTarget;
-    if (badge && (badge === rel || badge.contains && badge.contains(rel))) return;
-    clearTimeout(showTimer);
-    hideTimer = setTimeout(hide, 350);
-  }, true);
-
-  window.addEventListener('scroll', function () {
-    if (!badge || !activeImg) return;
-    var r = activeImg.getBoundingClientRect();
-    if (r.bottom < -20 || r.top > innerHeight + 20) hide();
-    else pos(badge, activeImg);
-  }, { passive: true });
-})();
+/* Refstudio hover overlay: + ADD button. Prevents click-through to underlying links. */
+(function () {
+  if (window.__muse_hover_v7) return;
+  window.__muse_hover_v7 = true;
+
+  var MIN = 90;
+  var activeImg = null;
+  var badge = null;
+  var showTimer = 0;
+  var hideTimer = 0;
+
+  function injectCSS() {
+    if (document.getElementById('__muse_badge_css')) return;
+    var s = document.createElement('style'); s.id = '__muse_badge_css';
+    s.textContent = '#__muse_add_badge{all:initial;position:fixed;z-index:2147483647;display:flex;align-items:center;gap:4px;padding:7px 14px;background:rgba(255,255,255,0.97);color:#111;border-radius:999px;box-shadow:0 4px 20px rgba(0,0,0,0.3),0 0 0 1px rgba(0,0,0,0.05);font:700 11px/1 -apple-system,BlinkMacSystemFont,"Inter",sans-serif;cursor:pointer;opacity:0;transform:translateY(4px) scale(0.92);transition:opacity .15s,transform .15s;pointer-events:none;letter-spacing:0.02em;user-select:none}#__muse_add_badge.v{opacity:1;transform:none;pointer-events:auto}#__muse_add_badge:hover{background:#fff;box-shadow:0 6px 28px rgba(0,0,0,0.35),0 0 0 1px rgba(0,0,0,0.08);transform:scale(1.05)}#__muse_add_badge:active{transform:scale(0.94)}#__muse_add_badge svg{width:14px;height:14px;stroke-width:2.5}#__mt7{all:initial;position:fixed;left:50%;bottom:24px;transform:translateX(-50%) translateY(8px);z-index:2147483647;padding:9px 16px;border-radius:999px;background:rgba(20,20,20,.97);border:1px solid rgba(255,255,255,.1);box-shadow:0 10px 36px rgba(0,0,0,.5);font:600 12px/1 -apple-system,sans-serif;color:#fff;opacity:0;transition:opacity .16s,transform .16s;pointer-events:none}#__mt7.s{opacity:1;transform:translateX(-50%) translateY(0)}';
+    (document.head || document.documentElement).appendChild(s);
+  }
+
+  function enc(v) { return encodeURIComponent(v == null ? '' : String(v)); }
+  function absUrl(s) { try { return new URL(s || '', location.href).href; } catch (_) { return s || ''; } }
+
+  function toast(m) {
+    var t = document.getElementById('__mt7');
+    if (!t) { t = document.createElement('div'); t.id = '__mt7'; document.documentElement.appendChild(t); }
+    t.textContent = m; t.classList.add('s');
+    clearTimeout(t._t); t._t = setTimeout(function () { t.classList.remove('s'); }, 1500);
+  }
+
+  function addToBoard(url, title, w, h) {
+    var u = 'muse-action://board?url=' + enc(url) + '&source=' + enc(location.href) + '&title=' + enc(title) + '&w=' + enc(w) + '&h=' + enc(h);
+    // Use an iframe to trigger navigation without changing current page
+    var frame = document.createElement('iframe');
+    frame.style.cssText = 'display:none;width:0;height:0;border:none;position:absolute;';
+    document.documentElement.appendChild(frame);
+    try { frame.contentWindow.location.href = u; } catch (_) {
+      // Fallback: direct navigation (Rust will block it via on_navigation returning false)
+      try { window.location.href = u; } catch (_2) {}
+    }
+    setTimeout(function () { if (frame.parentNode) frame.parentNode.removeChild(frame); }, 200);
+  }
+
+  function pos(el, img) {
+    var r = img.getBoundingClientRect();
+    // Position at top-right corner of the image (where user expects action buttons)
+    var x = r.right - 70;
+    var y = r.top + 8;
+    if (x < r.left + 8) x = r.left + 8;
+    if (x > innerWidth - 80) x = innerWidth - 80;
+    if (y < 4) y = 4;
+    if (y > innerHeight - 40) y = innerHeight - 40;
+    el.style.left = x + 'px';
+    el.style.top = y + 'px';
+  }
+
+  function hide() {
+    if (!badge) return;
+    badge.classList.remove('v');
+    activeImg = null;
+    setTimeout(function () { if (badge && !badge.classList.contains('v')) badge.style.pointerEvents = 'none'; }, 160);
+  }
+
+  function show(img) {
+    if (img === activeImg && badge && badge.classList.contains('v')) return;
+    injectCSS();
+    activeImg = img;
+
+    if (!badge) {
+      badge = document.createElement('div');
+      badge.id = '__muse_add_badge';
+      badge.innerHTML = '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-linecap="round" stroke-linejoin="round"><line x1="12" y1="5" x2="12" y2="19"/><line x1="5" y1="12" x2="19" y2="12"/></svg> ADD';
+
+      // Use mousedown + prevent everything to ensure no link/image click passes through
+      badge.addEventListener('mousedown', function (e) {
+        e.preventDefault();
+        e.stopPropagation();
+        e.stopImmediatePropagation();
+      }, true);
+
+      badge.addEventListener('click', function (e) {
+        e.preventDefault();
+        e.stopPropagation();
+        e.stopImmediatePropagation();
+        if (!activeImg) return;
+        var url = absUrl(activeImg.currentSrc || activeImg.src);
+        var title = activeImg.alt || activeImg.title || document.title || 'Reference';
+        var w = activeImg.naturalWidth || Math.round(activeImg.getBoundingClientRect().width);
+        var h = activeImg.naturalHeight || Math.round(activeImg.getBoundingClientRect().height);
+        addToBoard(url, title, w, h);
+        toast('✓ Added to Board');
+      }, true);
+
+      // Prevent any pointer event from bubbling to parent links
+      badge.addEventListener('pointerdown', function (e) {
+        e.stopPropagation();
+        e.stopImmediatePropagation();
+      }, true);
+
+      badge.addEventListener('pointerup', function (e) {
+        e.stopPropagation();
+        e.stopImmediatePropagation();
+      }, true);
+
+      badge.onmouseenter = function () { clearTimeout(hideTimer); };
+      badge.onmouseleave = function () { hideTimer = setTimeout(hide, 300); };
+
+      document.documentElement.appendChild(badge);
+    }
+
+    pos(badge, activeImg);
+    badge.offsetHeight;
+    badge.classList.add('v');
+  }
+
+  // Only show on IMG elements, not on elements inside links that happen to be images
+  function isValidTarget(el) {
+    if (!el || el.tagName !== 'IMG') return false;
+    var r = el.getBoundingClientRect();
+    return r.width >= MIN && r.height >= MIN;
+  }
+
+  document.addEventListener('mouseover', function (e) {
+    var t = e.target;
+    if (!isValidTarget(t)) return;
+    if (t === activeImg) { clearTimeout(hideTimer); return; }
+    clearTimeout(hideTimer); clearTimeout(showTimer);
+    showTimer = setTimeout(function () { show(t); }, 250);
+  }, true);
+
+  document.addEventListener('mouseout', function (e) {
+    var t = e.target;
+    if (!t || t.tagName !== 'IMG' || t !== activeImg) return;
+    var rel = e.relatedTarget;
+    if (badge && (badge === rel || badge.contains && badge.contains(rel))) return;
+    clearTimeout(showTimer);
+    hideTimer = setTimeout(hide, 350);
+  }, true);
+
+  window.addEventListener('scroll', function () {
+    if (!badge || !activeImg) return;
+    var r = activeImg.getBoundingClientRect();
+    if (r.bottom < -20 || r.top > innerHeight + 20) hide();
+    else pos(badge, activeImg);
+  }, { passive: true });
+})();

src-tauri/resources/scripts/vault_detector.js

@@ -1,159 +1,159 @@
-/**
- * Muse Password Vault — Form Detection & Autofill
- * 
- * Injected into every child webview page via initialization_script.
- * Detects login forms and signals Rust via muse-action://vault beacon.
- * Autofill is triggered separately by Rust calling window.__museAutofill().
- *
- * ISOLATION: This runs inside the app's own WebView profile, completely
- * separate from the system browser (Edge/Safari/etc). No credential leakage.
- */
-(function() {
-  'use strict';
-  if (window.__museVaultDetector) return;
-  window.__museVaultDetector = true;
-
-  // ─── Beacon to Rust via muse-action:// protocol ──────────────────────
-  function beacon(action, data) {
-    var params = [];
-    data.action = action;
-    for (var k in data) {
-      if (data[k] != null) params.push(encodeURIComponent(k) + '=' + encodeURIComponent(data[k]));
-    }
-    var img = new Image();
-    img.src = 'muse-action://vault?' + params.join('&');
-  }
-
-  // ─── Find password and username fields ───────────────────────────────
-  function findPasswordFields() {
-    return Array.from(document.querySelectorAll('input[type="password"]:not([disabled]):not([hidden])'));
-  }
-
-  function findUsernameFor(pwField) {
-    var form = pwField.closest('form') || document;
-    var inputs = Array.from(form.querySelectorAll('input'));
-    var pwIdx = inputs.indexOf(pwField);
-    var candidates = inputs.filter(function(el, idx) {
-      if (idx >= pwIdx) return false;
-      var t = (el.type || '').toLowerCase();
-      if (t === 'hidden' || t === 'submit' || t === 'button' || t === 'checkbox' || t === 'radio') return false;
-      var n = (el.name + el.id + el.autocomplete).toLowerCase();
-      if (t === 'email' || t === 'text' || t === 'tel') return true;
-      if (n.match(/user|email|login|acct|phone/)) return true;
-      return false;
-    });
-    return candidates.pop() || null;
-  }
-
-  // ─── Capture credentials on form submission ──────────────────────────
-  var lastCaptured = null;
-
-  function captureFromField(pwField) {
-    if (!pwField || !pwField.value) return null;
-    var userField = findUsernameFor(pwField);
-    return { origin: location.origin, username: userField ? userField.value : '', password: pwField.value };
-  }
-
-  function onFormSubmit(e) {
-    var form = e.target || e.currentTarget;
-    var pw = form.querySelector('input[type="password"]');
-    var creds = captureFromField(pw);
-    if (creds && creds.password) {
-      lastCaptured = creds;
-      beacon('save-prompt', creds);
-    }
-  }
-
-  function attachFormListeners() {
-    document.querySelectorAll('form').forEach(function(form) {
-      if (form.__museVault) return;
-      form.__museVault = true;
-      form.addEventListener('submit', onFormSubmit, true);
-    });
-  }
-
-  // ─── SPA detection: intercept network calls while password field has value
-  var origFetch = window.fetch;
-  window.fetch = function() {
-    checkPendingCredentials();
-    return origFetch.apply(this, arguments);
-  };
-  var origXHRSend = XMLHttpRequest.prototype.send;
-  XMLHttpRequest.prototype.send = function() {
-    checkPendingCredentials();
-    return origXHRSend.apply(this, arguments);
-  };
-
-  function checkPendingCredentials() {
-    var pwFields = findPasswordFields();
-    for (var i = 0; i < pwFields.length; i++) {
-      var creds = captureFromField(pwFields[i]);
-      if (creds && creds.password && (!lastCaptured || lastCaptured.password !== creds.password)) {
-        lastCaptured = creds;
-        // Delay — if page navigates away or password field disappears, login likely succeeded
-        setTimeout(function() {
-          if (lastCaptured) beacon('save-prompt', lastCaptured);
-        }, 2000);
-      }
-    }
-  }
-
-  // ─── Submit button click detection (for forms without <form> element)
-  function attachButtonListeners() {
-    document.querySelectorAll('button[type="submit"], input[type="submit"], button:not([type])').forEach(function(btn) {
-      if (btn.__museVault) return;
-      btn.__museVault = true;
-      btn.addEventListener('click', function() {
-        setTimeout(checkPendingCredentials, 100);
-      }, true);
-    });
-  }
-
-  // ─── MutationObserver for dynamically created forms (SPAs) ───────────
-  var observer = new MutationObserver(function() {
-    attachFormListeners();
-    attachButtonListeners();
-  });
-  observer.observe(document.documentElement, { childList: true, subtree: true });
-
-  // Initial scan
-  if (document.readyState === 'loading') {
-    document.addEventListener('DOMContentLoaded', function() { attachFormListeners(); attachButtonListeners(); });
-  } else {
-    attachFormListeners();
-    attachButtonListeners();
-  }
-
-  // ─── AUTOFILL: called from Rust via webview.eval() ───────────────────
-  // Rust calls: webview.eval("window.__museAutofill('username', 'password')")
-  window.__museAutofill = function(username, password) {
-    var pwFields = findPasswordFields();
-    if (!pwFields.length) return;
-    var pwField = pwFields[0];
-    var userField = findUsernameFor(pwField);
-
-    function fill(el, value) {
-      if (!el || !value) return;
-      // Use native setter to bypass React/Vue/Angular controlled input
-      var setter = Object.getOwnPropertyDescriptor(window.HTMLInputElement.prototype, 'value').set;
-      setter.call(el, value);
-      el.dispatchEvent(new Event('input', { bubbles: true }));
-      el.dispatchEvent(new Event('change', { bubbles: true }));
-      el.dispatchEvent(new Event('blur', { bubbles: true }));
-    }
-
-    if (userField) fill(userField, username);
-    fill(pwField, password);
-  };
-
-  // ─── Notify Rust that this page has login fields (for autofill offer) ─
-  function notifyLoginPage() {
-    var pwFields = findPasswordFields();
-    if (pwFields.length > 0) {
-      beacon('has-login-form', { origin: location.origin, fields: pwFields.length });
-    }
-  }
-
-  // Check after short delay to let SPA render
-  setTimeout(notifyLoginPage, 800);
-})();
+/**
+ * Muse Password Vault — Form Detection & Autofill
+ * 
+ * Injected into every child webview page via initialization_script.
+ * Detects login forms and signals Rust via muse-action://vault beacon.
+ * Autofill is triggered separately by Rust calling window.__museAutofill().
+ *
+ * ISOLATION: This runs inside the app's own WebView profile, completely
+ * separate from the system browser (Edge/Safari/etc). No credential leakage.
+ */
+(function() {
+  'use strict';
+  if (window.__museVaultDetector) return;
+  window.__museVaultDetector = true;
+
+  // ─── Beacon to Rust via muse-action:// protocol ──────────────────────
+  function beacon(action, data) {
+    var params = [];
+    data.action = action;
+    for (var k in data) {
+      if (data[k] != null) params.push(encodeURIComponent(k) + '=' + encodeURIComponent(data[k]));
+    }
+    var img = new Image();
+    img.src = 'muse-action://vault?' + params.join('&');
+  }
+
+  // ─── Find password and username fields ───────────────────────────────
+  function findPasswordFields() {
+    return Array.from(document.querySelectorAll('input[type="password"]:not([disabled]):not([hidden])'));
+  }
+
+  function findUsernameFor(pwField) {
+    var form = pwField.closest('form') || document;
+    var inputs = Array.from(form.querySelectorAll('input'));
+    var pwIdx = inputs.indexOf(pwField);
+    var candidates = inputs.filter(function(el, idx) {
+      if (idx >= pwIdx) return false;
+      var t = (el.type || '').toLowerCase();
+      if (t === 'hidden' || t === 'submit' || t === 'button' || t === 'checkbox' || t === 'radio') return false;
+      var n = (el.name + el.id + el.autocomplete).toLowerCase();
+      if (t === 'email' || t === 'text' || t === 'tel') return true;
+      if (n.match(/user|email|login|acct|phone/)) return true;
+      return false;
+    });
+    return candidates.pop() || null;
+  }
+
+  // ─── Capture credentials on form submission ──────────────────────────
+  var lastCaptured = null;
+
+  function captureFromField(pwField) {
+    if (!pwField || !pwField.value) return null;
+    var userField = findUsernameFor(pwField);
+    return { origin: location.origin, username: userField ? userField.value : '', password: pwField.value };
+  }
+
+  function onFormSubmit(e) {
+    var form = e.target || e.currentTarget;
+    var pw = form.querySelector('input[type="password"]');
+    var creds = captureFromField(pw);
+    if (creds && creds.password) {
+      lastCaptured = creds;
+      beacon('save-prompt', creds);
+    }
+  }
+
+  function attachFormListeners() {
+    document.querySelectorAll('form').forEach(function(form) {
+      if (form.__museVault) return;
+      form.__museVault = true;
+      form.addEventListener('submit', onFormSubmit, true);
+    });
+  }
+
+  // ─── SPA detection: intercept network calls while password field has value
+  var origFetch = window.fetch;
+  window.fetch = function() {
+    checkPendingCredentials();
+    return origFetch.apply(this, arguments);
+  };
+  var origXHRSend = XMLHttpRequest.prototype.send;
+  XMLHttpRequest.prototype.send = function() {
+    checkPendingCredentials();
+    return origXHRSend.apply(this, arguments);
+  };
+
+  function checkPendingCredentials() {
+    var pwFields = findPasswordFields();
+    for (var i = 0; i < pwFields.length; i++) {
+      var creds = captureFromField(pwFields[i]);
+      if (creds && creds.password && (!lastCaptured || lastCaptured.password !== creds.password)) {
+        lastCaptured = creds;
+        // Delay — if page navigates away or password field disappears, login likely succeeded
+        setTimeout(function() {
+          if (lastCaptured) beacon('save-prompt', lastCaptured);
+        }, 2000);
+      }
+    }
+  }
+
+  // ─── Submit button click detection (for forms without <form> element)
+  function attachButtonListeners() {
+    document.querySelectorAll('button[type="submit"], input[type="submit"], button:not([type])').forEach(function(btn) {
+      if (btn.__museVault) return;
+      btn.__museVault = true;
+      btn.addEventListener('click', function() {
+        setTimeout(checkPendingCredentials, 100);
+      }, true);
+    });
+  }
+
+  // ─── MutationObserver for dynamically created forms (SPAs) ───────────
+  var observer = new MutationObserver(function() {
+    attachFormListeners();
+    attachButtonListeners();
+  });
+  observer.observe(document.documentElement, { childList: true, subtree: true });
+
+  // Initial scan
+  if (document.readyState === 'loading') {
+    document.addEventListener('DOMContentLoaded', function() { attachFormListeners(); attachButtonListeners(); });
+  } else {
+    attachFormListeners();
+    attachButtonListeners();
+  }
+
+  // ─── AUTOFILL: called from Rust via webview.eval() ───────────────────
+  // Rust calls: webview.eval("window.__museAutofill('username', 'password')")
+  window.__museAutofill = function(username, password) {
+    var pwFields = findPasswordFields();
+    if (!pwFields.length) return;
+    var pwField = pwFields[0];
+    var userField = findUsernameFor(pwField);
+
+    function fill(el, value) {
+      if (!el || !value) return;
+      // Use native setter to bypass React/Vue/Angular controlled input
+      var setter = Object.getOwnPropertyDescriptor(window.HTMLInputElement.prototype, 'value').set;
+      setter.call(el, value);
+      el.dispatchEvent(new Event('input', { bubbles: true }));
+      el.dispatchEvent(new Event('change', { bubbles: true }));
+      el.dispatchEvent(new Event('blur', { bubbles: true }));
+    }
+
+    if (userField) fill(userField, username);
+    fill(pwField, password);
+  };
+
+  // ─── Notify Rust that this page has login fields (for autofill offer) ─
+  function notifyLoginPage() {
+    var pwFields = findPasswordFields();
+    if (pwFields.length > 0) {
+      beacon('has-login-form', { origin: location.origin, fields: pwFields.length });
+    }
+  }
+
+  // Check after short delay to let SPA render
+  setTimeout(notifyLoginPage, 800);
+})();

src-tauri/resources/scripts/video_ad_scriptlets.js

@@ -1,314 +1,314 @@
-/**
- * MUSE Video Ad Scriptlets v2
- * Injected via initialization_script BEFORE any page JavaScript runs.
- * 
- * UNIVERSAL approach — not YouTube-specific. Works by:
- * 1. Patching JSON.parse/Response.json to prune known ad properties
- * 2. Blocking known ad-serving fetch/XHR patterns
- * 3. Blocking VAST/VPAID/IMA SDK script loading
- * 4. Auto-skipping video ads when detected
- * 5. Collapsing blank ad containers
- *
- * TIMING IS CRITICAL: runs before ANY page JavaScript.
- */
-(function() {
-'use strict';
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// UNIVERSAL JSON PRUNE — removes ad-related properties from ALL parsed JSON
-// Works on YouTube, Dailymotion, Reddit, news sites, any site using JSON APIs
-// ═══════════════════════════════════════════════════════════════════════════════
-
-const AD_JSON_KEYS = new Set([
-    'adPlacements', 'playerAds', 'adSlots', 'adBreaks', 'adBreakServiceRenderer',
-    'promotedSparklesWebRenderer', 'promotedVideoRenderer', 'adRenderer',
-    'displayAdRenderer', 'promoted', 'sponsoredAd', 'sponsoredContent',
-    'ad_placements', 'player_ads', 'ad_slots', 'ad_breaks',
-    'vastUrl', 'vastXml', 'vpaidUrl',
-    'adTagUrl', 'adUnit', 'adSource',
-]);
-
-const AD_JSON_NESTED = [
-    'auxiliaryUi.messageRenderers.enforcementMessageViewModel',
-    'overlay.playerBarActionRenderer',
-];
-
-function deepPruneAdKeys(obj, depth) {
-    if (!obj || typeof obj !== 'object' || depth > 8) return;
-    if (Array.isArray(obj)) {
-        obj.forEach(item => deepPruneAdKeys(item, depth + 1));
-        return;
-    }
-    for (const key of Object.keys(obj)) {
-        if (AD_JSON_KEYS.has(key)) {
-            delete obj[key];
-        } else if (typeof obj[key] === 'object') {
-            deepPruneAdKeys(obj[key], depth + 1);
-        }
-    }
-}
-
-function pruneNested(obj, path) {
-    const parts = path.split('.');
-    let target = obj;
-    for (let i = 0; i < parts.length - 1; i++) {
-        if (!target || typeof target !== 'object') return;
-        target = target[parts[i]];
-    }
-    if (target && typeof target === 'object') {
-        delete target[parts[parts.length - 1]];
-    }
-}
-
-// Patch JSON.parse — universal
-const _JSONParse = JSON.parse;
-JSON.parse = function() {
-    const result = _JSONParse.apply(this, arguments);
-    if (result && typeof result === 'object') {
-        deepPruneAdKeys(result, 0);
-        for (const path of AD_JSON_NESTED) {
-            pruneNested(result, path);
-        }
-    }
-    return result;
-};
-
-// Patch Response.prototype.json — universal for fetch APIs
-const _responseJson = Response.prototype.json;
-Response.prototype.json = function() {
-    return _responseJson.apply(this, arguments).then(data => {
-        if (data && typeof data === 'object') {
-            deepPruneAdKeys(data, 0);
-            for (const path of AD_JSON_NESTED) {
-                pruneNested(data, path);
-            }
-        }
-        return data;
-    });
-};
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// UNIVERSAL FETCH/XHR BLOCK — blocks ad-related network requests on all sites
-// ═══════════════════════════════════════════════════════════════════════════════
-
-const AD_URL_PATTERNS = [
-    '/pagead/', '/ptracking', '/api/stats/ads', '/ad_break',
-    'doubleclick.net', 'googlesyndication.com', 'googleadservices.com',
-    'imasdk.googleapis.com', 'securepubads.g.doubleclick.net',
-    'amazon-adsystem.com', 'twitchsvc.net',
-    '/ads/bid', '/ads/log', '/ads/event',
-    'ad.doubleclick.net', 'pagead2.googlesyndication.com',
-    'stats.g.doubleclick.net', '2mdn.net',
-    '/api/stats/qoe?adformat', 'play.google.com/log',
-    'video-ad-stats', '/adunit', '/vast/',
-];
-
-function isAdUrl(url) {
-    if (!url) return false;
-    return AD_URL_PATTERNS.some(p => url.includes(p));
-}
-
-const _fetch = window.fetch;
-window.fetch = function(input, init) {
-    const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
-    if (isAdUrl(url)) {
-        return Promise.resolve(new Response('{}', { status: 200, headers: { 'Content-Type': 'application/json' } }));
-    }
-    return _fetch.apply(this, arguments);
-};
-
-const _xhrOpen = XMLHttpRequest.prototype.open;
-XMLHttpRequest.prototype.open = function(method, url) {
-    this.__muse_blocked = isAdUrl(url);
-    return _xhrOpen.apply(this, arguments);
-};
-const _xhrSend = XMLHttpRequest.prototype.send;
-XMLHttpRequest.prototype.send = function() {
-    if (this.__muse_blocked) {
-        Object.defineProperty(this, 'readyState', { get: () => 4, configurable: true });
-        Object.defineProperty(this, 'status', { get: () => 200, configurable: true });
-        Object.defineProperty(this, 'responseText', { get: () => '{}', configurable: true });
-        Object.defineProperty(this, 'response', { get: () => '{}', configurable: true });
-        setTimeout(() => { if (typeof this.onload === 'function') this.onload(new Event('load')); }, 0);
-        return;
-    }
-    return _xhrSend.apply(this, arguments);
-};
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// UNIVERSAL SCRIPT BLOCK — prevent ad SDK loading on all sites
-// ═══════════════════════════════════════════════════════════════════════════════
-
-const AD_SCRIPT_PATTERNS = [
-    'imasdk.googleapis.com', 'securepubads', 'pagead2.googlesyndication',
-    'adsbygoogle', 'googletag', 'gpt.js', 'pubads',
-    'amazon-adsystem.com/aax', 'moat', 'doubleclick.net/tag',
-];
-
-const _createElement = document.createElement.bind(document);
-document.createElement = function(tag) {
-    const el = _createElement(tag);
-    if (tag.toLowerCase() === 'script') {
-        const _setSrc = Object.getOwnPropertyDescriptor(HTMLScriptElement.prototype, 'src')?.set;
-        if (_setSrc) {
-            Object.defineProperty(el, 'src', {
-                set(value) {
-                    if (typeof value === 'string' && AD_SCRIPT_PATTERNS.some(p => value.includes(p))) {
-                        return; // silently block
-                    }
-                    _setSrc.call(this, value);
-                },
-                get() { return el.getAttribute('src') || ''; },
-                configurable: true,
-            });
-        }
-    }
-    return el;
-};
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// VIDEO AD SKIP — auto-skip/fast-forward video ads when detected (all sites)
-// ═══════════════════════════════════════════════════════════════════════════════
-
-function setupVideoAdSkipper() {
-    const skipSelectors = [
-        '.ytp-ad-skip-button', '.ytp-ad-skip-button-modern', '.ytp-skip-ad-button',
-        '[class*="skip-button"]', '[class*="skipButton"]', '[class*="ad-skip"]',
-        'button[class*="skip"]',
-    ];
-
-    const adContainerSelectors = [
-        '.ytp-ad-module', '.ytp-ad-overlay-container', '.ytp-ad-text-overlay',
-        '#player-ads', '#masthead-ad', '.ytd-promoted-sparkles-web-renderer',
-        '.ytd-display-ad-renderer', '.ytd-promoted-video-renderer',
-        '.ytd-ad-slot-renderer', '.ytd-in-feed-ad-layout-renderer',
-        '[class*="ad-container"]', '[class*="ad-banner"]', '[class*="ad-slot"]',
-        '.video-ads', '.ad-container', '#ad-display',
-    ];
-
-    const observer = new MutationObserver(() => {
-        // Auto-click skip buttons
-        for (const sel of skipSelectors) {
-            const btn = document.querySelector(sel);
-            if (btn && btn.offsetParent !== null) {
-                btn.click();
-            }
-        }
-
-        // Collapse ad containers (remove blank spaces)
-        for (const sel of adContainerSelectors) {
-            document.querySelectorAll(sel).forEach(el => {
-                if (el.offsetHeight > 0) {
-                    el.style.display = 'none';
-                    el.style.height = '0';
-                    el.style.overflow = 'hidden';
-                    el.style.margin = '0';
-                    el.style.padding = '0';
-                }
-            });
-        }
-
-        // Fast-forward video ads (player showing ad state)
-        const player = document.querySelector('.html5-video-player');
-        if (player && player.classList.contains('ad-showing')) {
-            player.classList.remove('ad-showing');
-            const video = player.querySelector('video');
-            if (video && video.duration && isFinite(video.duration) && video.duration < 120) {
-                video.currentTime = video.duration;
-                video.playbackRate = 16;
-            }
-        }
-    });
-
-    function startObserving() {
-        if (document.body) {
-            observer.observe(document.body, { childList: true, subtree: true, attributes: true, attributeFilter: ['class'] });
-        } else {
-            document.addEventListener('DOMContentLoaded', () => {
-                observer.observe(document.body, { childList: true, subtree: true, attributes: true, attributeFilter: ['class'] });
-            });
-        }
-    }
-
-    startObserving();
-
-    // Also run periodically to catch delayed ads
-    setInterval(() => {
-        for (const sel of adContainerSelectors) {
-            document.querySelectorAll(sel).forEach(el => {
-                el.style.display = 'none';
-            });
-        }
-        // Skip any active video ad
-        const player = document.querySelector('.html5-video-player.ad-showing');
-        if (player) {
-            const video = player.querySelector('video');
-            if (video && video.duration && isFinite(video.duration)) {
-                video.currentTime = video.duration;
-            }
-        }
-    }, 1000);
-}
-
-setupVideoAdSkipper();
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// TWITCH HLS MANIFEST PRUNING — remove ad segments from stream
-// ═══════════════════════════════════════════════════════════════════════════════
-
-if (location.hostname.includes('twitch.tv')) {
-    const origFetch = window.fetch;
-    window.fetch = function(input, init) {
-        const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
-        
-        if (url.includes('.m3u8')) {
-            return origFetch.apply(this, arguments).then(response => {
-                const clone = response.clone();
-                return clone.text().then(text => {
-                    if (text.includes('stitched-ad') || text.includes('advertisement')) {
-                        const cleaned = text.split('\n').filter(line => {
-                            if (line.includes('#EXT-X-DATERANGE') && (line.includes('stitched-ad') || line.includes('advertisement'))) return false;
-                            if (line.includes('#EXT-X-SCTE35-OUT')) return false;
-                            return true;
-                        }).join('\n');
-                        return new Response(cleaned, { status: response.status, statusText: response.statusText, headers: response.headers });
-                    }
-                    return response;
-                });
-            });
-        }
-        return origFetch.apply(this, arguments);
-    };
-}
-
-// ═══════════════════════════════════════════════════════════════════════════════
-// COSMETIC: Inject CSS to collapse ad containers immediately
-// ═══════════════════════════════════════════════════════════════════════════════
-
-const adCss = `
-.ytp-ad-module, .ytp-ad-overlay-container, .ytp-ad-text-overlay,
-#player-ads, #masthead-ad, .ytd-promoted-sparkles-web-renderer,
-.ytd-display-ad-renderer, .ytd-promoted-video-renderer,
-.ytd-ad-slot-renderer, .ytd-in-feed-ad-layout-renderer,
-.ytd-banner-promo-renderer, ytd-rich-item-renderer:has(.ytd-ad-slot-renderer),
-[class*="ad-container"], [class*="ad-banner"],
-.video-ads, .ad-container, #ad-display,
-.ad-showing .ytp-ad-player-overlay,
-.ytp-ad-action-interstitial {
-    display: none !important;
-    height: 0 !important;
-    max-height: 0 !important;
-    overflow: hidden !important;
-    margin: 0 !important;
-    padding: 0 !important;
-    opacity: 0 !important;
-    pointer-events: none !important;
-}
-`;
-
-const style = document.createElement('style');
-style.id = '__muse_ad_collapse';
-style.textContent = adCss;
-(document.head || document.documentElement).appendChild(style);
-
-})();
+/**
+ * MUSE Video Ad Scriptlets v2
+ * Injected via initialization_script BEFORE any page JavaScript runs.
+ * 
+ * UNIVERSAL approach — not YouTube-specific. Works by:
+ * 1. Patching JSON.parse/Response.json to prune known ad properties
+ * 2. Blocking known ad-serving fetch/XHR patterns
+ * 3. Blocking VAST/VPAID/IMA SDK script loading
+ * 4. Auto-skipping video ads when detected
+ * 5. Collapsing blank ad containers
+ *
+ * TIMING IS CRITICAL: runs before ANY page JavaScript.
+ */
+(function() {
+'use strict';
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// UNIVERSAL JSON PRUNE — removes ad-related properties from ALL parsed JSON
+// Works on YouTube, Dailymotion, Reddit, news sites, any site using JSON APIs
+// ═══════════════════════════════════════════════════════════════════════════════
+
+const AD_JSON_KEYS = new Set([
+    'adPlacements', 'playerAds', 'adSlots', 'adBreaks', 'adBreakServiceRenderer',
+    'promotedSparklesWebRenderer', 'promotedVideoRenderer', 'adRenderer',
+    'displayAdRenderer', 'promoted', 'sponsoredAd', 'sponsoredContent',
+    'ad_placements', 'player_ads', 'ad_slots', 'ad_breaks',
+    'vastUrl', 'vastXml', 'vpaidUrl',
+    'adTagUrl', 'adUnit', 'adSource',
+]);
+
+const AD_JSON_NESTED = [
+    'auxiliaryUi.messageRenderers.enforcementMessageViewModel',
+    'overlay.playerBarActionRenderer',
+];
+
+function deepPruneAdKeys(obj, depth) {
+    if (!obj || typeof obj !== 'object' || depth > 8) return;
+    if (Array.isArray(obj)) {
+        obj.forEach(item => deepPruneAdKeys(item, depth + 1));
+        return;
+    }
+    for (const key of Object.keys(obj)) {
+        if (AD_JSON_KEYS.has(key)) {
+            delete obj[key];
+        } else if (typeof obj[key] === 'object') {
+            deepPruneAdKeys(obj[key], depth + 1);
+        }
+    }
+}
+
+function pruneNested(obj, path) {
+    const parts = path.split('.');
+    let target = obj;
+    for (let i = 0; i < parts.length - 1; i++) {
+        if (!target || typeof target !== 'object') return;
+        target = target[parts[i]];
+    }
+    if (target && typeof target === 'object') {
+        delete target[parts[parts.length - 1]];
+    }
+}
+
+// Patch JSON.parse — universal
+const _JSONParse = JSON.parse;
+JSON.parse = function() {
+    const result = _JSONParse.apply(this, arguments);
+    if (result && typeof result === 'object') {
+        deepPruneAdKeys(result, 0);
+        for (const path of AD_JSON_NESTED) {
+            pruneNested(result, path);
+        }
+    }
+    return result;
+};
+
+// Patch Response.prototype.json — universal for fetch APIs
+const _responseJson = Response.prototype.json;
+Response.prototype.json = function() {
+    return _responseJson.apply(this, arguments).then(data => {
+        if (data && typeof data === 'object') {
+            deepPruneAdKeys(data, 0);
+            for (const path of AD_JSON_NESTED) {
+                pruneNested(data, path);
+            }
+        }
+        return data;
+    });
+};
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// UNIVERSAL FETCH/XHR BLOCK — blocks ad-related network requests on all sites
+// ═══════════════════════════════════════════════════════════════════════════════
+
+const AD_URL_PATTERNS = [
+    '/pagead/', '/ptracking', '/api/stats/ads', '/ad_break',
+    'doubleclick.net', 'googlesyndication.com', 'googleadservices.com',
+    'imasdk.googleapis.com', 'securepubads.g.doubleclick.net',
+    'amazon-adsystem.com', 'twitchsvc.net',
+    '/ads/bid', '/ads/log', '/ads/event',
+    'ad.doubleclick.net', 'pagead2.googlesyndication.com',
+    'stats.g.doubleclick.net', '2mdn.net',
+    '/api/stats/qoe?adformat', 'play.google.com/log',
+    'video-ad-stats', '/adunit', '/vast/',
+];
+
+function isAdUrl(url) {
+    if (!url) return false;
+    return AD_URL_PATTERNS.some(p => url.includes(p));
+}
+
+const _fetch = window.fetch;
+window.fetch = function(input, init) {
+    const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
+    if (isAdUrl(url)) {
+        return Promise.resolve(new Response('{}', { status: 200, headers: { 'Content-Type': 'application/json' } }));
+    }
+    return _fetch.apply(this, arguments);
+};
+
+const _xhrOpen = XMLHttpRequest.prototype.open;
+XMLHttpRequest.prototype.open = function(method, url) {
+    this.__muse_blocked = isAdUrl(url);
+    return _xhrOpen.apply(this, arguments);
+};
+const _xhrSend = XMLHttpRequest.prototype.send;
+XMLHttpRequest.prototype.send = function() {
+    if (this.__muse_blocked) {
+        Object.defineProperty(this, 'readyState', { get: () => 4, configurable: true });
+        Object.defineProperty(this, 'status', { get: () => 200, configurable: true });
+        Object.defineProperty(this, 'responseText', { get: () => '{}', configurable: true });
+        Object.defineProperty(this, 'response', { get: () => '{}', configurable: true });
+        setTimeout(() => { if (typeof this.onload === 'function') this.onload(new Event('load')); }, 0);
+        return;
+    }
+    return _xhrSend.apply(this, arguments);
+};
+
+// ═════════════════════════════��═════════════════════════════════════════════════
+// UNIVERSAL SCRIPT BLOCK — prevent ad SDK loading on all sites
+// ═══════════════════════════════════════════════════════════════════════════════
+
+const AD_SCRIPT_PATTERNS = [
+    'imasdk.googleapis.com', 'securepubads', 'pagead2.googlesyndication',
+    'adsbygoogle', 'googletag', 'gpt.js', 'pubads',
+    'amazon-adsystem.com/aax', 'moat', 'doubleclick.net/tag',
+];
+
+const _createElement = document.createElement.bind(document);
+document.createElement = function(tag) {
+    const el = _createElement(tag);
+    if (tag.toLowerCase() === 'script') {
+        const _setSrc = Object.getOwnPropertyDescriptor(HTMLScriptElement.prototype, 'src')?.set;
+        if (_setSrc) {
+            Object.defineProperty(el, 'src', {
+                set(value) {
+                    if (typeof value === 'string' && AD_SCRIPT_PATTERNS.some(p => value.includes(p))) {
+                        return; // silently block
+                    }
+                    _setSrc.call(this, value);
+                },
+                get() { return el.getAttribute('src') || ''; },
+                configurable: true,
+            });
+        }
+    }
+    return el;
+};
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// VIDEO AD SKIP — auto-skip/fast-forward video ads when detected (all sites)
+// ═══════════════════════════════════════════════════════════════════════════════
+
+function setupVideoAdSkipper() {
+    const skipSelectors = [
+        '.ytp-ad-skip-button', '.ytp-ad-skip-button-modern', '.ytp-skip-ad-button',
+        '[class*="skip-button"]', '[class*="skipButton"]', '[class*="ad-skip"]',
+        'button[class*="skip"]',
+    ];
+
+    const adContainerSelectors = [
+        '.ytp-ad-module', '.ytp-ad-overlay-container', '.ytp-ad-text-overlay',
+        '#player-ads', '#masthead-ad', '.ytd-promoted-sparkles-web-renderer',
+        '.ytd-display-ad-renderer', '.ytd-promoted-video-renderer',
+        '.ytd-ad-slot-renderer', '.ytd-in-feed-ad-layout-renderer',
+        '[class*="ad-container"]', '[class*="ad-banner"]', '[class*="ad-slot"]',
+        '.video-ads', '.ad-container', '#ad-display',
+    ];
+
+    const observer = new MutationObserver(() => {
+        // Auto-click skip buttons
+        for (const sel of skipSelectors) {
+            const btn = document.querySelector(sel);
+            if (btn && btn.offsetParent !== null) {
+                btn.click();
+            }
+        }
+
+        // Collapse ad containers (remove blank spaces)
+        for (const sel of adContainerSelectors) {
+            document.querySelectorAll(sel).forEach(el => {
+                if (el.offsetHeight > 0) {
+                    el.style.display = 'none';
+                    el.style.height = '0';
+                    el.style.overflow = 'hidden';
+                    el.style.margin = '0';
+                    el.style.padding = '0';
+                }
+            });
+        }
+
+        // Fast-forward video ads (player showing ad state)
+        const player = document.querySelector('.html5-video-player');
+        if (player && player.classList.contains('ad-showing')) {
+            player.classList.remove('ad-showing');
+            const video = player.querySelector('video');
+            if (video && video.duration && isFinite(video.duration) && video.duration < 120) {
+                video.currentTime = video.duration;
+                video.playbackRate = 16;
+            }
+        }
+    });
+
+    function startObserving() {
+        if (document.body) {
+            observer.observe(document.body, { childList: true, subtree: true, attributes: true, attributeFilter: ['class'] });
+        } else {
+            document.addEventListener('DOMContentLoaded', () => {
+                observer.observe(document.body, { childList: true, subtree: true, attributes: true, attributeFilter: ['class'] });
+            });
+        }
+    }
+
+    startObserving();
+
+    // Also run periodically to catch delayed ads
+    setInterval(() => {
+        for (const sel of adContainerSelectors) {
+            document.querySelectorAll(sel).forEach(el => {
+                el.style.display = 'none';
+            });
+        }
+        // Skip any active video ad
+        const player = document.querySelector('.html5-video-player.ad-showing');
+        if (player) {
+            const video = player.querySelector('video');
+            if (video && video.duration && isFinite(video.duration)) {
+                video.currentTime = video.duration;
+            }
+        }
+    }, 1000);
+}
+
+setupVideoAdSkipper();
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// TWITCH HLS MANIFEST PRUNING — remove ad segments from stream
+// ═══════════════════════════════════════════════════════════════════════════════
+
+if (location.hostname.includes('twitch.tv')) {
+    const origFetch = window.fetch;
+    window.fetch = function(input, init) {
+        const url = typeof input === 'string' ? input : (input instanceof Request ? input.url : '');
+        
+        if (url.includes('.m3u8')) {
+            return origFetch.apply(this, arguments).then(response => {
+                const clone = response.clone();
+                return clone.text().then(text => {
+                    if (text.includes('stitched-ad') || text.includes('advertisement')) {
+                        const cleaned = text.split('\n').filter(line => {
+                            if (line.includes('#EXT-X-DATERANGE') && (line.includes('stitched-ad') || line.includes('advertisement'))) return false;
+                            if (line.includes('#EXT-X-SCTE35-OUT')) return false;
+                            return true;
+                        }).join('\n');
+                        return new Response(cleaned, { status: response.status, statusText: response.statusText, headers: response.headers });
+                    }
+                    return response;
+                });
+            });
+        }
+        return origFetch.apply(this, arguments);
+    };
+}
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// COSMETIC: Inject CSS to collapse ad containers immediately
+// ═══════════════════════════════════════════════════════════════════════════════
+
+const adCss = `
+.ytp-ad-module, .ytp-ad-overlay-container, .ytp-ad-text-overlay,
+#player-ads, #masthead-ad, .ytd-promoted-sparkles-web-renderer,
+.ytd-display-ad-renderer, .ytd-promoted-video-renderer,
+.ytd-ad-slot-renderer, .ytd-in-feed-ad-layout-renderer,
+.ytd-banner-promo-renderer, ytd-rich-item-renderer:has(.ytd-ad-slot-renderer),
+[class*="ad-container"], [class*="ad-banner"],
+.video-ads, .ad-container, #ad-display,
+.ad-showing .ytp-ad-player-overlay,
+.ytp-ad-action-interstitial {
+    display: none !important;
+    height: 0 !important;
+    max-height: 0 !important;
+    overflow: hidden !important;
+    margin: 0 !important;
+    padding: 0 !important;
+    opacity: 0 !important;
+    pointer-events: none !important;
+}
+`;
+
+const style = document.createElement('style');
+style.id = '__muse_ad_collapse';
+style.textContent = adCss;
+(document.head || document.documentElement).appendChild(style);
+
+})();

src-tauri/resources/scripts/webrtc_protect.js

@@ -1,24 +1,24 @@
-(function() {
-'use strict';
-
-// Prevent WebRTC from leaking local IP addresses
-const OriginalRTC = window.RTCPeerConnection || window.webkitRTCPeerConnection || window.mozRTCPeerConnection;
-if (!OriginalRTC) return;
-
-window.RTCPeerConnection = function(config, constraints) {
-    if (config && config.iceServers) {
-        config.iceServers = config.iceServers.filter(server => {
-            const urls = Array.isArray(server.urls) ? server.urls : [server.urls || server.url];
-            return !urls.some(u => u && u.toString().startsWith('stun:'));
-        });
-    }
-    return new OriginalRTC(config, constraints);
-};
-
-window.RTCPeerConnection.prototype = OriginalRTC.prototype;
-Object.setPrototypeOf(window.RTCPeerConnection, OriginalRTC);
-
-if (window.webkitRTCPeerConnection) {
-    window.webkitRTCPeerConnection = window.RTCPeerConnection;
-}
-})();
+(function() {
+'use strict';
+
+// Prevent WebRTC from leaking local IP addresses
+const OriginalRTC = window.RTCPeerConnection || window.webkitRTCPeerConnection || window.mozRTCPeerConnection;
+if (!OriginalRTC) return;
+
+window.RTCPeerConnection = function(config, constraints) {
+    if (config && config.iceServers) {
+        config.iceServers = config.iceServers.filter(server => {
+            const urls = Array.isArray(server.urls) ? server.urls : [server.urls || server.url];
+            return !urls.some(u => u && u.toString().startsWith('stun:'));
+        });
+    }
+    return new OriginalRTC(config, constraints);
+};
+
+window.RTCPeerConnection.prototype = OriginalRTC.prototype;
+Object.setPrototypeOf(window.RTCPeerConnection, OriginalRTC);
+
+if (window.webkitRTCPeerConnection) {
+    window.webkitRTCPeerConnection = window.RTCPeerConnection;
+}
+})();

src-tauri/src/adblock/commands.rs

@@ -1,64 +1,64 @@
-use tauri::{AppHandle, Manager};
-use super::engine::{AdBlockState, ShieldReport};
-
-#[tauri::command]
-pub fn shield_get_report(app: AppHandle) -> Result<ShieldReport, String> {
-    let state = app.state::<AdBlockState>();
-    Ok(state.report())
-}
-
-#[tauri::command]
-pub fn shield_check_url(app: AppHandle, url: String, source_url: String, request_type: String) -> bool {
-    let state = app.state::<AdBlockState>();
-    state.should_block(&url, &source_url, &request_type)
-}
-
-#[tauri::command]
-pub fn shield_cosmetic_css(app: AppHandle, url: String) -> String {
-    let state = app.state::<AdBlockState>();
-    state.get_cosmetic_css(&url)
-}
-
-#[tauri::command]
-pub fn shield_toggle_domain(app: AppHandle, domain: String, allowed: bool) -> Result<ShieldReport, String> {
-    let state = app.state::<AdBlockState>();
-    if let Ok(mut allowlist) = state.allowlist.write() {
-        if allowed {
-            allowlist.insert(domain);
-        } else {
-            allowlist.remove(&domain);
-        }
-    }
-    Ok(state.report())
-}
-
-#[tauri::command]
-pub fn shield_is_allowed(app: AppHandle, domain: String) -> bool {
-    let state = app.state::<AdBlockState>();
-    state.allowlist.read().map(|a| a.contains(&domain)).unwrap_or(false)
-}
-
-#[tauri::command]
-pub async fn shield_update_lists(app: AppHandle) -> Result<ShieldReport, String> {
-    super::updater::update_now(&app).await?;
-    let state = app.state::<AdBlockState>();
-    Ok(state.report())
-}
-
-#[tauri::command]
-pub fn shield_add_user_rule(app: AppHandle, rule: String) -> Result<ShieldReport, String> {
-    let state = app.state::<AdBlockState>();
-    println!("[muse-shield] User rule added: {rule}");
-    Ok(state.report())
-}
-
-#[tauri::command]
-pub fn shield_list_subscriptions() -> Vec<&'static str> {
-    vec![
-        "EasyList",
-        "EasyPrivacy",
-        "Fanboy Annoyances",
-        "uBlock Filters",
-        "Peter Lowe",
-    ]
-}
+use tauri::{AppHandle, Manager};
+use super::engine::{AdBlockState, ShieldReport};
+
+#[tauri::command]
+pub fn shield_get_report(app: AppHandle) -> Result<ShieldReport, String> {
+    let state = app.state::<AdBlockState>();
+    Ok(state.report())
+}
+
+#[tauri::command]
+pub fn shield_check_url(app: AppHandle, url: String, source_url: String, request_type: String) -> bool {
+    let state = app.state::<AdBlockState>();
+    state.should_block(&url, &source_url, &request_type)
+}
+
+#[tauri::command]
+pub fn shield_cosmetic_css(app: AppHandle, url: String) -> String {
+    let state = app.state::<AdBlockState>();
+    state.get_cosmetic_css(&url)
+}
+
+#[tauri::command]
+pub fn shield_toggle_domain(app: AppHandle, domain: String, allowed: bool) -> Result<ShieldReport, String> {
+    let state = app.state::<AdBlockState>();
+    if let Ok(mut allowlist) = state.allowlist.write() {
+        if allowed {
+            allowlist.insert(domain);
+        } else {
+            allowlist.remove(&domain);
+        }
+    }
+    Ok(state.report())
+}
+
+#[tauri::command]
+pub fn shield_is_allowed(app: AppHandle, domain: String) -> bool {
+    let state = app.state::<AdBlockState>();
+    state.allowlist.read().map(|a| a.contains(&domain)).unwrap_or(false)
+}
+
+#[tauri::command]
+pub async fn shield_update_lists(app: AppHandle) -> Result<ShieldReport, String> {
+    super::updater::update_now(&app).await?;
+    let state = app.state::<AdBlockState>();
+    Ok(state.report())
+}
+
+#[tauri::command]
+pub fn shield_add_user_rule(app: AppHandle, rule: String) -> Result<ShieldReport, String> {
+    let state = app.state::<AdBlockState>();
+    println!("[muse-shield] User rule added: {rule}");
+    Ok(state.report())
+}
+
+#[tauri::command]
+pub fn shield_list_subscriptions() -> Vec<&'static str> {
+    vec![
+        "EasyList",
+        "EasyPrivacy",
+        "Fanboy Annoyances",
+        "uBlock Filters",
+        "Peter Lowe",
+    ]
+}

src-tauri/src/adblock/engine.rs

@@ -1,154 +1,154 @@
-use adblock::{Engine, FilterSet};
-use adblock::lists::ParseOptions;
-use adblock::request::Request;
-use std::collections::HashSet;
-use std::sync::RwLock;
-use std::sync::atomic::{AtomicU64, Ordering};
-use serde::Serialize;
-
-/// Thread-safe wrapper around adblock Engine
-pub struct AdBlockState {
-    pub engine: RwLock<Engine>,
-    pub stats: AdBlockStats,
-    pub allowlist: RwLock<HashSet<String>>,
-    pub rule_count: AtomicU64,
-}
-
-#[derive(Default)]
-pub struct AdBlockStats {
-    pub blocked_requests: AtomicU64,
-    pub blocked_cosmetic: AtomicU64,
-    pub https_upgrades: AtomicU64,
-}
-
-#[derive(Debug, Clone, Serialize)]
-pub struct ShieldReport {
-    pub blocked_requests: u64,
-    pub blocked_cosmetic: u64,
-    pub https_upgrades: u64,
-    pub engine_rules: usize,
-    pub allowlisted_domains: usize,
-}
-
-impl AdBlockState {
-    pub fn new() -> Self {
-        let (engine, count) = build_engine_from_bundled();
-        Self {
-            engine: RwLock::new(engine),
-            stats: AdBlockStats::default(),
-            allowlist: RwLock::new(HashSet::new()),
-            rule_count: AtomicU64::new(count as u64),
-        }
-    }
-
-    pub fn should_block(&self, url: &str, source_url: &str, request_type: &str) -> bool {
-        if let Some(domain) = extract_domain(source_url) {
-            if let Ok(allowlist) = self.allowlist.read() {
-                if allowlist.contains(&domain) {
-                    return false;
-                }
-            }
-        }
-
-        let engine = match self.engine.read() {
-            Ok(e) => e,
-            Err(_) => return false,
-        };
-
-        match Request::new(url, source_url, request_type) {
-            Ok(req) => {
-                let result = engine.check_network_request(&req);
-                if result.matched && result.exception.is_none() {
-                    self.stats.blocked_requests.fetch_add(1, Ordering::Relaxed);
-                    true
-                } else {
-                    false
-                }
-            }
-            Err(_) => false,
-        }
-    }
-
-    pub fn get_cosmetic_css(&self, url: &str) -> String {
-        let engine = match self.engine.read() {
-            Ok(e) => e,
-            Err(_) => return String::new(),
-        };
-
-        let resources = engine.url_cosmetic_resources(url);
-        if resources.hide_selectors.is_empty() {
-            return String::new();
-        }
-
-        let selectors: Vec<&String> = resources.hide_selectors.iter().collect();
-        let css = selectors.iter()
-            .map(|s| format!("{s}{{display:none!important}}"))
-            .collect::<Vec<_>>()
-            .join("\n");
-
-        self.stats.blocked_cosmetic.fetch_add(selectors.len() as u64, Ordering::Relaxed);
-        css
-    }
-
-    /// Get injected scriptlets for a URL (json-prune, set-constant, etc.)
-    /// Used for YouTube/Twitch/video ad blocking
-    pub fn get_injected_script(&self, url: &str) -> String {
-        let engine = match self.engine.read() {
-            Ok(e) => e,
-            Err(_) => return String::new(),
-        };
-        let resources = engine.url_cosmetic_resources(url);
-        resources.injected_script
-    }
-
-    pub fn report(&self) -> ShieldReport {
-        let engine_rules = self.rule_count.load(Ordering::Relaxed) as usize;
-        let allowlisted = self.allowlist.read().map(|a| a.len()).unwrap_or(0);
-        ShieldReport {
-            blocked_requests: self.stats.blocked_requests.load(Ordering::Relaxed),
-            blocked_cosmetic: self.stats.blocked_cosmetic.load(Ordering::Relaxed),
-            https_upgrades: self.stats.https_upgrades.load(Ordering::Relaxed),
-            engine_rules,
-            allowlisted_domains: allowlisted,
-        }
-    }
-
-    pub fn reload_engine(&self, new_engine: Engine, rule_count: usize) {
-        if let Ok(mut engine) = self.engine.write() {
-            *engine = new_engine;
-        }
-        self.rule_count.store(rule_count as u64, Ordering::Relaxed);
-    }
-}
-
-impl Default for AdBlockState {
-    fn default() -> Self {
-        Self::new()
-    }
-}
-
-pub fn build_engine_from_bundled() -> (Engine, usize) {
-    let mut filter_set = FilterSet::new(false);
-
-    let lists: &[&str] = &[
-        include_str!("../../resources/filters/easylist_mini.txt"),
-        include_str!("../../resources/filters/easyprivacy_mini.txt"),
-        include_str!("../../resources/filters/annoyances_mini.txt"),
-    ];
-
-    let mut count = 0usize;
-    for list in lists {
-        let _meta = filter_set.add_filter_list(list, ParseOptions::default());
-        count += list.lines().filter(|l| !l.starts_with('!') && !l.trim().is_empty()).count();
-    }
-
-    (Engine::from_filter_set(filter_set, true), count)
-}
-
-fn extract_domain(url: &str) -> Option<String> {
-    url.split("//")
-        .nth(1)
-        .and_then(|s| s.split('/').next())
-        .map(|s| s.split(':').next().unwrap_or(s).to_lowercase())
-        .map(|s| s.trim_start_matches("www.").to_string())
-}
+use adblock::{Engine, FilterSet};
+use adblock::lists::ParseOptions;
+use adblock::request::Request;
+use std::collections::HashSet;
+use std::sync::RwLock;
+use std::sync::atomic::{AtomicU64, Ordering};
+use serde::Serialize;
+
+/// Thread-safe wrapper around adblock Engine
+pub struct AdBlockState {
+    pub engine: RwLock<Engine>,
+    pub stats: AdBlockStats,
+    pub allowlist: RwLock<HashSet<String>>,
+    pub rule_count: AtomicU64,
+}
+
+#[derive(Default)]
+pub struct AdBlockStats {
+    pub blocked_requests: AtomicU64,
+    pub blocked_cosmetic: AtomicU64,
+    pub https_upgrades: AtomicU64,
+}
+
+#[derive(Debug, Clone, Serialize)]
+pub struct ShieldReport {
+    pub blocked_requests: u64,
+    pub blocked_cosmetic: u64,
+    pub https_upgrades: u64,
+    pub engine_rules: usize,
+    pub allowlisted_domains: usize,
+}
+
+impl AdBlockState {
+    pub fn new() -> Self {
+        let (engine, count) = build_engine_from_bundled();
+        Self {
+            engine: RwLock::new(engine),
+            stats: AdBlockStats::default(),
+            allowlist: RwLock::new(HashSet::new()),
+            rule_count: AtomicU64::new(count as u64),
+        }
+    }
+
+    pub fn should_block(&self, url: &str, source_url: &str, request_type: &str) -> bool {
+        if let Some(domain) = extract_domain(source_url) {
+            if let Ok(allowlist) = self.allowlist.read() {
+                if allowlist.contains(&domain) {
+                    return false;
+                }
+            }
+        }
+
+        let engine = match self.engine.read() {
+            Ok(e) => e,
+            Err(_) => return false,
+        };
+
+        match Request::new(url, source_url, request_type) {
+            Ok(req) => {
+                let result = engine.check_network_request(&req);
+                if result.matched && result.exception.is_none() {
+                    self.stats.blocked_requests.fetch_add(1, Ordering::Relaxed);
+                    true
+                } else {
+                    false
+                }
+            }
+            Err(_) => false,
+        }
+    }
+
+    pub fn get_cosmetic_css(&self, url: &str) -> String {
+        let engine = match self.engine.read() {
+            Ok(e) => e,
+            Err(_) => return String::new(),
+        };
+
+        let resources = engine.url_cosmetic_resources(url);
+        if resources.hide_selectors.is_empty() {
+            return String::new();
+        }
+
+        let selectors: Vec<&String> = resources.hide_selectors.iter().collect();
+        let css = selectors.iter()
+            .map(|s| format!("{s}{{display:none!important}}"))
+            .collect::<Vec<_>>()
+            .join("\n");
+
+        self.stats.blocked_cosmetic.fetch_add(selectors.len() as u64, Ordering::Relaxed);
+        css
+    }
+
+    /// Get injected scriptlets for a URL (json-prune, set-constant, etc.)
+    /// Used for YouTube/Twitch/video ad blocking
+    pub fn get_injected_script(&self, url: &str) -> String {
+        let engine = match self.engine.read() {
+            Ok(e) => e,
+            Err(_) => return String::new(),
+        };
+        let resources = engine.url_cosmetic_resources(url);
+        resources.injected_script
+    }
+
+    pub fn report(&self) -> ShieldReport {
+        let engine_rules = self.rule_count.load(Ordering::Relaxed) as usize;
+        let allowlisted = self.allowlist.read().map(|a| a.len()).unwrap_or(0);
+        ShieldReport {
+            blocked_requests: self.stats.blocked_requests.load(Ordering::Relaxed),
+            blocked_cosmetic: self.stats.blocked_cosmetic.load(Ordering::Relaxed),
+            https_upgrades: self.stats.https_upgrades.load(Ordering::Relaxed),
+            engine_rules,
+            allowlisted_domains: allowlisted,
+        }
+    }
+
+    pub fn reload_engine(&self, new_engine: Engine, rule_count: usize) {
+        if let Ok(mut engine) = self.engine.write() {
+            *engine = new_engine;
+        }
+        self.rule_count.store(rule_count as u64, Ordering::Relaxed);
+    }
+}
+
+impl Default for AdBlockState {
+    fn default() -> Self {
+        Self::new()
+    }
+}
+
+pub fn build_engine_from_bundled() -> (Engine, usize) {
+    let mut filter_set = FilterSet::new(false);
+
+    let lists: &[&str] = &[
+        include_str!("../../resources/filters/easylist_mini.txt"),
+        include_str!("../../resources/filters/easyprivacy_mini.txt"),
+        include_str!("../../resources/filters/annoyances_mini.txt"),
+    ];
+
+    let mut count = 0usize;
+    for list in lists {
+        let _meta = filter_set.add_filter_list(list, ParseOptions::default());
+        count += list.lines().filter(|l| !l.starts_with('!') && !l.trim().is_empty()).count();
+    }
+
+    (Engine::from_filter_set(filter_set, true), count)
+}
+
+fn extract_domain(url: &str) -> Option<String> {
+    url.split("//")
+        .nth(1)
+        .and_then(|s| s.split('/').next())
+        .map(|s| s.split(':').next().unwrap_or(s).to_lowercase())
+        .map(|s| s.trim_start_matches("www.").to_string())
+}

src-tauri/src/adblock/mod.rs

@@ -1,4 +1,4 @@
-pub mod engine;
-pub mod commands;
-pub mod updater;
-pub mod scripts;
+pub mod engine;
+pub mod commands;
+pub mod updater;
+pub mod scripts;

src-tauri/src/adblock/scripts.rs

@@ -1,71 +1,71 @@
-/// Builds the complete initialization script injected into every child webview
-/// before any page JavaScript runs.
-pub fn build_init_script(blocked_domains_json: &str) -> String {
-    let adblock_layer1 = include_str!("../../resources/scripts/adblock_layer1.js");
-    let cookie_consent = include_str!("../../resources/scripts/cookie_consent.js");
-    let webrtc_protect = include_str!("../../resources/scripts/webrtc_protect.js");
-    let canvas_noise = include_str!("../../resources/scripts/canvas_noise.js");
-    let hover_overlay = hover_overlay_script();
-    let vault_detector = vault_detector_script();
-    let autofill_suppress = autofill_suppress_script();
-    let video_ad_scriptlets = include_str!("../../resources/scripts/video_ad_scriptlets.js");
-
-    format!(
-        r#"(function() {{
-'use strict';
-window.__MUSE_BLOCKED_DOMAINS__ = {blocked_domains_json};
-document.addEventListener('contextmenu', function(e) {{
-    e.preventDefault();
-    try {{
-        const target = e.target;
-        const info = {{
-            x: e.screenX, y: e.screenY, clientX: e.clientX, clientY: e.clientY,
-            tagName: target.tagName, src: target.src || null,
-            href: target.closest('a') ? target.closest('a').href : null,
-            text: window.getSelection().toString().slice(0, 200) || null,
-            pageUrl: location.href,
-        }};
-        window.__TAURI_INTERNALS__.invoke('browser_context_menu', info).catch(function() {{}});
-    }} catch(ex) {{}}
-}}, true);
-}})();
-{video_ad_scriptlets}
-{adblock_layer1}
-{cookie_consent}
-{webrtc_protect}
-{canvas_noise}
-{autofill_suppress}
-{hover_overlay}
-{vault_detector}"#
-    )
-}
-
-/// Image hover overlay script.
-pub fn hover_overlay_script() -> &'static str {
-    include_str!("../../resources/scripts/hover_overlay.js")
-}
-
-/// Password vault form detection + autofill script.
-pub fn vault_detector_script() -> &'static str {
-    include_str!("../../resources/scripts/vault_detector.js")
-}
-
-/// Suppress native browser autofill so Muse vault is the only credential source.
-pub fn autofill_suppress_script() -> &'static str {
-    include_str!("../../resources/scripts/autofill_suppress.js")
-}
-
-/// Known ad/tracker domains for fast JS-side lookup
-pub fn blocked_domains_json() -> String {
-    let domains: &[&str] = &[
-        "googlesyndication.com", "doubleclick.net", "google-analytics.com",
-        "googletagmanager.com", "facebook.net", "connect.facebook.net",
-        "amazon-adsystem.com", "criteo.com", "outbrain.com", "taboola.com",
-        "scorecardresearch.com", "quantserve.com", "adnxs.com", "rubiconproject.com",
-        "pubmatic.com", "openx.net", "moatads.com", "hotjar.com", "mixpanel.com",
-        "segment.io", "segment.com", "amplitude.com", "fullstory.com",
-        "onetrust.com", "cookielaw.org", "trustarc.com", "consensu.org",
-        "2mdn.net", "adsymptotic.com", "advertising.com", "bluekai.com",
-    ];
-    serde_json::to_string(domains).unwrap_or_else(|_| "[]".to_string())
-}
+/// Builds the complete initialization script injected into every child webview
+/// before any page JavaScript runs.
+pub fn build_init_script(blocked_domains_json: &str) -> String {
+    let adblock_layer1 = include_str!("../../resources/scripts/adblock_layer1.js");
+    let cookie_consent = include_str!("../../resources/scripts/cookie_consent.js");
+    let webrtc_protect = include_str!("../../resources/scripts/webrtc_protect.js");
+    let canvas_noise = include_str!("../../resources/scripts/canvas_noise.js");
+    let hover_overlay = hover_overlay_script();
+    let vault_detector = vault_detector_script();
+    let autofill_suppress = autofill_suppress_script();
+    let video_ad_scriptlets = include_str!("../../resources/scripts/video_ad_scriptlets.js");
+
+    format!(
+        r#"(function() {{
+'use strict';
+window.__MUSE_BLOCKED_DOMAINS__ = {blocked_domains_json};
+document.addEventListener('contextmenu', function(e) {{
+    e.preventDefault();
+    try {{
+        const target = e.target;
+        const info = {{
+            x: e.screenX, y: e.screenY, clientX: e.clientX, clientY: e.clientY,
+            tagName: target.tagName, src: target.src || null,
+            href: target.closest('a') ? target.closest('a').href : null,
+            text: window.getSelection().toString().slice(0, 200) || null,
+            pageUrl: location.href,
+        }};
+        window.__TAURI_INTERNALS__.invoke('browser_context_menu', info).catch(function() {{}});
+    }} catch(ex) {{}}
+}}, true);
+}})();
+{video_ad_scriptlets}
+{adblock_layer1}
+{cookie_consent}
+{webrtc_protect}
+{canvas_noise}
+{autofill_suppress}
+{hover_overlay}
+{vault_detector}"#
+    )
+}
+
+/// Image hover overlay script.
+pub fn hover_overlay_script() -> &'static str {
+    include_str!("../../resources/scripts/hover_overlay.js")
+}
+
+/// Password vault form detection + autofill script.
+pub fn vault_detector_script() -> &'static str {
+    include_str!("../../resources/scripts/vault_detector.js")
+}
+
+/// Suppress native browser autofill so Muse vault is the only credential source.
+pub fn autofill_suppress_script() -> &'static str {
+    include_str!("../../resources/scripts/autofill_suppress.js")
+}
+
+/// Known ad/tracker domains for fast JS-side lookup
+pub fn blocked_domains_json() -> String {
+    let domains: &[&str] = &[
+        "googlesyndication.com", "doubleclick.net", "google-analytics.com",
+        "googletagmanager.com", "facebook.net", "connect.facebook.net",
+        "amazon-adsystem.com", "criteo.com", "outbrain.com", "taboola.com",
+        "scorecardresearch.com", "quantserve.com", "adnxs.com", "rubiconproject.com",
+        "pubmatic.com", "openx.net", "moatads.com", "hotjar.com", "mixpanel.com",
+        "segment.io", "segment.com", "amplitude.com", "fullstory.com",
+        "onetrust.com", "cookielaw.org", "trustarc.com", "consensu.org",
+        "2mdn.net", "adsymptotic.com", "advertising.com", "bluekai.com",
+    ];
+    serde_json::to_string(domains).unwrap_or_else(|_| "[]".to_string())
+}

src-tauri/src/adblock/updater.rs

@@ -1,103 +1,103 @@
-use tauri::{AppHandle, Manager};
-use reqwest::Client;
-use std::time::Duration;
-use adblock::{Engine, FilterSet};
-use adblock::lists::ParseOptions;
-use super::engine::AdBlockState;
-
-const FILTER_URLS: &[(&str, &str)] = &[
-    ("easylist", "https://easylist.to/easylist/easylist.txt"),
-    ("easyprivacy", "https://easylist.to/easylist/easyprivacy.txt"),
-    ("fanboy-annoyances", "https://secure.fanboy.co.nz/fanboy-annoyance.txt"),
-    ("ublock-filters", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/filters.txt"),
-    ("ublock-privacy", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/privacy.txt"),
-    ("ublock-unbreak", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/unbreak.txt"),
-    ("ublock-quick-fixes", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/quick-fixes.txt"),
-];
-
-const SCRIPTLETS_URL: &str = "https://raw.githubusercontent.com/gorhill/uBlock/master/assets/resources/scriptlets.js";
-const FALLBACK_SCRIPTLETS: &str = include_str!("../../resources/scriptlets/muse_ubo_compatible_scriptlets.js");
-const UPDATE_INTERVAL: Duration = Duration::from_secs(24 * 60 * 60);
-
-pub fn spawn_updater(app: AppHandle) {
-    tauri::async_runtime::spawn(async move {
-        tokio::time::sleep(Duration::from_secs(30)).await;
-        loop {
-            if let Err(e) = update_now(&app).await {
-                eprintln!("[muse-shield] Filter list update failed: {e}");
-            }
-            tokio::time::sleep(UPDATE_INTERVAL).await;
-        }
-    });
-}
-
-fn parse_scriptlet_file(path: &std::path::Path) -> Vec<adblock::resources::Resource> {
-    #[allow(deprecated)]
-    adblock::resources::resource_assembler::assemble_scriptlet_resources(path)
-}
-
-pub async fn update_now(app: &AppHandle) -> Result<(), String> {
-    let client = Client::builder()
-        .timeout(Duration::from_secs(45))
-        .user_agent("Muse/0.2 (adblock-updater)")
-        .build()
-        .map_err(|e| e.to_string())?;
-
-    let mut filter_set = FilterSet::new(false);
-    let mut total_rules = 0usize;
-
-    for (name, url) in FILTER_URLS {
-        match client.get(*url).send().await {
-            Ok(resp) => {
-                if let Ok(text) = resp.text().await {
-                    let _meta = filter_set.add_filter_list(&text, ParseOptions::default());
-                    let rule_count = text.lines().filter(|l| !l.trim().is_empty() && !l.starts_with('!')).count();
-                    total_rules += rule_count;
-                    println!("[muse-shield] Updated {name}: {rule_count} rules");
-                }
-            }
-            Err(e) => eprintln!("[muse-shield] Failed to fetch {name}: {e}"),
-        }
-    }
-
-    if total_rules == 0 { return Ok(()); }
-
-    let mut new_engine = Engine::from_filter_set(filter_set, true);
-    let cache_dir = app.path().app_data_dir().map_err(|e| e.to_string())?;
-    std::fs::create_dir_all(&cache_dir).map_err(|e| e.to_string())?;
-
-    // 1) Try upstream uBO resource source.
-    let mut resources = Vec::new();
-    match client.get(SCRIPTLETS_URL).send().await {
-        Ok(resp) => {
-            if let Ok(scriptlets_js) = resp.text().await {
-                let scriptlets_path = cache_dir.join("ubo-scriptlets.js");
-                std::fs::write(&scriptlets_path, &scriptlets_js).map_err(|e| e.to_string())?;
-                resources = parse_scriptlet_file(&scriptlets_path);
-                println!("[muse-shield] Upstream uBO scriptlets parsed {} resources", resources.len());
-            }
-        }
-        Err(e) => eprintln!("[muse-shield] Failed to fetch upstream uBO scriptlets: {e}"),
-    }
-
-    // 2) Deterministic fallback bundle in adblock-rust legacy resource format.
-    if resources.is_empty() {
-        let fallback_path = cache_dir.join("muse-fallback-scriptlets.js");
-        std::fs::write(&fallback_path, FALLBACK_SCRIPTLETS).map_err(|e| e.to_string())?;
-        resources = parse_scriptlet_file(&fallback_path);
-        println!("[muse-shield] Fallback scriptlets parsed {} resources", resources.len());
-    }
-
-    if !resources.is_empty() {
-        let resource_count = resources.len();
-        new_engine.use_resources(resources);
-        println!("[muse-shield] Loaded {resource_count} scriptlet resources via adblock-rust resource_assembler");
-    } else {
-        eprintln!("[muse-shield] WARNING: scriptlet resource parsing returned 0 even for fallback bundle. Built-in early video scriptlets remain active.");
-    }
-
-    let state = app.state::<AdBlockState>();
-    state.reload_engine(new_engine, total_rules);
-    println!("[muse-shield] Engine reloaded with {total_rules} rules + scriptlet resources");
-    Ok(())
-}
+use tauri::{AppHandle, Manager};
+use reqwest::Client;
+use std::time::Duration;
+use adblock::{Engine, FilterSet};
+use adblock::lists::ParseOptions;
+use super::engine::AdBlockState;
+
+const FILTER_URLS: &[(&str, &str)] = &[
+    ("easylist", "https://easylist.to/easylist/easylist.txt"),
+    ("easyprivacy", "https://easylist.to/easylist/easyprivacy.txt"),
+    ("fanboy-annoyances", "https://secure.fanboy.co.nz/fanboy-annoyance.txt"),
+    ("ublock-filters", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/filters.txt"),
+    ("ublock-privacy", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/privacy.txt"),
+    ("ublock-unbreak", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/unbreak.txt"),
+    ("ublock-quick-fixes", "https://raw.githubusercontent.com/uBlockOrigin/uAssets/master/filters/quick-fixes.txt"),
+];
+
+const SCRIPTLETS_URL: &str = "https://raw.githubusercontent.com/gorhill/uBlock/master/assets/resources/scriptlets.js";
+const FALLBACK_SCRIPTLETS: &str = include_str!("../../resources/scriptlets/muse_ubo_compatible_scriptlets.js");
+const UPDATE_INTERVAL: Duration = Duration::from_secs(24 * 60 * 60);
+
+pub fn spawn_updater(app: AppHandle) {
+    tauri::async_runtime::spawn(async move {
+        tokio::time::sleep(Duration::from_secs(30)).await;
+        loop {
+            if let Err(e) = update_now(&app).await {
+                eprintln!("[muse-shield] Filter list update failed: {e}");
+            }
+            tokio::time::sleep(UPDATE_INTERVAL).await;
+        }
+    });
+}
+
+fn parse_scriptlet_file(path: &std::path::Path) -> Vec<adblock::resources::Resource> {
+    #[allow(deprecated)]
+    adblock::resources::resource_assembler::assemble_scriptlet_resources(path)
+}
+
+pub async fn update_now(app: &AppHandle) -> Result<(), String> {
+    let client = Client::builder()
+        .timeout(Duration::from_secs(45))
+        .user_agent("Muse/0.2 (adblock-updater)")
+        .build()
+        .map_err(|e| e.to_string())?;
+
+    let mut filter_set = FilterSet::new(false);
+    let mut total_rules = 0usize;
+
+    for (name, url) in FILTER_URLS {
+        match client.get(*url).send().await {
+            Ok(resp) => {
+                if let Ok(text) = resp.text().await {
+                    let _meta = filter_set.add_filter_list(&text, ParseOptions::default());
+                    let rule_count = text.lines().filter(|l| !l.trim().is_empty() && !l.starts_with('!')).count();
+                    total_rules += rule_count;
+                    println!("[muse-shield] Updated {name}: {rule_count} rules");
+                }
+            }
+            Err(e) => eprintln!("[muse-shield] Failed to fetch {name}: {e}"),
+        }
+    }
+
+    if total_rules == 0 { return Ok(()); }
+
+    let mut new_engine = Engine::from_filter_set(filter_set, true);
+    let cache_dir = app.path().app_data_dir().map_err(|e| e.to_string())?;
+    std::fs::create_dir_all(&cache_dir).map_err(|e| e.to_string())?;
+
+    // 1) Try upstream uBO resource source.
+    let mut resources = Vec::new();
+    match client.get(SCRIPTLETS_URL).send().await {
+        Ok(resp) => {
+            if let Ok(scriptlets_js) = resp.text().await {
+                let scriptlets_path = cache_dir.join("ubo-scriptlets.js");
+                std::fs::write(&scriptlets_path, &scriptlets_js).map_err(|e| e.to_string())?;
+                resources = parse_scriptlet_file(&scriptlets_path);
+                println!("[muse-shield] Upstream uBO scriptlets parsed {} resources", resources.len());
+            }
+        }
+        Err(e) => eprintln!("[muse-shield] Failed to fetch upstream uBO scriptlets: {e}"),
+    }
+
+    // 2) Deterministic fallback bundle in adblock-rust legacy resource format.
+    if resources.is_empty() {
+        let fallback_path = cache_dir.join("muse-fallback-scriptlets.js");
+        std::fs::write(&fallback_path, FALLBACK_SCRIPTLETS).map_err(|e| e.to_string())?;
+        resources = parse_scriptlet_file(&fallback_path);
+        println!("[muse-shield] Fallback scriptlets parsed {} resources", resources.len());
+    }
+
+    if !resources.is_empty() {
+        let resource_count = resources.len();
+        new_engine.use_resources(resources);
+        println!("[muse-shield] Loaded {resource_count} scriptlet resources via adblock-rust resource_assembler");
+    } else {
+        eprintln!("[muse-shield] WARNING: scriptlet resource parsing returned 0 even for fallback bundle. Built-in early video scriptlets remain active.");
+    }
+
+    let state = app.state::<AdBlockState>();
+    state.reload_engine(new_engine, total_rules);
+    println!("[muse-shield] Engine reloaded with {total_rules} rules + scriptlet resources");
+    Ok(())
+}

src-tauri/src/board.rs

@@ -1,222 +1,222 @@
-use base64::{engine::general_purpose, Engine as _};
-use serde::{Deserialize, Serialize};
-use std::sync::Mutex;
-use tauri::{AppHandle, Manager};
-use uuid::Uuid;
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct BoardItem {
-    pub id: String,
-    pub kind: String,
-    pub library_id: Option<String>,
-    pub data_url: Option<String>,
-    pub text: Option<String>,
-    pub colors: Vec<String>,
-    pub x: f64,
-    pub y: f64,
-    pub w: f64,
-    pub h: f64,
-    pub z: i64,
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct BoardSummary {
-    pub id: String,
-    pub title: String,
-    pub item_count: usize,
-    pub created_at: i64,
-    pub updated_at: i64,
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct BoardDocument {
-    pub id: String,
-    pub title: String,
-    pub items: Vec<BoardItem>,
-    pub created_at: i64,
-    pub updated_at: i64,
-}
-
-impl Default for BoardDocument {
-    fn default() -> Self {
-        let now = chrono::Utc::now().timestamp();
-        Self { id: "default".into(), title: "Reference Board".into(), items: vec![], created_at: now, updated_at: now }
-    }
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize, Default)]
-struct BoardIndex { boards: Vec<BoardSummary>, active_id: Option<String> }
-
-#[derive(Default)]
-pub struct BoardState { pub current: Mutex<Option<BoardDocument>> }
-
-fn board_file(id: &str) -> String { format!("board_{id}.json") }
-fn save_index(app: &AppHandle, index: &BoardIndex) -> Result<(), String> { crate::persistence::save_json(app, "boards_index.json", index) }
-fn load_index(app: &AppHandle) -> Result<BoardIndex, String> { crate::persistence::load_json(app, "boards_index.json") }
-fn save_doc(app: &AppHandle, doc: &BoardDocument) -> Result<(), String> { crate::persistence::save_json(app, &board_file(&doc.id), doc) }
-fn load_doc(app: &AppHandle, id: &str) -> Result<BoardDocument, String> { crate::persistence::load_json(app, &board_file(id)) }
-
-fn update_index_for_doc(app: &AppHandle, doc: &BoardDocument, make_active: bool) -> Result<(), String> {
-    let mut index = load_index(app).unwrap_or_default();
-    let summary = BoardSummary { id: doc.id.clone(), title: doc.title.clone(), item_count: doc.items.len(), created_at: doc.created_at, updated_at: doc.updated_at };
-    if let Some(slot) = index.boards.iter_mut().find(|b| b.id == doc.id) { *slot = summary; } else { index.boards.insert(0, summary); }
-    if make_active { index.active_id = Some(doc.id.clone()); }
-    save_index(app, &index)
-}
-
-fn ensure_current(app: &AppHandle) -> Result<BoardDocument, String> {
-    let state = app.state::<BoardState>();
-    if let Some(doc) = state.current.lock().map_err(|_| "board lock poisoned".to_string())?.clone() { return Ok(doc); }
-    let index = load_index(app).unwrap_or_default();
-    if let Some(active) = index.active_id.clone().or_else(|| index.boards.first().map(|b| b.id.clone())) {
-        let doc = load_doc(app, &active).unwrap_or_default();
-        *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-        return Ok(doc);
-    }
-    let doc = BoardDocument::default();
-    save_doc(app, &doc)?;
-    let mut idx = load_index(app).unwrap_or_default();
-    idx.boards.push(BoardSummary { id: doc.id.clone(), title: doc.title.clone(), item_count: 0, created_at: doc.created_at, updated_at: doc.updated_at });
-    idx.active_id = Some(doc.id.clone());
-    save_index(app, &idx)?;
-    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-    Ok(doc)
-}
-
-fn save_current(app: &AppHandle, mut doc: BoardDocument) -> Result<BoardDocument, String> {
-    doc.updated_at = chrono::Utc::now().timestamp();
-    save_doc(app, &doc)?;
-    update_index_for_doc(app, &doc, true)?;
-    let state = app.state::<BoardState>();
-    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-    Ok(doc)
-}
-
-#[tauri::command]
-pub fn board_list(app: AppHandle) -> Result<Vec<BoardSummary>, String> { Ok(load_index(&app).unwrap_or_default().boards) }
-#[tauri::command]
-pub fn board_current(app: AppHandle) -> Result<BoardDocument, String> { ensure_current(&app) }
-
-#[tauri::command]
-pub fn board_create(app: AppHandle, title: String) -> Result<BoardDocument, String> {
-    let now = chrono::Utc::now().timestamp();
-    let doc = BoardDocument { id: Uuid::new_v4().to_string(), title: if title.trim().is_empty() { "Untitled Board".into() } else { title }, items: vec![], created_at: now, updated_at: now };
-    save_doc(&app, &doc)?; update_index_for_doc(&app, &doc, true)?;
-    let state = app.state::<BoardState>();
-    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-    Ok(doc)
-}
-
-#[tauri::command]
-pub fn board_open(app: AppHandle, id: String) -> Result<BoardDocument, String> {
-    let doc = load_doc(&app, &id)?; update_index_for_doc(&app, &doc, true)?;
-    let state = app.state::<BoardState>();
-    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-    Ok(doc)
-}
-
-#[tauri::command]
-pub fn board_save_as(app: AppHandle, title: String) -> Result<BoardDocument, String> {
-    let current = ensure_current(&app)?;
-    let now = chrono::Utc::now().timestamp();
-    let doc = BoardDocument { id: Uuid::new_v4().to_string(), title: if title.trim().is_empty() { format!("{} copy", current.title) } else { title }, items: current.items, created_at: now, updated_at: now };
-    save_doc(&app, &doc)?; update_index_for_doc(&app, &doc, true)?;
-    let state = app.state::<BoardState>();
-    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
-    Ok(doc)
-}
-
-#[tauri::command]
-pub fn board_load(app: AppHandle) -> Result<Vec<BoardItem>, String> { Ok(ensure_current(&app)?.items) }
-#[tauri::command]
-pub fn board_items(app: AppHandle) -> Result<Vec<BoardItem>, String> { board_load(app) }
-
-#[tauri::command]
-pub fn board_add_image(app: AppHandle, library_id: Option<String>, data_url: String, x: f64, y: f64, w: f64, h: f64) -> Result<BoardItem, String> {
-    let mut doc = ensure_current(&app)?;
-    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "image".into(), library_id, data_url: Some(data_url), text: None, colors: vec![], x, y, w, h, z: chrono::Utc::now().timestamp_millis() };
-    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
-}
-
-#[tauri::command]
-pub fn board_add_note(app: AppHandle, text: String, x: f64, y: f64) -> Result<BoardItem, String> {
-    let mut doc = ensure_current(&app)?;
-    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "note".into(), library_id: None, data_url: None, text: Some(text), colors: vec![], x, y, w: 240.0, h: 160.0, z: chrono::Utc::now().timestamp_millis() };
-    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
-}
-
-#[tauri::command]
-pub fn board_add_palette(app: AppHandle, colors: Vec<String>, x: f64, y: f64) -> Result<BoardItem, String> {
-    if colors.is_empty() { return Err("no colors to add".into()); }
-    let mut doc = ensure_current(&app)?;
-    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "palette".into(), library_id: None, data_url: None, text: None, colors, x, y, w: 260.0, h: 90.0, z: chrono::Utc::now().timestamp_millis() };
-    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
-}
-
-#[tauri::command]
-pub async fn board_extract_palette_from_item(app: AppHandle, id: String, count: Option<usize>) -> Result<Vec<String>, String> {
-    let mut doc = ensure_current(&app)?;
-    let item = doc.items.iter_mut().find(|i| i.id == id).ok_or("board item not found")?;
-    let src = item.data_url.clone().ok_or("board item has no image source")?;
-    let bytes = image_bytes_from_source(&src).await?;
-    let img = image::load_from_memory(&bytes).map_err(|e| format!("unsupported image: {e}"))?;
-    let colors = extract_palette(&img, count.unwrap_or(6).clamp(1, 12));
-    item.colors = colors.clone();
-    save_current(&app, doc)?; Ok(colors)
-}
-
-#[tauri::command]
-pub async fn board_add_palette_from_item(app: AppHandle, id: String, x: f64, y: f64) -> Result<BoardItem, String> {
-    let colors = board_extract_palette_from_item(app.clone(), id, Some(6)).await?;
-    board_add_palette(app, colors, x, y)
-}
-
-#[tauri::command]
-pub fn board_update_item(app: AppHandle, item: BoardItem) -> Result<(), String> {
-    let mut doc = ensure_current(&app)?;
-    if let Some(slot) = doc.items.iter_mut().find(|i| i.id == item.id) { *slot = item; }
-    save_current(&app, doc).map(|_| ())
-}
-
-#[tauri::command]
-pub fn board_delete_item(app: AppHandle, id: String) -> Result<(), String> {
-    let mut doc = ensure_current(&app)?;
-    doc.items.retain(|i| i.id != id);
-    save_current(&app, doc).map(|_| ())
-}
-
-async fn image_bytes_from_source(src: &str) -> Result<Vec<u8>, String> {
-    if let Some((_, encoded)) = src.split_once(",") {
-        if src.starts_with("data:image/") { return general_purpose::STANDARD.decode(encoded).map_err(|e| e.to_string()); }
-    }
-    if src.starts_with("http://") || src.starts_with("https://") {
-        return Ok(reqwest::get(src).await.map_err(|e| e.to_string())?.bytes().await.map_err(|e| e.to_string())?.to_vec());
-    }
-    Err("unsupported image source".into())
-}
-
-fn extract_palette(img: &image::DynamicImage, count: usize) -> Vec<String> {
-    let thumb = img.thumbnail(120, 120).to_rgb8();
-    let mut pixels: Vec<[u8; 3]> = thumb.pixels().filter_map(|p| {
-        let [r, g, b] = [p[0], p[1], p[2]];
-        if r.max(g).max(b) < 12 { None } else { Some([r, g, b]) }
-    }).collect();
-    if pixels.is_empty() { pixels = thumb.pixels().map(|p| [p[0], p[1], p[2]]).collect(); }
-    let mut buckets = vec![pixels];
-    while buckets.len() < count {
-        let Some((idx, axis)) = buckets.iter().enumerate().filter(|(_, b)| b.len() > 1).map(|(i, b)| {
-            let ranges: Vec<u8> = (0..3).map(|c| b.iter().map(|p| p[c]).max().unwrap_or(0).saturating_sub(b.iter().map(|p| p[c]).min().unwrap_or(0))).collect();
-            let axis = ranges.iter().enumerate().max_by_key(|(_, r)| *r).map(|(a, _)| a).unwrap_or(0);
-            (i, axis)
-        }).max_by_key(|(i, axis)| {
-            let b = &buckets[*i];
-            b.iter().map(|p| p[*axis]).max().unwrap_or(0).saturating_sub(b.iter().map(|p| p[*axis]).min().unwrap_or(0))
-        }) else { break; };
-        let mut b = buckets.remove(idx); b.sort_by_key(|p| p[axis]); let right = b.split_off(b.len() / 2); buckets.push(b); buckets.push(right);
-    }
-    buckets.into_iter().filter(|b| !b.is_empty()).map(|b| {
-        let n = b.len() as u32;
-        let (r, g, bl) = b.iter().fold((0u32, 0u32, 0u32), |a, p| (a.0 + p[0] as u32, a.1 + p[1] as u32, a.2 + p[2] as u32));
-        format!("#{:02X}{:02X}{:02X}", r / n, g / n, bl / n)
-    }).collect()
-}
+use base64::{engine::general_purpose, Engine as _};
+use serde::{Deserialize, Serialize};
+use std::sync::Mutex;
+use tauri::{AppHandle, Manager};
+use uuid::Uuid;
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct BoardItem {
+    pub id: String,
+    pub kind: String,
+    pub library_id: Option<String>,
+    pub data_url: Option<String>,
+    pub text: Option<String>,
+    pub colors: Vec<String>,
+    pub x: f64,
+    pub y: f64,
+    pub w: f64,
+    pub h: f64,
+    pub z: i64,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct BoardSummary {
+    pub id: String,
+    pub title: String,
+    pub item_count: usize,
+    pub created_at: i64,
+    pub updated_at: i64,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct BoardDocument {
+    pub id: String,
+    pub title: String,
+    pub items: Vec<BoardItem>,
+    pub created_at: i64,
+    pub updated_at: i64,
+}
+
+impl Default for BoardDocument {
+    fn default() -> Self {
+        let now = chrono::Utc::now().timestamp();
+        Self { id: "default".into(), title: "Reference Board".into(), items: vec![], created_at: now, updated_at: now }
+    }
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize, Default)]
+struct BoardIndex { boards: Vec<BoardSummary>, active_id: Option<String> }
+
+#[derive(Default)]
+pub struct BoardState { pub current: Mutex<Option<BoardDocument>> }
+
+fn board_file(id: &str) -> String { format!("board_{id}.json") }
+fn save_index(app: &AppHandle, index: &BoardIndex) -> Result<(), String> { crate::persistence::save_json(app, "boards_index.json", index) }
+fn load_index(app: &AppHandle) -> Result<BoardIndex, String> { crate::persistence::load_json(app, "boards_index.json") }
+fn save_doc(app: &AppHandle, doc: &BoardDocument) -> Result<(), String> { crate::persistence::save_json(app, &board_file(&doc.id), doc) }
+fn load_doc(app: &AppHandle, id: &str) -> Result<BoardDocument, String> { crate::persistence::load_json(app, &board_file(id)) }
+
+fn update_index_for_doc(app: &AppHandle, doc: &BoardDocument, make_active: bool) -> Result<(), String> {
+    let mut index = load_index(app).unwrap_or_default();
+    let summary = BoardSummary { id: doc.id.clone(), title: doc.title.clone(), item_count: doc.items.len(), created_at: doc.created_at, updated_at: doc.updated_at };
+    if let Some(slot) = index.boards.iter_mut().find(|b| b.id == doc.id) { *slot = summary; } else { index.boards.insert(0, summary); }
+    if make_active { index.active_id = Some(doc.id.clone()); }
+    save_index(app, &index)
+}
+
+fn ensure_current(app: &AppHandle) -> Result<BoardDocument, String> {
+    let state = app.state::<BoardState>();
+    if let Some(doc) = state.current.lock().map_err(|_| "board lock poisoned".to_string())?.clone() { return Ok(doc); }
+    let index = load_index(app).unwrap_or_default();
+    if let Some(active) = index.active_id.clone().or_else(|| index.boards.first().map(|b| b.id.clone())) {
+        let doc = load_doc(app, &active).unwrap_or_default();
+        *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+        return Ok(doc);
+    }
+    let doc = BoardDocument::default();
+    save_doc(app, &doc)?;
+    let mut idx = load_index(app).unwrap_or_default();
+    idx.boards.push(BoardSummary { id: doc.id.clone(), title: doc.title.clone(), item_count: 0, created_at: doc.created_at, updated_at: doc.updated_at });
+    idx.active_id = Some(doc.id.clone());
+    save_index(app, &idx)?;
+    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+    Ok(doc)
+}
+
+fn save_current(app: &AppHandle, mut doc: BoardDocument) -> Result<BoardDocument, String> {
+    doc.updated_at = chrono::Utc::now().timestamp();
+    save_doc(app, &doc)?;
+    update_index_for_doc(app, &doc, true)?;
+    let state = app.state::<BoardState>();
+    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+    Ok(doc)
+}
+
+#[tauri::command]
+pub fn board_list(app: AppHandle) -> Result<Vec<BoardSummary>, String> { Ok(load_index(&app).unwrap_or_default().boards) }
+#[tauri::command]
+pub fn board_current(app: AppHandle) -> Result<BoardDocument, String> { ensure_current(&app) }
+
+#[tauri::command]
+pub fn board_create(app: AppHandle, title: String) -> Result<BoardDocument, String> {
+    let now = chrono::Utc::now().timestamp();
+    let doc = BoardDocument { id: Uuid::new_v4().to_string(), title: if title.trim().is_empty() { "Untitled Board".into() } else { title }, items: vec![], created_at: now, updated_at: now };
+    save_doc(&app, &doc)?; update_index_for_doc(&app, &doc, true)?;
+    let state = app.state::<BoardState>();
+    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+    Ok(doc)
+}
+
+#[tauri::command]
+pub fn board_open(app: AppHandle, id: String) -> Result<BoardDocument, String> {
+    let doc = load_doc(&app, &id)?; update_index_for_doc(&app, &doc, true)?;
+    let state = app.state::<BoardState>();
+    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+    Ok(doc)
+}
+
+#[tauri::command]
+pub fn board_save_as(app: AppHandle, title: String) -> Result<BoardDocument, String> {
+    let current = ensure_current(&app)?;
+    let now = chrono::Utc::now().timestamp();
+    let doc = BoardDocument { id: Uuid::new_v4().to_string(), title: if title.trim().is_empty() { format!("{} copy", current.title) } else { title }, items: current.items, created_at: now, updated_at: now };
+    save_doc(&app, &doc)?; update_index_for_doc(&app, &doc, true)?;
+    let state = app.state::<BoardState>();
+    *state.current.lock().map_err(|_| "board lock poisoned".to_string())? = Some(doc.clone());
+    Ok(doc)
+}
+
+#[tauri::command]
+pub fn board_load(app: AppHandle) -> Result<Vec<BoardItem>, String> { Ok(ensure_current(&app)?.items) }
+#[tauri::command]
+pub fn board_items(app: AppHandle) -> Result<Vec<BoardItem>, String> { board_load(app) }
+
+#[tauri::command]
+pub fn board_add_image(app: AppHandle, library_id: Option<String>, data_url: String, x: f64, y: f64, w: f64, h: f64) -> Result<BoardItem, String> {
+    let mut doc = ensure_current(&app)?;
+    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "image".into(), library_id, data_url: Some(data_url), text: None, colors: vec![], x, y, w, h, z: chrono::Utc::now().timestamp_millis() };
+    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
+}
+
+#[tauri::command]
+pub fn board_add_note(app: AppHandle, text: String, x: f64, y: f64) -> Result<BoardItem, String> {
+    let mut doc = ensure_current(&app)?;
+    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "note".into(), library_id: None, data_url: None, text: Some(text), colors: vec![], x, y, w: 240.0, h: 160.0, z: chrono::Utc::now().timestamp_millis() };
+    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
+}
+
+#[tauri::command]
+pub fn board_add_palette(app: AppHandle, colors: Vec<String>, x: f64, y: f64) -> Result<BoardItem, String> {
+    if colors.is_empty() { return Err("no colors to add".into()); }
+    let mut doc = ensure_current(&app)?;
+    let item = BoardItem { id: Uuid::new_v4().to_string(), kind: "palette".into(), library_id: None, data_url: None, text: None, colors, x, y, w: 260.0, h: 90.0, z: chrono::Utc::now().timestamp_millis() };
+    doc.items.push(item.clone()); save_current(&app, doc)?; Ok(item)
+}
+
+#[tauri::command]
+pub async fn board_extract_palette_from_item(app: AppHandle, id: String, count: Option<usize>) -> Result<Vec<String>, String> {
+    let mut doc = ensure_current(&app)?;
+    let item = doc.items.iter_mut().find(|i| i.id == id).ok_or("board item not found")?;
+    let src = item.data_url.clone().ok_or("board item has no image source")?;
+    let bytes = image_bytes_from_source(&src).await?;
+    let img = image::load_from_memory(&bytes).map_err(|e| format!("unsupported image: {e}"))?;
+    let colors = extract_palette(&img, count.unwrap_or(6).clamp(1, 12));
+    item.colors = colors.clone();
+    save_current(&app, doc)?; Ok(colors)
+}
+
+#[tauri::command]
+pub async fn board_add_palette_from_item(app: AppHandle, id: String, x: f64, y: f64) -> Result<BoardItem, String> {
+    let colors = board_extract_palette_from_item(app.clone(), id, Some(6)).await?;
+    board_add_palette(app, colors, x, y)
+}
+
+#[tauri::command]
+pub fn board_update_item(app: AppHandle, item: BoardItem) -> Result<(), String> {
+    let mut doc = ensure_current(&app)?;
+    if let Some(slot) = doc.items.iter_mut().find(|i| i.id == item.id) { *slot = item; }
+    save_current(&app, doc).map(|_| ())
+}
+
+#[tauri::command]
+pub fn board_delete_item(app: AppHandle, id: String) -> Result<(), String> {
+    let mut doc = ensure_current(&app)?;
+    doc.items.retain(|i| i.id != id);
+    save_current(&app, doc).map(|_| ())
+}
+
+async fn image_bytes_from_source(src: &str) -> Result<Vec<u8>, String> {
+    if let Some((_, encoded)) = src.split_once(",") {
+        if src.starts_with("data:image/") { return general_purpose::STANDARD.decode(encoded).map_err(|e| e.to_string()); }
+    }
+    if src.starts_with("http://") || src.starts_with("https://") {
+        return Ok(reqwest::get(src).await.map_err(|e| e.to_string())?.bytes().await.map_err(|e| e.to_string())?.to_vec());
+    }
+    Err("unsupported image source".into())
+}
+
+fn extract_palette(img: &image::DynamicImage, count: usize) -> Vec<String> {
+    let thumb = img.thumbnail(120, 120).to_rgb8();
+    let mut pixels: Vec<[u8; 3]> = thumb.pixels().filter_map(|p| {
+        let [r, g, b] = [p[0], p[1], p[2]];
+        if r.max(g).max(b) < 12 { None } else { Some([r, g, b]) }
+    }).collect();
+    if pixels.is_empty() { pixels = thumb.pixels().map(|p| [p[0], p[1], p[2]]).collect(); }
+    let mut buckets = vec![pixels];
+    while buckets.len() < count {
+        let Some((idx, axis)) = buckets.iter().enumerate().filter(|(_, b)| b.len() > 1).map(|(i, b)| {
+            let ranges: Vec<u8> = (0..3).map(|c| b.iter().map(|p| p[c]).max().unwrap_or(0).saturating_sub(b.iter().map(|p| p[c]).min().unwrap_or(0))).collect();
+            let axis = ranges.iter().enumerate().max_by_key(|(_, r)| *r).map(|(a, _)| a).unwrap_or(0);
+            (i, axis)
+        }).max_by_key(|(i, axis)| {
+            let b = &buckets[*i];
+            b.iter().map(|p| p[*axis]).max().unwrap_or(0).saturating_sub(b.iter().map(|p| p[*axis]).min().unwrap_or(0))
+        }) else { break; };
+        let mut b = buckets.remove(idx); b.sort_by_key(|p| p[axis]); let right = b.split_off(b.len() / 2); buckets.push(b); buckets.push(right);
+    }
+    buckets.into_iter().filter(|b| !b.is_empty()).map(|b| {
+        let n = b.len() as u32;
+        let (r, g, bl) = b.iter().fold((0u32, 0u32, 0u32), |a, p| (a.0 + p[0] as u32, a.1 + p[1] as u32, a.2 + p[2] as u32));
+        format!("#{:02X}{:02X}{:02X}", r / n, g / n, bl / n)
+    }).collect()
+}

src-tauri/src/browser/autofill.rs

@@ -1,13 +1,13 @@
-use tauri::AppHandle;
-use super::tab_manager::eval_on_tab;
-
-/// Injects saved credentials into the active child webview's login form.
-/// Called by the React frontend after user selects a credential from the vault.
-/// Uses the __museAutofill() function that vault_detector.js defines in every page.
-#[tauri::command]
-pub fn tab_autofill(app: AppHandle, tab_id: String, username: String, password: String) -> Result<(), String> {
-    let username_js = serde_json::to_string(&username).map_err(|e| e.to_string())?;
-    let password_js = serde_json::to_string(&password).map_err(|e| e.to_string())?;
-    let js = format!("window.__museAutofill && window.__museAutofill({username_js}, {password_js})");
-    eval_on_tab(&app, &tab_id, &js)
-}
+use tauri::AppHandle;
+use super::tab_manager::eval_on_tab;
+
+/// Injects saved credentials into the active child webview's login form.
+/// Called by the React frontend after user selects a credential from the vault.
+/// Uses the __museAutofill() function that vault_detector.js defines in every page.
+#[tauri::command]
+pub fn tab_autofill(app: AppHandle, tab_id: String, username: String, password: String) -> Result<(), String> {
+    let username_js = serde_json::to_string(&username).map_err(|e| e.to_string())?;
+    let password_js = serde_json::to_string(&password).map_err(|e| e.to_string())?;
+    let js = format!("window.__museAutofill && window.__museAutofill({username_js}, {password_js})");
+    eval_on_tab(&app, &tab_id, &js)
+}

src-tauri/src/browser/capture.rs

@@ -1,93 +1,93 @@
-use serde::{Deserialize, Serialize};
-use tauri::{AppHandle, Manager};
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct CaptureClip {
-    pub x: f64,
-    pub y: f64,
-    pub width: f64,
-    pub height: f64,
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct ContentLayout {
-    pub x: f64,
-    pub y: f64,
-    pub width: f64,
-    pub height: f64,
-}
-
-#[tauri::command]
-pub fn browser_capture_viewport(app: AppHandle, layout: ContentLayout) -> Result<String, String> {
-    if layout.width < 10.0 || layout.height < 10.0 {
-        return Err("content area is too small to capture".into());
-    }
-    let window = app.get_window("main").ok_or("main window not found")?;
-    let scale = window.scale_factor().map_err(|e| format!("scale_factor: {e}"))?;
-    let outer = window.outer_position().map_err(|e| format!("outer_position: {e}"))?;
-    let abs_x = outer.x + (layout.x * scale).round() as i32;
-    let abs_y = outer.y + (layout.y * scale).round() as i32;
-    let abs_w = (layout.width * scale).round().max(1.0) as u32;
-    let abs_h = (layout.height * scale).round().max(1.0) as u32;
-    capture_screen_region(abs_x, abs_y, abs_w, abs_h)
-}
-
-#[tauri::command]
-pub fn browser_capture_clip(app: AppHandle, layout: ContentLayout, clip: CaptureClip) -> Result<String, String> {
-    if clip.width < 1.0 || clip.height < 1.0 {
-        return Err("clip area is too small".into());
-    }
-    if layout.width < 10.0 || layout.height < 10.0 {
-        return Err("content area is too small".into());
-    }
-    let window = app.get_window("main").ok_or("main window not found")?;
-    let scale = window.scale_factor().map_err(|e| format!("scale_factor: {e}"))?;
-    let outer = window.outer_position().map_err(|e| format!("outer_position: {e}"))?;
-    let abs_x = outer.x + ((layout.x + clip.x) * scale).round() as i32;
-    let abs_y = outer.y + ((layout.y + clip.y) * scale).round() as i32;
-    let abs_w = (clip.width * scale).round().max(1.0) as u32;
-    let abs_h = (clip.height * scale).round().max(1.0) as u32;
-    capture_screen_region(abs_x, abs_y, abs_w, abs_h)
-}
-
-#[tauri::command]
-pub fn browser_capture_full_page(app: AppHandle, layout: ContentLayout) -> Result<String, String> {
-    browser_capture_viewport(app, layout)
-}
-
-fn capture_screen_region(x: i32, y: i32, width: u32, height: u32) -> Result<String, String> {
-    use base64::{engine::general_purpose, Engine as _};
-    use screenshots::Screen;
-
-    if width < 1 || height < 1 {
-        return Err("capture region is empty".into());
-    }
-    let screens = Screen::all().map_err(|e| format!("failed to enumerate screens: {e}"))?;
-    let cx = x + (width as i32 / 2);
-    let cy = y + (height as i32 / 2);
-    let screen = screens.iter().find(|s| {
-        let di = s.display_info;
-        let sx = di.x as i32;
-        let sy = di.y as i32;
-        let sw = di.width as i32;
-        let sh = di.height as i32;
-        cx >= sx && cy >= sy && cx < sx + sw && cy < sy + sh
-    }).or_else(|| screens.first()).ok_or("no screen found")?;
-
-    let capture = screen.capture_area(x, y, width, height)
-        .map_err(|e| format!("screen capture failed (x={x}, y={y}, w={width}, h={height}): {e}"))?;
-    let cw = capture.width();
-    let ch = capture.height();
-    let raw = capture.into_raw();
-
-    let img_buf = image::RgbaImage::from_raw(cw, ch, raw)
-        .ok_or_else(|| "failed to create image buffer".to_string())?;
-    let dynamic = image::DynamicImage::ImageRgba8(img_buf);
-    let mut png_bytes: Vec<u8> = Vec::new();
-    dynamic.write_to(&mut std::io::Cursor::new(&mut png_bytes), image::ImageFormat::Png)
-        .map_err(|e| format!("PNG encode failed: {e}"))?;
-    let b64 = general_purpose::STANDARD.encode(&png_bytes);
-    Ok(format!("data:image/png;base64,{b64}"))
-}
+use serde::{Deserialize, Serialize};
+use tauri::{AppHandle, Manager};
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(rename_all = "camelCase")]
+pub struct CaptureClip {
+    pub x: f64,
+    pub y: f64,
+    pub width: f64,
+    pub height: f64,
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(rename_all = "camelCase")]
+pub struct ContentLayout {
+    pub x: f64,
+    pub y: f64,
+    pub width: f64,
+    pub height: f64,
+}
+
+#[tauri::command]
+pub fn browser_capture_viewport(app: AppHandle, layout: ContentLayout) -> Result<String, String> {
+    if layout.width < 10.0 || layout.height < 10.0 {
+        return Err("content area is too small to capture".into());
+    }
+    let window = app.get_window("main").ok_or("main window not found")?;
+    let scale = window.scale_factor().map_err(|e| format!("scale_factor: {e}"))?;
+    let outer = window.outer_position().map_err(|e| format!("outer_position: {e}"))?;
+    let abs_x = outer.x + (layout.x * scale).round() as i32;
+    let abs_y = outer.y + (layout.y * scale).round() as i32;
+    let abs_w = (layout.width * scale).round().max(1.0) as u32;
+    let abs_h = (layout.height * scale).round().max(1.0) as u32;
+    capture_screen_region(abs_x, abs_y, abs_w, abs_h)
+}
+
+#[tauri::command]
+pub fn browser_capture_clip(app: AppHandle, layout: ContentLayout, clip: CaptureClip) -> Result<String, String> {
+    if clip.width < 1.0 || clip.height < 1.0 {
+        return Err("clip area is too small".into());
+    }
+    if layout.width < 10.0 || layout.height < 10.0 {
+        return Err("content area is too small".into());
+    }
+    let window = app.get_window("main").ok_or("main window not found")?;
+    let scale = window.scale_factor().map_err(|e| format!("scale_factor: {e}"))?;
+    let outer = window.outer_position().map_err(|e| format!("outer_position: {e}"))?;
+    let abs_x = outer.x + ((layout.x + clip.x) * scale).round() as i32;
+    let abs_y = outer.y + ((layout.y + clip.y) * scale).round() as i32;
+    let abs_w = (clip.width * scale).round().max(1.0) as u32;
+    let abs_h = (clip.height * scale).round().max(1.0) as u32;
+    capture_screen_region(abs_x, abs_y, abs_w, abs_h)
+}
+
+#[tauri::command]
+pub fn browser_capture_full_page(app: AppHandle, layout: ContentLayout) -> Result<String, String> {
+    browser_capture_viewport(app, layout)
+}
+
+fn capture_screen_region(x: i32, y: i32, width: u32, height: u32) -> Result<String, String> {
+    use base64::{engine::general_purpose, Engine as _};
+    use screenshots::Screen;
+
+    if width < 1 || height < 1 {
+        return Err("capture region is empty".into());
+    }
+    let screens = Screen::all().map_err(|e| format!("failed to enumerate screens: {e}"))?;
+    let cx = x + (width as i32 / 2);
+    let cy = y + (height as i32 / 2);
+    let screen = screens.iter().find(|s| {
+        let di = s.display_info;
+        let sx = di.x as i32;
+        let sy = di.y as i32;
+        let sw = di.width as i32;
+        let sh = di.height as i32;
+        cx >= sx && cy >= sy && cx < sx + sw && cy < sy + sh
+    }).or_else(|| screens.first()).ok_or("no screen found")?;
+
+    let capture = screen.capture_area(x, y, width, height)
+        .map_err(|e| format!("screen capture failed (x={x}, y={y}, w={width}, h={height}): {e}"))?;
+    let cw = capture.width();
+    let ch = capture.height();
+    let raw = capture.into_raw();
+
+    let img_buf = image::RgbaImage::from_raw(cw, ch, raw)
+        .ok_or_else(|| "failed to create image buffer".to_string())?;
+    let dynamic = image::DynamicImage::ImageRgba8(img_buf);
+    let mut png_bytes: Vec<u8> = Vec::new();
+    dynamic.write_to(&mut std::io::Cursor::new(&mut png_bytes), image::ImageFormat::Png)
+        .map_err(|e| format!("PNG encode failed: {e}"))?;
+    let b64 = general_purpose::STANDARD.encode(&png_bytes);
+    Ok(format!("data:image/png;base64,{b64}"))
+}

src-tauri/src/browser/commands.rs

@@ -1,225 +1,272 @@
-use std::collections::HashMap;
-use tauri::webview::{PageLoadEvent, WebviewBuilder};
-use tauri::{AppHandle, Emitter, LogicalPosition, LogicalSize, Manager, Url, WebviewUrl};
-
-use super::layout::{bounds, hide_tab, resize_active, show_tab};
-use super::navigation::{navigation_blocked, resolve_url};
-use super::tab_manager::*;
-use crate::adblock::engine::AdBlockState;
-use crate::adblock::scripts;
-use crate::state::AppState;
-
-const CONTEXT_MENU_BLOCK_JS: &str = r#"
-(function(){
-  if(window.__muse_ctx_installed) return;
-  window.__muse_ctx_installed = true;
-  document.addEventListener('contextmenu', function(e) {
-    e.preventDefault(); e.stopPropagation(); e.stopImmediatePropagation();
-    try {
-      var t = e.target;
-      window.__TAURI_INTERNALS__.invoke('browser_context_menu', {
-        x: e.screenX, y: e.screenY, clientX: e.clientX, clientY: e.clientY,
-        tagName: t.tagName || null, src: t.src || t.currentSrc || null,
-        href: t.closest && t.closest('a') ? t.closest('a').href : null,
-        text: (window.getSelection() || '').toString().slice(0, 200) || null,
-        pageUrl: location.href
-      });
-    } catch(ex) {}
-    return false;
-  }, true);
-  window.addEventListener('contextmenu', function(e){ e.preventDefault(); return false; }, true);
-})();
-"#;
-
-#[tauri::command]
-pub async fn browser_init(app: AppHandle, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
-    let existing = snapshot(&app)?;
-    if !existing.tabs.is_empty() {
-        if layout.x > 0.0 || layout.y > 0.0 { resize_active(&app, &layout)?; }
-        return Ok(existing);
-    }
-    create_tab_inner(&app, "https://duckduckgo.com", &layout, false).await?;
-    snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn browser_set_visible(app: AppHandle, visible: bool, layout: ViewportLayout) -> Result<(), String> {
-    let active = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.active.clone() };
-    if let Some(active_id) = active {
-        if visible && layout.width > 10.0 && layout.height > 10.0 { show_tab(&app, &active_id, &layout)?; } else { hide_tab(&app, &active_id)?; }
-    }
-    Ok(())
-}
-
-#[tauri::command]
-pub async fn tab_create(app: AppHandle, url: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
-    let resolved = resolve_url(&url);
-    if navigation_blocked(&app, &resolved) { return snapshot(&app); }
-    create_tab_inner(&app, &resolved, &layout, false).await?;
-    snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_activate(app: AppHandle, tab_id: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
-    let previous = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let previous = tabs.active.clone(); if !tabs.tabs.contains_key(&tab_id) { return Err(format!("tab not found: {tab_id}")); } tabs.active = Some(tab_id.clone()); if let Some(tab) = tabs.tabs.get_mut(&tab_id) { tab.last_active = chrono::Utc::now().timestamp(); } previous };
-    if let Some(prev) = previous { if prev != tab_id { hide_tab(&app, &prev)?; } }
-    if layout.width > 10.0 && layout.height > 10.0 && layout.x > 0.0 { show_tab(&app, &tab_id, &layout)?; }
-    emit_snapshot(&app)?; snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_close(app: AppHandle, tab_id: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
-    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let label = tabs.tabs.get(&tab_id).map(|t| t.label.clone()); if let Some(tab) = tabs.tabs.remove(&tab_id) { tabs.push_closed(tab); } tabs.order.retain(|id| id != &tab_id); if tabs.active.as_deref() == Some(&tab_id) { tabs.active = tabs.order.last().cloned(); } label };
-    if let Some(label) = label { if let Some(webview) = app.get_webview(&label) { let _ = webview.close(); } }
-    let active = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.active.clone() };
-    if let Some(active_id) = active { if layout.width > 10.0 && layout.height > 10.0 && layout.x > 0.0 { show_tab(&app, &active_id, &layout)?; } }
-    emit_snapshot(&app)?; snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_restore(app: AppHandle, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
-    let url = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.pop_closed().map(|t| t.url) };
-    if let Some(url) = url { create_tab_inner(&app, &url, &layout, false).await?; }
-    snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_navigate(app: AppHandle, tab_id: String, url: String) -> Result<BrowserSnapshot, String> {
-    let resolved = resolve_url(&url);
-    if navigation_blocked(&app, &resolved) { return snapshot(&app); }
-    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let tab = tabs.tabs.get_mut(&tab_id).ok_or("tab not found")?; tab.url = resolved.clone(); tab.loading = true; tab.can_go_back = true; tab.label.clone() };
-    let webview = app.get_webview(&label).ok_or("webview not found")?;
-    let parsed = Url::parse(&resolved).map_err(|e| e.to_string())?;
-    webview.navigate(parsed).map_err(|e| e.to_string())?;
-    emit_snapshot(&app)?; snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_reload(app: AppHandle, tab_id: String) -> Result<(), String> { let label = tab_label(&app, &tab_id)?; app.get_webview(&label).ok_or("webview not found")?.reload().map_err(|e| e.to_string()) }
-#[tauri::command]
-pub async fn tab_back(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "history.back()")?; update_tab_field(&app, &tab_id, |t| { t.can_go_forward = true; }); Ok(()) }
-#[tauri::command]
-pub async fn tab_forward(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "history.forward()")?; update_tab_field(&app, &tab_id, |t| { t.can_go_back = true; }); Ok(()) }
-
-#[tauri::command]
-pub async fn tab_zoom(app: AppHandle, tab_id: String, zoom: f64) -> Result<BrowserSnapshot, String> {
-    let zoom = zoom.clamp(0.5, 2.0);
-    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let (label, domain) = { let tab = tabs.tabs.get_mut(&tab_id).ok_or("tab not found")?; tab.zoom = zoom; let domain = extract_domain(&tab.url); (tab.label.clone(), domain) }; tabs.remember_zoom(&domain, zoom); label };
-    app.get_webview(&label).ok_or("webview not found")?.set_zoom(zoom).map_err(|e| e.to_string())?;
-    let state = app.state::<AppState>(); if let Ok(tabs) = state.tabs.lock() { let _ = crate::persistence::save_json(&app, "zoom_memory.json", &tabs.zoom_memory); }
-    snapshot(&app)
-}
-
-#[tauri::command]
-pub async fn tab_resize(app: AppHandle, layout: ViewportLayout) -> Result<(), String> { resize_active(&app, &layout) }
-#[tauri::command]
-pub fn tab_get_all(app: AppHandle) -> Result<BrowserSnapshot, String> { snapshot(&app) }
-#[tauri::command]
-pub fn tab_pin(app: AppHandle, tab_id: String, pinned: bool) -> Result<BrowserSnapshot, String> { update_tab_field(&app, &tab_id, |t| { t.pinned = pinned; }); snapshot(&app) }
-
-#[tauri::command]
-pub async fn tab_find(app: AppHandle, tab_id: String, query: String) -> Result<u32, String> {
-    let q = serde_json::to_string(&query).unwrap_or("\"\"".to_string());
-    let js = format!(r#"(function(){{window.__muse_find_cleanup&&window.__muse_find_cleanup();if(!{q})return 0;const text={q};const walker=document.createTreeWalker(document.body,NodeFilter.SHOW_TEXT);let count=0;const marks=[];while(walker.nextNode()){{const node=walker.currentNode;const idx=node.textContent.toLowerCase().indexOf(text.toLowerCase());if(idx>=0){{const range=document.createRange();range.setStart(node,idx);range.setEnd(node,idx+text.length);const mark=document.createElement('mark');mark.style.cssText='background:#C49A3C;color:#100E0B;border-radius:2px;padding:0 1px';range.surroundContents(mark);marks.push(mark);count++;}}}}if(marks.length>0)marks[0].scrollIntoView({{block:'center'}});window.__muse_find_cleanup=()=>marks.forEach(m=>{{const p=m.parentNode;if(p){{p.replaceChild(document.createTextNode(m.textContent||''),m);p.normalize();}}}});return count;}})()"#);
-    eval_on_tab(&app, &tab_id, &js)?; Ok(0)
-}
-#[tauri::command]
-pub async fn tab_find_clear(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "window.__muse_find_cleanup && window.__muse_find_cleanup()") }
-
-pub(crate) async fn create_tab_inner(app: &AppHandle, url: &str, layout: &ViewportLayout, show_immediately: bool) -> Result<String, String> {
-    let id_num = app.state::<AppState>().next_tab_id.fetch_add(1, std::sync::atomic::Ordering::Relaxed);
-    let id = format!("tab-{id_num}");
-    let label = format!("muse-tab-{id_num}");
-    let parsed = Url::parse(url).map_err(|e| e.to_string())?;
-    let init_script = scripts::build_init_script(&scripts::blocked_domains_json());
-    let full_init = format!("{init_script}\n{CONTEXT_MENU_BLOCK_JS}\n{FAVICON_SCRIPT}");
-
-    let app_for_load = app.clone();
-    let id_for_load = id.clone();
-    let app_for_title = app.clone();
-    let id_for_title = id.clone();
-    let app_for_cosmetic = app.clone();
-
-    let builder = WebviewBuilder::new(label.clone(), WebviewUrl::External(parsed))
-        .initialization_script(&full_init)
-        .on_page_load(move |webview, payload| {
-            let url = payload.url().to_string();
-            let loading = matches!(payload.event(), PageLoadEvent::Started);
-            update_tab_field(&app_for_load, &id_for_load, |t| { t.url = url.clone(); t.loading = loading; });
-            if matches!(payload.event(), PageLoadEvent::Finished) {
-                let _ = webview.eval(CONTEXT_MENU_BLOCK_JS);
-                let _ = webview.eval(scripts::hover_overlay_script());
-                let adblock_state = app_for_cosmetic.state::<AdBlockState>();
-                let css = adblock_state.get_cosmetic_css(&url);
-                if !css.is_empty() {
-                    let escaped = css.replace('\\', "\\\\").replace('`', "\\`");
-                    let _ = webview.eval(&format!("(function(){{const s=document.createElement('style');s.id='__muse_shield';s.textContent=`{escaped}`;document.head.appendChild(s)}})();"));
-                }
-                let scriptlet_js = adblock_state.get_injected_script(&url);
-                if !scriptlet_js.is_empty() { let _ = webview.eval(&format!("try{{{scriptlet_js}}}catch(e){{}}")); }
-                let _ = webview.eval("window.__muse_report_favicon && window.__muse_report_favicon()");
-            }
-        })
-        .on_document_title_changed(move |_webview, title| { update_tab_field(&app_for_title, &id_for_title, |t| { if !title.trim().is_empty() { t.title = title.clone(); } }); })
-        .on_navigation({ let app_nav = app.clone(); move |url| {
-            let s = url.as_str();
-            if s.starts_with("muse-action://") { handle_muse_action(&app_nav, s); return false; }
-            !navigation_blocked(&app_nav, s)
-        }});
-
-    let window = app.get_window("main").ok_or("main window not found")?;
-    let (cx, cy, cw, ch) = if show_immediately && layout.width > 10.0 { bounds(layout) } else { (-32000.0, -32000.0, 1.0, 1.0) };
-    window.add_child(builder, LogicalPosition::new(cx, cy), LogicalSize::new(cw, ch)).map_err(|e| e.to_string())?;
-    if !show_immediately { if let Some(webview) = app.get_webview(&label) { let _ = webview.hide(); } }
-
-    let domain = extract_domain(url);
-    let saved_zoom = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.get_zoom_for_domain(&domain) };
-    let now = chrono::Utc::now().timestamp();
-    let zoom = saved_zoom.unwrap_or(1.0);
-    let previous = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let previous = tabs.active.clone(); tabs.active = Some(id.clone()); tabs.order.push(id.clone()); tabs.tabs.insert(id.clone(), BrowserTab { id: id.clone(), label: label.clone(), url: url.to_string(), title: "New Tab".to_string(), favicon: None, loading: true, pinned: false, sleeping: false, zoom, can_go_back: false, can_go_forward: false, last_active: now }); previous };
-    if zoom != 1.0 { if let Some(webview) = app.get_webview(&label) { let _ = webview.set_zoom(zoom); } }
-    if let Some(prev) = previous { if prev != id { hide_tab(app, &prev)?; } }
-    emit_snapshot(app)?; Ok(id)
-}
-
-fn handle_muse_action(app: &AppHandle, raw: &str) {
-    let rest = raw.trim_start_matches("muse-action://");
-    let (_action, query) = rest.split_once('?').unwrap_or((rest, ""));
-    let params = parse_query(query);
-    let url = params.get("url").cloned().unwrap_or_default();
-    if url.is_empty() { return; }
-    let title = params.get("title").cloned();
-    let source = params.get("source").cloned();
-    let app2 = app.clone();
-    tauri::async_runtime::spawn(async move {
-        match crate::library::library_add_item(app2.clone(), url.clone(), source, title).await {
-            Ok(item) => {
-                let _ = crate::board::board_add_image(app2.clone(), Some(item.id.clone()), item.data_url.clone(), 120.0, 120.0, 300.0, 200.0);
-                let _ = app2.emit("board://image_added", serde_json::json!({"id": item.id}));
-            }
-            Err(e) => eprintln!("[muse-action] capture failed: {e}"),
-        }
-    });
-}
-
-fn parse_query(query: &str) -> HashMap<String, String> {
-    query.split('&').filter_map(|pair| { let (k, v) = pair.split_once('=')?; Some((percent_decode(k), percent_decode(v))) }).collect()
-}
-
-fn percent_decode(s: &str) -> String {
-    let bytes = s.as_bytes();
-    let mut out = Vec::with_capacity(bytes.len());
-    let mut i = 0;
-    while i < bytes.len() {
-        if bytes[i] == b'%' && i + 2 < bytes.len() {
-            if let Ok(hex) = std::str::from_utf8(&bytes[i+1..i+3]) {
-                if let Ok(v) = u8::from_str_radix(hex, 16) { out.push(v); i += 3; continue; }
-            }
-        }
-        out.push(if bytes[i] == b'+' { b' ' } else { bytes[i] });
-        i += 1;
-    }
-    String::from_utf8_lossy(&out).to_string()
-}
-
-const FAVICON_SCRIPT: &str = r#"(function(){window.__muse_report_favicon=function(){const link=document.querySelector('link[rel~="icon"],link[rel="shortcut icon"],link[rel="apple-touch-icon"]');if(link&&link.href){try{window.__TAURI_INTERNALS__.invoke('__tab_favicon',{favicon:link.href});}catch{}}};if(document.readyState==='loading'){document.addEventListener('DOMContentLoaded',window.__muse_report_favicon);}else{window.__muse_report_favicon();}})();"#;
+use std::collections::HashMap;
+use tauri::webview::{PageLoadEvent, WebviewBuilder};
+use tauri::{AppHandle, Emitter, LogicalPosition, LogicalSize, Manager, Url, WebviewUrl};
+
+use super::layout::{bounds, hide_tab, resize_active, show_tab};
+use super::navigation::{navigation_blocked, resolve_url};
+use super::tab_manager::*;
+use crate::adblock::engine::AdBlockState;
+use crate::adblock::scripts;
+use crate::state::AppState;
+
+const CONTEXT_MENU_BLOCK_JS: &str = r#"
+(function(){
+  if(window.__muse_ctx_installed) return;
+  window.__muse_ctx_installed = true;
+  document.addEventListener('contextmenu', function(e) {
+    e.preventDefault(); e.stopPropagation(); e.stopImmediatePropagation();
+    try {
+      var t = e.target;
+      window.__TAURI_INTERNALS__.invoke('browser_context_menu', {
+        x: e.screenX, y: e.screenY, clientX: e.clientX, clientY: e.clientY,
+        tagName: t.tagName || null, src: t.src || t.currentSrc || null,
+        href: t.closest && t.closest('a') ? t.closest('a').href : null,
+        text: (window.getSelection() || '').toString().slice(0, 200) || null,
+        pageUrl: location.href
+      });
+    } catch(ex) {}
+    return false;
+  }, true);
+  window.addEventListener('contextmenu', function(e){ e.preventDefault(); return false; }, true);
+})();
+"#;
+
+#[tauri::command]
+pub async fn browser_init(app: AppHandle, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
+    let existing = snapshot(&app)?;
+    if !existing.tabs.is_empty() {
+        if layout.x > 0.0 || layout.y > 0.0 { resize_active(&app, &layout)?; }
+        return Ok(existing);
+    }
+    create_tab_inner(&app, "https://duckduckgo.com", &layout, false).await?;
+    snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn browser_set_visible(app: AppHandle, visible: bool, layout: ViewportLayout) -> Result<(), String> {
+    let active = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.active.clone() };
+    if let Some(active_id) = active {
+        if visible && layout.width > 10.0 && layout.height > 10.0 { show_tab(&app, &active_id, &layout)?; } else { hide_tab(&app, &active_id)?; }
+    }
+    Ok(())
+}
+
+#[tauri::command]
+pub async fn tab_create(app: AppHandle, url: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
+    let resolved = resolve_url(&url);
+    if navigation_blocked(&app, &resolved) { return snapshot(&app); }
+    create_tab_inner(&app, &resolved, &layout, false).await?;
+    snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_activate(app: AppHandle, tab_id: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
+    let previous = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let previous = tabs.active.clone(); if !tabs.tabs.contains_key(&tab_id) { return Err(format!("tab not found: {tab_id}")); } tabs.active = Some(tab_id.clone()); if let Some(tab) = tabs.tabs.get_mut(&tab_id) { tab.last_active = chrono::Utc::now().timestamp(); } previous };
+    if let Some(prev) = previous { if prev != tab_id { hide_tab(&app, &prev)?; } }
+    if layout.width > 10.0 && layout.height > 10.0 && layout.x > 0.0 { show_tab(&app, &tab_id, &layout)?; }
+    emit_snapshot(&app)?; snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_close(app: AppHandle, tab_id: String, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
+    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let label = tabs.tabs.get(&tab_id).map(|t| t.label.clone()); if let Some(tab) = tabs.tabs.remove(&tab_id) { tabs.push_closed(tab); } tabs.order.retain(|id| id != &tab_id); if tabs.active.as_deref() == Some(&tab_id) { tabs.active = tabs.order.last().cloned(); } label };
+    if let Some(label) = label { if let Some(webview) = app.get_webview(&label) { let _ = webview.close(); } }
+    let active = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.active.clone() };
+    if let Some(active_id) = active { if layout.width > 10.0 && layout.height > 10.0 && layout.x > 0.0 { show_tab(&app, &active_id, &layout)?; } }
+    emit_snapshot(&app)?; snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_restore(app: AppHandle, layout: ViewportLayout) -> Result<BrowserSnapshot, String> {
+    let url = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.pop_closed().map(|t| t.url) };
+    if let Some(url) = url { create_tab_inner(&app, &url, &layout, false).await?; }
+    snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_navigate(app: AppHandle, tab_id: String, url: String) -> Result<BrowserSnapshot, String> {
+    let resolved = resolve_url(&url);
+    if navigation_blocked(&app, &resolved) { return snapshot(&app); }
+    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let tab = tabs.tabs.get_mut(&tab_id).ok_or("tab not found")?; tab.url = resolved.clone(); tab.loading = true; tab.can_go_back = true; tab.label.clone() };
+    let webview = app.get_webview(&label).ok_or("webview not found")?;
+    let parsed = Url::parse(&resolved).map_err(|e| e.to_string())?;
+    webview.navigate(parsed).map_err(|e| e.to_string())?;
+    emit_snapshot(&app)?; snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_reload(app: AppHandle, tab_id: String) -> Result<(), String> { let label = tab_label(&app, &tab_id)?; app.get_webview(&label).ok_or("webview not found")?.reload().map_err(|e| e.to_string()) }
+#[tauri::command]
+pub async fn tab_back(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "history.back()")?; update_tab_field(&app, &tab_id, |t| { t.can_go_forward = true; }); Ok(()) }
+#[tauri::command]
+pub async fn tab_forward(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "history.forward()")?; update_tab_field(&app, &tab_id, |t| { t.can_go_back = true; }); Ok(()) }
+
+#[tauri::command]
+pub async fn tab_zoom(app: AppHandle, tab_id: String, zoom: f64) -> Result<BrowserSnapshot, String> {
+    let zoom = zoom.clamp(0.5, 2.0);
+    let label = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let (label, domain) = { let tab = tabs.tabs.get_mut(&tab_id).ok_or("tab not found")?; tab.zoom = zoom; let domain = extract_domain(&tab.url); (tab.label.clone(), domain) }; tabs.remember_zoom(&domain, zoom); label };
+    app.get_webview(&label).ok_or("webview not found")?.set_zoom(zoom).map_err(|e| e.to_string())?;
+    let state = app.state::<AppState>(); if let Ok(tabs) = state.tabs.lock() { let _ = crate::persistence::save_json(&app, "zoom_memory.json", &tabs.zoom_memory); }
+    snapshot(&app)
+}
+
+#[tauri::command]
+pub async fn tab_resize(app: AppHandle, layout: ViewportLayout) -> Result<(), String> { resize_active(&app, &layout) }
+#[tauri::command]
+pub fn tab_get_all(app: AppHandle) -> Result<BrowserSnapshot, String> { snapshot(&app) }
+#[tauri::command]
+pub fn tab_pin(app: AppHandle, tab_id: String, pinned: bool) -> Result<BrowserSnapshot, String> { update_tab_field(&app, &tab_id, |t| { t.pinned = pinned; }); snapshot(&app) }
+
+#[tauri::command]
+pub async fn tab_find(app: AppHandle, tab_id: String, query: String) -> Result<u32, String> {
+    let q = serde_json::to_string(&query).unwrap_or("\"\"".to_string());
+    let js = format!(r#"(function(){{window.__muse_find_cleanup&&window.__muse_find_cleanup();if(!{q})return 0;const text={q};const walker=document.createTreeWalker(document.body,NodeFilter.SHOW_TEXT);let count=0;const marks=[];while(walker.nextNode()){{const node=walker.currentNode;const idx=node.textContent.toLowerCase().indexOf(text.toLowerCase());if(idx>=0){{const range=document.createRange();range.setStart(node,idx);range.setEnd(node,idx+text.length);const mark=document.createElement('mark');mark.style.cssText='background:#C49A3C;color:#100E0B;border-radius:2px;padding:0 1px';range.surroundContents(mark);marks.push(mark);count++;}}}}if(marks.length>0)marks[0].scrollIntoView({{block:'center'}});window.__muse_find_cleanup=()=>marks.forEach(m=>{{const p=m.parentNode;if(p){{p.replaceChild(document.createTextNode(m.textContent||''),m);p.normalize();}}}});return count;}})()"#);
+    eval_on_tab(&app, &tab_id, &js)?; Ok(0)
+}
+#[tauri::command]
+pub async fn tab_find_clear(app: AppHandle, tab_id: String) -> Result<(), String> { eval_on_tab(&app, &tab_id, "window.__muse_find_cleanup && window.__muse_find_cleanup()") }
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// INTERNAL: Child webview creation
+// ═══════════════════════════════════════════════════════════════════════════════
+
+pub(crate) async fn create_tab_inner(app: &AppHandle, url: &str, layout: &ViewportLayout, show_immediately: bool) -> Result<String, String> {
+    let id_num = app.state::<AppState>().next_tab_id.fetch_add(1, std::sync::atomic::Ordering::Relaxed);
+    let id = format!("tab-{id_num}");
+    let label = format!("muse-tab-{id_num}");
+    let parsed = Url::parse(url).map_err(|e| e.to_string())?;
+
+    // Build the full initialization script (adblock + privacy + hover overlay + vault detector + autofill suppression)
+    let init_script = scripts::build_init_script(&scripts::blocked_domains_json());
+    let full_init = format!("{init_script}\n{CONTEXT_MENU_BLOCK_JS}\n{FAVICON_SCRIPT}");
+
+    let app_for_load = app.clone();
+    let id_for_load = id.clone();
+    let app_for_title = app.clone();
+    let id_for_title = id.clone();
+    let app_for_cosmetic = app.clone();
+
+    let builder = WebviewBuilder::new(label.clone(), WebviewUrl::External(parsed))
+        // Inject all scripts before any page JS runs
+        .initialization_script(&full_init)
+        // Disable native WebView autofill (Windows WebView2: general autofill suggestions)
+        // macOS/Linux: this is a noop — autofill suppression handled by JS injection instead
+        .general_autofill_enabled(false)
+        // Page load handler: re-inject scripts, apply adblock cosmetics, record history
+        .on_page_load(move |webview, payload| {
+            let url = payload.url().to_string();
+            let loading = matches!(payload.event(), PageLoadEvent::Started);
+            update_tab_field(&app_for_load, &id_for_load, |t| { t.url = url.clone(); t.loading = loading; });
+
+            if matches!(payload.event(), PageLoadEvent::Finished) {
+                // Re-inject scripts that may not persist across cross-origin navigations
+                let _ = webview.eval(CONTEXT_MENU_BLOCK_JS);
+                let _ = webview.eval(scripts::hover_overlay_script());
+                let _ = webview.eval(scripts::vault_detector_script());
+                let _ = webview.eval(scripts::autofill_suppress_script());
+
+                // Adblock cosmetic filtering + scriptlets
+                let adblock_state = app_for_cosmetic.state::<AdBlockState>();
+                let css = adblock_state.get_cosmetic_css(&url);
+                if !css.is_empty() {
+                    let escaped = css.replace('\\', "\\\\").replace('`', "\\`");
+                    let _ = webview.eval(&format!("(function(){{const s=document.createElement('style');s.id='__muse_shield';s.textContent=`{escaped}`;document.head.appendChild(s)}})();"));
+                }
+                let scriptlet_js = adblock_state.get_injected_script(&url);
+                if !scriptlet_js.is_empty() { let _ = webview.eval(&format!("try{{{scriptlet_js}}}catch(e){{}}")); }
+
+                // Favicon extraction
+                let _ = webview.eval("window.__muse_report_favicon && window.__muse_report_favicon()");
+
+                // Record page visit in app-managed history
+                let title_for_history = {
+                    let state = app_for_load.state::<AppState>();
+                    state.tabs.lock().ok().and_then(|tabs| tabs.tabs.get(&id_for_load).map(|t| t.title.clone())).unwrap_or_default()
+                };
+                let _ = crate::history::record_visit(&app_for_load, id_for_load.clone(), url.clone(), title_for_history);
+            }
+        })
+        // Title change handler
+        .on_document_title_changed(move |_webview, title| {
+            update_tab_field(&app_for_title, &id_for_title, |t| { if !title.trim().is_empty() { t.title = title.clone(); } });
+        })
+        // Navigation handler: intercept muse-action:// beacons, block ad domains
+        .on_navigation({ let app_nav = app.clone(); move |url| {
+            let s = url.as_str();
+            if s.starts_with("muse-action://") { handle_muse_action(&app_nav, s); return false; }
+            !navigation_blocked(&app_nav, s)
+        }});
+
+    // Add child webview to the main window
+    let window = app.get_window("main").ok_or("main window not found")?;
+    let (cx, cy, cw, ch) = if show_immediately && layout.width > 10.0 { bounds(layout) } else { (-32000.0, -32000.0, 1.0, 1.0) };
+    window.add_child(builder, LogicalPosition::new(cx, cy), LogicalSize::new(cw, ch)).map_err(|e| e.to_string())?;
+    if !show_immediately { if let Some(webview) = app.get_webview(&label) { let _ = webview.hide(); } }
+
+    // Apply per-domain zoom memory
+    let domain = extract_domain(url);
+    let saved_zoom = { let state = app.state::<AppState>(); let tabs = state.tabs.lock().map_err(|_| "lock")?; tabs.get_zoom_for_domain(&domain) };
+    let now = chrono::Utc::now().timestamp();
+    let zoom = saved_zoom.unwrap_or(1.0);
+
+    // Register tab in state and activate
+    let previous = { let state = app.state::<AppState>(); let mut tabs = state.tabs.lock().map_err(|_| "lock")?; let previous = tabs.active.clone(); tabs.active = Some(id.clone()); tabs.order.push(id.clone()); tabs.tabs.insert(id.clone(), BrowserTab { id: id.clone(), label: label.clone(), url: url.to_string(), title: "New Tab".to_string(), favicon: None, loading: true, pinned: false, sleeping: false, zoom, can_go_back: false, can_go_forward: false, last_active: now }); previous };
+    if zoom != 1.0 { if let Some(webview) = app.get_webview(&label) { let _ = webview.set_zoom(zoom); } }
+    if let Some(prev) = previous { if prev != id { hide_tab(app, &prev)?; } }
+    emit_snapshot(app)?;
+    Ok(id)
+}
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// muse-action:// beacon handler (hover overlay, vault detector)
+// ═══════════════════════════════════════════════════════════════════════════════
+
+fn handle_muse_action(app: &AppHandle, raw: &str) {
+    let rest = raw.trim_start_matches("muse-action://");
+    let (_action, query) = rest.split_once('?').unwrap_or((rest, ""));
+    let params = parse_query(query);
+    let url = params.get("url").cloned().unwrap_or_default();
+    if url.is_empty() { return; }
+    let title = params.get("title").cloned();
+    let source = params.get("source").cloned();
+
+    let app2 = app.clone();
+    tauri::async_runtime::spawn(async move {
+        match crate::library::library_add_item(app2.clone(), url.clone(), source, title).await {
+            Ok(item) => {
+                let _ = crate::board::board_add_image(app2.clone(), Some(item.id.clone()), item.data_url.clone(), 100.0 + (chrono::Utc::now().timestamp_millis() % 200) as f64, 100.0 + (chrono::Utc::now().timestamp_millis() % 150) as f64, 300.0, 200.0);
+                let _ = app2.emit("board://image_added", serde_json::json!({"id": item.id, "url": item.data_url, "source_url": item.url, "width": item.width, "height": item.height}));
+            }
+            Err(e) => eprintln!("[muse-action] Failed to capture image: {e}"),
+        }
+    });
+}
+
+// ═══════════════════════════════════════════════════════════════════════════════
+// Utility functions
+// ═══════════════════════════════════════════════════════════════════════════════
+
+fn parse_query(query: &str) -> HashMap<String, String> {
+    query.split('&').filter_map(|pair| {
+        let (k, v) = pair.split_once('=')?;
+        Some((percent_decode(k), percent_decode(v)))
+    }).collect()
+}
+
+fn percent_decode(s: &str) -> String {
+    let bytes = s.as_bytes();
+    let mut out = Vec::with_capacity(bytes.len());
+    let mut i = 0;
+    while i < bytes.len() {
+        if bytes[i] == b'%' && i + 2 < bytes.len() {
+            if let Ok(hex) = std::str::from_utf8(&bytes[i + 1..i + 3]) {
+                if let Ok(v) = u8::from_str_radix(hex, 16) { out.push(v); i += 3; continue; }
+            }
+        }
+        out.push(if bytes[i] == b'+' { b' ' } else { bytes[i] });
+        i += 1;
+    }
+    String::from_utf8_lossy(&out).to_string()
+}
+
+const FAVICON_SCRIPT: &str = r#"(function(){window.__muse_report_favicon=function(){const link=document.querySelector('link[rel~="icon"],link[rel="shortcut icon"],link[rel="apple-touch-icon"]');if(link&&link.href){try{window.__TAURI_INTERNALS__.invoke('__tab_favicon',{favicon:link.href});}catch{}}};if(document.readyState==='loading'){document.addEventListener('DOMContentLoaded',window.__muse_report_favicon);}else{window.__muse_report_favicon();}})();"#;

src-tauri/src/browser/context_menu.rs

@@ -1,23 +1,23 @@
-use serde::{Deserialize, Serialize};
-use tauri::{AppHandle, Emitter};
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct ContextMenuInfo {
-    pub x: f64,
-    pub y: f64,
-    pub client_x: f64,
-    pub client_y: f64,
-    pub tag_name: Option<String>,
-    pub src: Option<String>,
-    pub href: Option<String>,
-    pub text: Option<String>,
-    pub page_url: Option<String>,
-}
-
-/// Called from the child WebView's contextmenu event handler.
-/// Emits the context menu info to the React shell which renders its own menu.
-#[tauri::command]
-pub fn browser_context_menu(app: AppHandle, info: ContextMenuInfo) -> Result<(), String> {
-    app.emit("browser://context-menu", info).map_err(|e| e.to_string())
-}
+use serde::{Deserialize, Serialize};
+use tauri::{AppHandle, Emitter};
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(rename_all = "camelCase")]
+pub struct ContextMenuInfo {
+    pub x: f64,
+    pub y: f64,
+    pub client_x: f64,
+    pub client_y: f64,
+    pub tag_name: Option<String>,
+    pub src: Option<String>,
+    pub href: Option<String>,
+    pub text: Option<String>,
+    pub page_url: Option<String>,
+}
+
+/// Called from the child WebView's contextmenu event handler.
+/// Emits the context menu info to the React shell which renders its own menu.
+#[tauri::command]
+pub fn browser_context_menu(app: AppHandle, info: ContextMenuInfo) -> Result<(), String> {
+    app.emit("browser://context-menu", info).map_err(|e| e.to_string())
+}

src-tauri/src/browser/layout.rs

@@ -1,49 +1,49 @@
-use tauri::{AppHandle, LogicalPosition, LogicalSize, Manager};
-
-use super::tab_manager::{tab_label, ViewportLayout};
-use crate::state::AppState;
-
-const HIDDEN_X: f64 = -32000.0;
-const HIDDEN_Y: f64 = -32000.0;
-
-/// Calculate child WebView bounds from measured React host rect.
-/// React sends getBoundingClientRect() values in logical/CSS pixels.
-pub fn bounds(layout: &ViewportLayout) -> (f64, f64, f64, f64) {
-    let x = layout.x.max(0.0);
-    let y = layout.y.max(0.0);
-    let w = layout.width.max(1.0);
-    let h = layout.height.max(1.0);
-    (x, y, w, h)
-}
-
-pub fn show_tab(app: &AppHandle, tab_id: &str, layout: &ViewportLayout) -> Result<(), String> {
-    let label = tab_label(app, tab_id)?;
-    let (x, y, w, h) = bounds(layout);
-    if let Some(webview) = app.get_webview(&label) {
-        webview.set_position(LogicalPosition::new(x, y)).map_err(|e| e.to_string())?;
-        webview.set_size(LogicalSize::new(w, h)).map_err(|e| e.to_string())?;
-        webview.show().map_err(|e| e.to_string())?;
-        webview.set_focus().map_err(|e| e.to_string())?;
-    }
-    Ok(())
-}
-
-pub fn hide_tab(app: &AppHandle, tab_id: &str) -> Result<(), String> {
-    let label = tab_label(app, tab_id)?;
-    if let Some(webview) = app.get_webview(&label) {
-        let _ = webview.hide();
-        webview.set_position(LogicalPosition::new(HIDDEN_X, HIDDEN_Y)).map_err(|e| e.to_string())?;
-        webview.set_size(LogicalSize::new(1.0, 1.0)).map_err(|e| e.to_string())?;
-    }
-    Ok(())
-}
-
-pub fn resize_active(app: &AppHandle, layout: &ViewportLayout) -> Result<(), String> {
-    let active = {
-        let state = app.state::<AppState>();
-        let tabs = state.tabs.lock().map_err(|_| "lock")?;
-        tabs.active.clone()
-    };
-    if let Some(active_id) = active { show_tab(app, &active_id, layout)?; }
-    Ok(())
-}
+use tauri::{AppHandle, LogicalPosition, LogicalSize, Manager};
+
+use super::tab_manager::{tab_label, ViewportLayout};
+use crate::state::AppState;
+
+const HIDDEN_X: f64 = -32000.0;
+const HIDDEN_Y: f64 = -32000.0;
+
+/// Calculate child WebView bounds from measured React host rect.
+/// React sends getBoundingClientRect() values in logical/CSS pixels.
+pub fn bounds(layout: &ViewportLayout) -> (f64, f64, f64, f64) {
+    let x = layout.x.max(0.0);
+    let y = layout.y.max(0.0);
+    let w = layout.width.max(1.0);
+    let h = layout.height.max(1.0);
+    (x, y, w, h)
+}
+
+pub fn show_tab(app: &AppHandle, tab_id: &str, layout: &ViewportLayout) -> Result<(), String> {
+    let label = tab_label(app, tab_id)?;
+    let (x, y, w, h) = bounds(layout);
+    if let Some(webview) = app.get_webview(&label) {
+        webview.set_position(LogicalPosition::new(x, y)).map_err(|e| e.to_string())?;
+        webview.set_size(LogicalSize::new(w, h)).map_err(|e| e.to_string())?;
+        webview.show().map_err(|e| e.to_string())?;
+        webview.set_focus().map_err(|e| e.to_string())?;
+    }
+    Ok(())
+}
+
+pub fn hide_tab(app: &AppHandle, tab_id: &str) -> Result<(), String> {
+    let label = tab_label(app, tab_id)?;
+    if let Some(webview) = app.get_webview(&label) {
+        let _ = webview.hide();
+        webview.set_position(LogicalPosition::new(HIDDEN_X, HIDDEN_Y)).map_err(|e| e.to_string())?;
+        webview.set_size(LogicalSize::new(1.0, 1.0)).map_err(|e| e.to_string())?;
+    }
+    Ok(())
+}
+
+pub fn resize_active(app: &AppHandle, layout: &ViewportLayout) -> Result<(), String> {
+    let active = {
+        let state = app.state::<AppState>();
+        let tabs = state.tabs.lock().map_err(|_| "lock")?;
+        tabs.active.clone()
+    };
+    if let Some(active_id) = active { show_tab(app, &active_id, layout)?; }
+    Ok(())
+}

src-tauri/src/browser/mod.rs

@@ -1,9 +1,9 @@
-pub mod tab_manager;
-pub mod commands;
-pub mod context_menu;
-pub mod layout;
-pub mod navigation;
-pub mod capture;
-pub mod autofill;
-
-pub use tab_manager::*;
+pub mod tab_manager;
+pub mod commands;
+pub mod context_menu;
+pub mod layout;
+pub mod navigation;
+pub mod capture;
+pub mod autofill;
+
+pub use tab_manager::*;

src-tauri/src/browser/navigation.rs

@@ -1,36 +1,36 @@
-use tauri::{AppHandle, Manager};
-use crate::adblock::engine::AdBlockState;
-
-/// Resolve user input to a navigable URL with HTTPS-first
-pub fn resolve_url(input: &str) -> String {
-    let trimmed = input.trim();
-    if trimmed.is_empty() { return "https://duckduckgo.com".to_string(); }
-    if trimmed.starts_with("http://") || trimmed.starts_with("https://") {
-        // HTTPS-first: upgrade http to https unless localhost
-        if trimmed.starts_with("http://") {
-            let host = trimmed.split("//").nth(1).and_then(|s| s.split('/').next()).unwrap_or("");
-            if host != "localhost" && host != "127.0.0.1" && host != "::1" {
-                return trimmed.replacen("http://", "https://", 1);
-            }
-        }
-        return trimmed.to_string();
-    }
-    if trimmed.contains('.') && !trimmed.contains(' ') {
-        return format!("https://{trimmed}");
-    }
-    format!("https://duckduckgo.com/?q={}", urlencoded(trimmed))
-}
-
-/// Check if a URL should be blocked by adblock at navigation level
-pub fn navigation_blocked(app: &AppHandle, url: &str) -> bool {
-    let state = app.state::<AdBlockState>();
-    state.should_block(url, url, "document")
-}
-
-fn urlencoded(value: &str) -> String {
-    value.bytes().flat_map(|b| match b {
-        b'A'..=b'Z' | b'a'..=b'z' | b'0'..=b'9' | b'-' | b'_' | b'.' | b'~' => vec![b as char],
-        b' ' => vec!['+'],
-        _ => format!("%{b:02X}").chars().collect(),
-    }).collect()
-}
+use tauri::{AppHandle, Manager};
+use crate::adblock::engine::AdBlockState;
+
+/// Resolve user input to a navigable URL with HTTPS-first
+pub fn resolve_url(input: &str) -> String {
+    let trimmed = input.trim();
+    if trimmed.is_empty() { return "https://duckduckgo.com".to_string(); }
+    if trimmed.starts_with("http://") || trimmed.starts_with("https://") {
+        // HTTPS-first: upgrade http to https unless localhost
+        if trimmed.starts_with("http://") {
+            let host = trimmed.split("//").nth(1).and_then(|s| s.split('/').next()).unwrap_or("");
+            if host != "localhost" && host != "127.0.0.1" && host != "::1" {
+                return trimmed.replacen("http://", "https://", 1);
+            }
+        }
+        return trimmed.to_string();
+    }
+    if trimmed.contains('.') && !trimmed.contains(' ') {
+        return format!("https://{trimmed}");
+    }
+    format!("https://duckduckgo.com/?q={}", urlencoded(trimmed))
+}
+
+/// Check if a URL should be blocked by adblock at navigation level
+pub fn navigation_blocked(app: &AppHandle, url: &str) -> bool {
+    let state = app.state::<AdBlockState>();
+    state.should_block(url, url, "document")
+}
+
+fn urlencoded(value: &str) -> String {
+    value.bytes().flat_map(|b| match b {
+        b'A'..=b'Z' | b'a'..=b'z' | b'0'..=b'9' | b'-' | b'_' | b'.' | b'~' => vec![b as char],
+        b' ' => vec!['+'],
+        _ => format!("%{b:02X}").chars().collect(),
+    }).collect()
+}

src-tauri/src/browser/tab_manager.rs

@@ -1,102 +1,102 @@
-use serde::{Deserialize, Serialize};
-use std::collections::HashMap;
-use tauri::{AppHandle, Emitter, Manager};
-
-use crate::state::AppState;
-
-#[allow(dead_code)]
-pub const TAB_SLEEP_THRESHOLD_SECS: i64 = 30 * 60;
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct BrowserTab {
-    pub id: String,
-    pub label: String,
-    pub url: String,
-    pub title: String,
-    pub favicon: Option<String>,
-    pub loading: bool,
-    pub pinned: bool,
-    pub sleeping: bool,
-    pub zoom: f64,
-    pub can_go_back: bool,
-    pub can_go_forward: bool,
-    pub last_active: i64,
-}
-
-#[derive(Default)]
-pub struct TabManager {
-    pub tabs: HashMap<String, BrowserTab>,
-    pub order: Vec<String>,
-    pub active: Option<String>,
-    pub closed_stack: Vec<BrowserTab>,
-    pub zoom_memory: HashMap<String, f64>,
-}
-
-impl TabManager {
-    pub fn push_closed(&mut self, tab: BrowserTab) {
-        if self.closed_stack.len() >= 25 { self.closed_stack.remove(0); }
-        self.closed_stack.push(tab);
-    }
-    pub fn pop_closed(&mut self) -> Option<BrowserTab> { self.closed_stack.pop() }
-    pub fn remember_zoom(&mut self, domain: &str, zoom: f64) { self.zoom_memory.insert(domain.to_string(), zoom); }
-    pub fn get_zoom_for_domain(&self, domain: &str) -> Option<f64> { self.zoom_memory.get(domain).copied() }
-}
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct ViewportLayout {
-    #[serde(default)]
-    pub x: f64,
-    #[serde(default)]
-    pub y: f64,
-    pub width: f64,
-    pub height: f64,
-}
-
-#[derive(Debug, Clone, Serialize)]
-pub struct BrowserSnapshot {
-    pub tabs: Vec<BrowserTab>,
-    pub active: Option<String>,
-    pub can_restore: bool,
-}
-
-pub fn snapshot(app: &AppHandle) -> Result<BrowserSnapshot, String> {
-    let state = app.state::<AppState>();
-    let tabs = state.tabs.lock().map_err(|_| "lock")?;
-    let ordered = tabs.order.iter().filter_map(|id| tabs.tabs.get(id).cloned()).collect();
-    let can_restore = !tabs.closed_stack.is_empty();
-    Ok(BrowserSnapshot { tabs: ordered, active: tabs.active.clone(), can_restore })
-}
-
-pub fn emit_snapshot(app: &AppHandle) -> Result<(), String> {
-    let snap = snapshot(app)?;
-    app.emit("browser://tabs", snap).map_err(|e| e.to_string())
-}
-
-pub fn update_tab_field(app: &AppHandle, id: &str, f: impl FnOnce(&mut BrowserTab)) {
-    let state = app.state::<AppState>();
-    if let Ok(mut tabs) = state.tabs.lock() {
-        if let Some(tab) = tabs.tabs.get_mut(id) { f(tab); }
-    }
-    let _ = emit_snapshot(app);
-}
-
-pub fn tab_label(app: &AppHandle, tab_id: &str) -> Result<String, String> {
-    let state = app.state::<AppState>();
-    let tabs = state.tabs.lock().map_err(|_| "lock")?;
-    tabs.tabs.get(tab_id).map(|t| t.label.clone()).ok_or_else(|| format!("tab not found: {tab_id}"))
-}
-
-pub fn eval_on_tab(app: &AppHandle, tab_id: &str, js: &str) -> Result<(), String> {
-    let label = tab_label(app, tab_id)?;
-    app.get_webview(&label).ok_or("webview not found")?.eval(js).map_err(|e| e.to_string())
-}
-
-pub fn extract_domain(url: &str) -> String {
-    url.split("//").nth(1)
-        .and_then(|s| s.split('/').next())
-        .map(|s| s.split(':').next().unwrap_or(s))
-        .unwrap_or("")
-        .trim_start_matches("www.")
-        .to_lowercase()
-}
+use serde::{Deserialize, Serialize};
+use std::collections::HashMap;
+use tauri::{AppHandle, Emitter, Manager};
+
+use crate::state::AppState;
+
+#[allow(dead_code)]
+pub const TAB_SLEEP_THRESHOLD_SECS: i64 = 30 * 60;
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct BrowserTab {
+    pub id: String,
+    pub label: String,
+    pub url: String,
+    pub title: String,
+    pub favicon: Option<String>,
+    pub loading: bool,
+    pub pinned: bool,
+    pub sleeping: bool,
+    pub zoom: f64,
+    pub can_go_back: bool,
+    pub can_go_forward: bool,
+    pub last_active: i64,
+}
+
+#[derive(Default)]
+pub struct TabManager {
+    pub tabs: HashMap<String, BrowserTab>,
+    pub order: Vec<String>,
+    pub active: Option<String>,
+    pub closed_stack: Vec<BrowserTab>,
+    pub zoom_memory: HashMap<String, f64>,
+}
+
+impl TabManager {
+    pub fn push_closed(&mut self, tab: BrowserTab) {
+        if self.closed_stack.len() >= 25 { self.closed_stack.remove(0); }
+        self.closed_stack.push(tab);
+    }
+    pub fn pop_closed(&mut self) -> Option<BrowserTab> { self.closed_stack.pop() }
+    pub fn remember_zoom(&mut self, domain: &str, zoom: f64) { self.zoom_memory.insert(domain.to_string(), zoom); }
+    pub fn get_zoom_for_domain(&self, domain: &str) -> Option<f64> { self.zoom_memory.get(domain).copied() }
+}
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+#[serde(rename_all = "camelCase")]
+pub struct ViewportLayout {
+    #[serde(default)]
+    pub x: f64,
+    #[serde(default)]
+    pub y: f64,
+    pub width: f64,
+    pub height: f64,
+}
+
+#[derive(Debug, Clone, Serialize)]
+pub struct BrowserSnapshot {
+    pub tabs: Vec<BrowserTab>,
+    pub active: Option<String>,
+    pub can_restore: bool,
+}
+
+pub fn snapshot(app: &AppHandle) -> Result<BrowserSnapshot, String> {
+    let state = app.state::<AppState>();
+    let tabs = state.tabs.lock().map_err(|_| "lock")?;
+    let ordered = tabs.order.iter().filter_map(|id| tabs.tabs.get(id).cloned()).collect();
+    let can_restore = !tabs.closed_stack.is_empty();
+    Ok(BrowserSnapshot { tabs: ordered, active: tabs.active.clone(), can_restore })
+}
+
+pub fn emit_snapshot(app: &AppHandle) -> Result<(), String> {
+    let snap = snapshot(app)?;
+    app.emit("browser://tabs", snap).map_err(|e| e.to_string())
+}
+
+pub fn update_tab_field(app: &AppHandle, id: &str, f: impl FnOnce(&mut BrowserTab)) {
+    let state = app.state::<AppState>();
+    if let Ok(mut tabs) = state.tabs.lock() {
+        if let Some(tab) = tabs.tabs.get_mut(id) { f(tab); }
+    }
+    let _ = emit_snapshot(app);
+}
+
+pub fn tab_label(app: &AppHandle, tab_id: &str) -> Result<String, String> {
+    let state = app.state::<AppState>();
+    let tabs = state.tabs.lock().map_err(|_| "lock")?;
+    tabs.tabs.get(tab_id).map(|t| t.label.clone()).ok_or_else(|| format!("tab not found: {tab_id}"))
+}
+
+pub fn eval_on_tab(app: &AppHandle, tab_id: &str, js: &str) -> Result<(), String> {
+    let label = tab_label(app, tab_id)?;
+    app.get_webview(&label).ok_or("webview not found")?.eval(js).map_err(|e| e.to_string())
+}
+
+pub fn extract_domain(url: &str) -> String {
+    url.split("//").nth(1)
+        .and_then(|s| s.split('/').next())
+        .map(|s| s.split(':').next().unwrap_or(s))
+        .unwrap_or("")
+        .trim_start_matches("www.")
+        .to_lowercase()
+}

src-tauri/src/color_tools.rs

@@ -1,108 +1,108 @@
-use serde::{Deserialize, Serialize};
-use tauri::{AppHandle, Manager};
-
-/// Export palette colors to various artist application formats
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct ColorExportResult {
-    pub format: String,
-    pub content: String,
-    pub filename: String,
-}
-
-#[tauri::command]
-pub fn color_export(colors: Vec<String>, format: String) -> Result<ColorExportResult, String> {
-    let content = match format.as_str() {
-        "hex" => colors.join("\n"),
-        "css" => colors.iter().enumerate()
-            .map(|(i, c)| format!("  --color-{}: {};", i + 1, c))
-            .collect::<Vec<_>>()
-            .join("\n")
-            .pipe(|body| format!(":root {{\n{body}\n}}")),
-        "gpl" => {
-            let mut lines = vec!["GIMP Palette".to_string(), "Name: Muse Export".to_string(), "#".to_string()];
-            for color in &colors {
-                if let Some((r, g, b)) = parse_hex(color) {
-                    lines.push(format!("{r:3} {g:3} {b:3}\t{color}"));
-                }
-            }
-            lines.join("\n")
-        }
-        "ase" => {
-            let mut lines = vec!["// Adobe Swatch Exchange (text preview)".to_string()];
-            for color in &colors {
-                if let Some((r, g, b)) = parse_hex(color) {
-                    lines.push(format!("RGB {:.4} {:.4} {:.4} // {color}", r as f32 / 255.0, g as f32 / 255.0, b as f32 / 255.0));
-                }
-            }
-            lines.join("\n")
-        }
-        "procreate" => {
-            let swatches: Vec<serde_json::Value> = colors.iter().filter_map(|c| {
-                parse_hex(c).map(|(r, g, b)| serde_json::json!({
-                    "hue": 0, "saturation": 0, "brightness": 0,
-                    "alpha": 1, "colorSpace": 0,
-                    "components": [r as f64 / 255.0, g as f64 / 255.0, b as f64 / 255.0, 1.0]
-                }))
-            }).collect();
-            serde_json::to_string_pretty(&serde_json::json!({
-                "name": "Muse Export",
-                "swatches": swatches
-            })).unwrap_or_default()
-        }
-        _ => colors.join("\n"),
-    };
-
-    let ext = match format.as_str() {
-        "css" => "css", "gpl" => "gpl", "ase" => "ase", "procreate" => "swatches", _ => "txt"
-    };
-
-    Ok(ColorExportResult {
-        format: format.clone(),
-        content,
-        filename: format!("muse-palette.{ext}"),
-    })
-}
-
-#[tauri::command]
-pub fn color_search_library(app: AppHandle, hue_min: f32, hue_max: f32) -> Result<Vec<crate::library::LibraryItem>, String> {
-    let state = app.state::<crate::library::LibraryState>();
-    let items = state.items.lock().map_err(|_| "library lock poisoned")?;
-    Ok(items.iter().filter(|item| {
-        item.colors.iter().any(|c| {
-            if let Some((r, g, b)) = parse_hex(c) {
-                let hue = rgb_to_hue(r, g, b);
-                if hue_min <= hue_max {
-                    hue >= hue_min && hue <= hue_max
-                } else {
-                    hue >= hue_min || hue <= hue_max
-                }
-            } else { false }
-        })
-    }).cloned().collect())
-}
-
-fn parse_hex(hex: &str) -> Option<(u8, u8, u8)> {
-    let h = hex.trim_start_matches('#');
-    if h.len() != 6 { return None; }
-    let r = u8::from_str_radix(&h[0..2], 16).ok()?;
-    let g = u8::from_str_radix(&h[2..4], 16).ok()?;
-    let b = u8::from_str_radix(&h[4..6], 16).ok()?;
-    Some((r, g, b))
-}
-
-fn rgb_to_hue(r: u8, g: u8, b: u8) -> f32 {
-    let rf = r as f32 / 255.0;
-    let gf = g as f32 / 255.0;
-    let bf = b as f32 / 255.0;
-    let max = rf.max(gf).max(bf);
-    let min = rf.min(gf).min(bf);
-    if max == min { return 0.0; }
-    let d = max - min;
-    let h = if max == rf { ((gf - bf) / d) % 6.0 }
-    else if max == gf { (bf - rf) / d + 2.0 }
-    else { (rf - gf) / d + 4.0 };
-    ((h * 60.0) + 360.0) % 360.0
-}
-
-trait PipeExt { fn pipe(self, f: impl FnOnce(String) -> String) -> String; }
-impl PipeExt for String { fn pipe(self, f: impl FnOnce(String) -> String) -> String { f(self) } }
+use serde::{Deserialize, Serialize};
+use tauri::{AppHandle, Manager};
+
+/// Export palette colors to various artist application formats
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct ColorExportResult {
+    pub format: String,
+    pub content: String,
+    pub filename: String,
+}
+
+#[tauri::command]
+pub fn color_export(colors: Vec<String>, format: String) -> Result<ColorExportResult, String> {
+    let content = match format.as_str() {
+        "hex" => colors.join("\n"),
+        "css" => colors.iter().enumerate()
+            .map(|(i, c)| format!("  --color-{}: {};", i + 1, c))
+            .collect::<Vec<_>>()
+            .join("\n")
+            .pipe(|body| format!(":root {{\n{body}\n}}")),
+        "gpl" => {
+            let mut lines = vec!["GIMP Palette".to_string(), "Name: Muse Export".to_string(), "#".to_string()];
+            for color in &colors {
+                if let Some((r, g, b)) = parse_hex(color) {
+                    lines.push(format!("{r:3} {g:3} {b:3}\t{color}"));
+                }
+            }
+            lines.join("\n")
+        }
+        "ase" => {
+            let mut lines = vec!["// Adobe Swatch Exchange (text preview)".to_string()];
+            for color in &colors {
+                if let Some((r, g, b)) = parse_hex(color) {
+                    lines.push(format!("RGB {:.4} {:.4} {:.4} // {color}", r as f32 / 255.0, g as f32 / 255.0, b as f32 / 255.0));
+                }
+            }
+            lines.join("\n")
+        }
+        "procreate" => {
+            let swatches: Vec<serde_json::Value> = colors.iter().filter_map(|c| {
+                parse_hex(c).map(|(r, g, b)| serde_json::json!({
+                    "hue": 0, "saturation": 0, "brightness": 0,
+                    "alpha": 1, "colorSpace": 0,
+                    "components": [r as f64 / 255.0, g as f64 / 255.0, b as f64 / 255.0, 1.0]
+                }))
+            }).collect();
+            serde_json::to_string_pretty(&serde_json::json!({
+                "name": "Muse Export",
+                "swatches": swatches
+            })).unwrap_or_default()
+        }
+        _ => colors.join("\n"),
+    };
+
+    let ext = match format.as_str() {
+        "css" => "css", "gpl" => "gpl", "ase" => "ase", "procreate" => "swatches", _ => "txt"
+    };
+
+    Ok(ColorExportResult {
+        format: format.clone(),
+        content,
+        filename: format!("muse-palette.{ext}"),
+    })
+}
+
+#[tauri::command]
+pub fn color_search_library(app: AppHandle, hue_min: f32, hue_max: f32) -> Result<Vec<crate::library::LibraryItem>, String> {
+    let state = app.state::<crate::library::LibraryState>();
+    let items = state.items.lock().map_err(|_| "library lock poisoned")?;
+    Ok(items.iter().filter(|item| {
+        item.colors.iter().any(|c| {
+            if let Some((r, g, b)) = parse_hex(c) {
+                let hue = rgb_to_hue(r, g, b);
+                if hue_min <= hue_max {
+                    hue >= hue_min && hue <= hue_max
+                } else {
+                    hue >= hue_min || hue <= hue_max
+                }
+            } else { false }
+        })
+    }).cloned().collect())
+}
+
+fn parse_hex(hex: &str) -> Option<(u8, u8, u8)> {
+    let h = hex.trim_start_matches('#');
+    if h.len() != 6 { return None; }
+    let r = u8::from_str_radix(&h[0..2], 16).ok()?;
+    let g = u8::from_str_radix(&h[2..4], 16).ok()?;
+    let b = u8::from_str_radix(&h[4..6], 16).ok()?;
+    Some((r, g, b))
+}
+
+fn rgb_to_hue(r: u8, g: u8, b: u8) -> f32 {
+    let rf = r as f32 / 255.0;
+    let gf = g as f32 / 255.0;
+    let bf = b as f32 / 255.0;
+    let max = rf.max(gf).max(bf);
+    let min = rf.min(gf).min(bf);
+    if max == min { return 0.0; }
+    let d = max - min;
+    let h = if max == rf { ((gf - bf) / d) % 6.0 }
+    else if max == gf { (bf - rf) / d + 2.0 }
+    else { (rf - gf) / d + 4.0 };
+    ((h * 60.0) + 360.0) % 360.0
+}
+
+trait PipeExt { fn pipe(self, f: impl FnOnce(String) -> String) -> String; }
+impl PipeExt for String { fn pipe(self, f: impl FnOnce(String) -> String) -> String { f(self) } }

src-tauri/src/credentials.rs

@@ -1,31 +1,31 @@
-use serde::{Deserialize, Serialize};
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct CredentialEntry {
-    pub id: String,
-    pub domain: String,
-    pub username: String,
-    pub vault_key: String,
-    pub label: String,
-}
-
-/// Credentials are managed via frontend Stronghold JS API + SQLite metadata index.
-/// Rust side provides helper commands for the metadata layer.
-
-#[tauri::command]
-pub fn credentials_list() -> Result<Vec<CredentialEntry>, String> {
-    // Credentials stored via frontend Stronghold + SQL plugin
-    Ok(vec![])
-}
-
-#[tauri::command]
-pub fn credentials_generate_password(length: u32) -> String {
-    let charset: Vec<char> = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%&*-_=+".chars().collect();
-    let len = length.max(8).min(64) as usize;
-    let mut password = String::with_capacity(len);
-    for i in 0..len {
-        let seed = (chrono::Utc::now().timestamp_subsec_nanos() as usize).wrapping_mul(7 + i * 13);
-        password.push(charset[seed % charset.len()]);
-    }
-    password
-}
+use serde::{Deserialize, Serialize};
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct CredentialEntry {
+    pub id: String,
+    pub domain: String,
+    pub username: String,
+    pub vault_key: String,
+    pub label: String,
+}
+
+/// Credentials are managed via frontend Stronghold JS API + SQLite metadata index.
+/// Rust side provides helper commands for the metadata layer.
+
+#[tauri::command]
+pub fn credentials_list() -> Result<Vec<CredentialEntry>, String> {
+    // Credentials stored via frontend Stronghold + SQL plugin
+    Ok(vec![])
+}
+
+#[tauri::command]
+pub fn credentials_generate_password(length: u32) -> String {
+    let charset: Vec<char> = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%&*-_=+".chars().collect();
+    let len = length.max(8).min(64) as usize;
+    let mut password = String::with_capacity(len);
+    for i in 0..len {
+        let seed = (chrono::Utc::now().timestamp_subsec_nanos() as usize).wrapping_mul(7 + i * 13);
+        password.push(charset[seed % charset.len()]);
+    }
+    password
+}

src-tauri/src/downloads.rs

@@ -1,75 +1,75 @@
-use serde::{Deserialize, Serialize};
-use std::sync::Mutex;
-use tauri::{AppHandle, Emitter, Manager};
-use uuid::Uuid;
-
-#[derive(Debug, Clone, Serialize, Deserialize)]
-pub struct DownloadRecord {
-    pub id: String,
-    pub url: String,
-    pub filename: String,
-    pub status: String,
-    pub saved_to_library: bool,
-    pub created_at: i64,
-}
-
-#[derive(Default)]
-pub struct DownloadState {
-    pub records: Mutex<Vec<DownloadRecord>>,
-}
-
-#[tauri::command]
-pub fn downloads_list(app: AppHandle) -> Result<Vec<DownloadRecord>, String> {
-    let state = app.state::<DownloadState>();
-    let records = state.records.lock().map_err(|_| "download lock poisoned")?;
-    Ok(records.clone())
-}
-
-#[tauri::command]
-pub fn downloads_clear_completed(app: AppHandle) -> Result<(), String> {
-    let state = app.state::<DownloadState>();
-    let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
-    records.retain(|r| r.status == "active");
-    Ok(())
-}
-
-#[tauri::command]
-pub async fn download_to_library(app: AppHandle, url: String) -> Result<crate::library::LibraryItem, String> {
-    let filename = url.split('/').last().unwrap_or("download").to_string();
-    let record = DownloadRecord {
-        id: Uuid::new_v4().to_string(),
-        url: url.clone(),
-        filename: filename.clone(),
-        status: "active".to_string(),
-        saved_to_library: true,
-        created_at: chrono::Utc::now().timestamp(),
-    };
-    {
-        let state = app.state::<DownloadState>();
-        let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
-        records.push(record.clone());
-    }
-    let _ = app.emit("downloads://update", &record);
-    let item = crate::library::library_add_item(app.clone(), url, Some(record.url.clone()), Some(filename)).await?;
-    {
-        let state = app.state::<DownloadState>();
-        let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
-        if let Some(r) = records.iter_mut().find(|r| r.id == record.id) {
-            r.status = "complete".to_string();
-        }
-    }
-    let _ = app.emit("downloads://complete", &record.id);
-    Ok(item)
-}
-
-#[tauri::command]
-pub fn web_clip_page(url: String, title: String) -> DownloadRecord {
-    DownloadRecord {
-        id: Uuid::new_v4().to_string(),
-        url,
-        filename: title,
-        status: "clipped".to_string(),
-        saved_to_library: false,
-        created_at: chrono::Utc::now().timestamp(),
-    }
-}
+use serde::{Deserialize, Serialize};
+use std::sync::Mutex;
+use tauri::{AppHandle, Emitter, Manager};
+use uuid::Uuid;
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct DownloadRecord {
+    pub id: String,
+    pub url: String,
+    pub filename: String,
+    pub status: String,
+    pub saved_to_library: bool,
+    pub created_at: i64,
+}
+
+#[derive(Default)]
+pub struct DownloadState {
+    pub records: Mutex<Vec<DownloadRecord>>,
+}
+
+#[tauri::command]
+pub fn downloads_list(app: AppHandle) -> Result<Vec<DownloadRecord>, String> {
+    let state = app.state::<DownloadState>();
+    let records = state.records.lock().map_err(|_| "download lock poisoned")?;
+    Ok(records.clone())
+}
+
+#[tauri::command]
+pub fn downloads_clear_completed(app: AppHandle) -> Result<(), String> {
+    let state = app.state::<DownloadState>();
+    let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
+    records.retain(|r| r.status == "active");
+    Ok(())
+}
+
+#[tauri::command]
+pub async fn download_to_library(app: AppHandle, url: String) -> Result<crate::library::LibraryItem, String> {
+    let filename = url.split('/').last().unwrap_or("download").to_string();
+    let record = DownloadRecord {
+        id: Uuid::new_v4().to_string(),
+        url: url.clone(),
+        filename: filename.clone(),
+        status: "active".to_string(),
+        saved_to_library: true,
+        created_at: chrono::Utc::now().timestamp(),
+    };
+    {
+        let state = app.state::<DownloadState>();
+        let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
+        records.push(record.clone());
+    }
+    let _ = app.emit("downloads://update", &record);
+    let item = crate::library::library_add_item(app.clone(), url, Some(record.url.clone()), Some(filename)).await?;
+    {
+        let state = app.state::<DownloadState>();
+        let mut records = state.records.lock().map_err(|_| "download lock poisoned")?;
+        if let Some(r) = records.iter_mut().find(|r| r.id == record.id) {
+            r.status = "complete".to_string();
+        }
+    }
+    let _ = app.emit("downloads://complete", &record.id);
+    Ok(item)
+}
+
+#[tauri::command]
+pub fn web_clip_page(url: String, title: String) -> DownloadRecord {
+    DownloadRecord {
+        id: Uuid::new_v4().to_string(),
+        url,
+        filename: title,
+        status: "clipped".to_string(),
+        saved_to_library: false,
+        created_at: chrono::Utc::now().timestamp(),
+    }
+}