diff --git a/apps/backend/.env.development b/apps/backend/.env.development
index eb4b2dddac..ea0695a6d0 100644
--- a/apps/backend/.env.development
+++ b/apps/backend/.env.development
@@ -77,6 +77,7 @@ STACK_OPENAI_API_KEY=mock_openai_api_key
 STACK_STRIPE_SECRET_KEY=sk_test_mockstripekey
 STACK_STRIPE_WEBHOOK_SECRET=mock_stripe_webhook_secret
 STACK_OPENROUTER_API_KEY=FORWARD_TO_PRODUCTION
+STACK_FEEDBACK_MODE=FORWARD_TO_PRODUCTION
 # STACK_DOCS_INTERNAL_BASE_URL=http://localhost:8104
 # Email monitor configuration for tests
 STACK_EMAIL_MONITOR_VERIFICATION_CALLBACK_URL=http://localhost:8101/handler/email-verification
diff --git a/apps/backend/src/app/api/latest/integrations/ai-proxy/[[...path]]/route.ts b/apps/backend/src/app/api/latest/integrations/ai-proxy/[[...path]]/route.ts
index 4fb5629781..9a8205dd90 100644
--- a/apps/backend/src/app/api/latest/integrations/ai-proxy/[[...path]]/route.ts
+++ b/apps/backend/src/app/api/latest/integrations/ai-proxy/[[...path]]/route.ts
@@ -5,6 +5,7 @@ import { StatusError } from "@stackframe/stack-shared/dist/utils/errors";
 import { NextRequest } from "next/server";
 
 const OPENROUTER_BASE_URL = "https://openrouter.ai/api";
+const PRODUCTION_PROXY_BASE_URL = "https://api.stack-auth.com/api/latest/integrations/ai-proxy";
 const OPENROUTER_DEFAULT_MODEL = "anthropic/claude-sonnet-4.6";
 
 function sanitizeBody(raw: ArrayBuffer): Uint8Array {
@@ -36,22 +37,43 @@ async function proxyToOpenRouter(req: NextRequest, options: { params: Promise<{
   const apiKey = getEnvVariable("STACK_OPENROUTER_API_KEY");
   const params = await options.params;
   const subpath = params.path?.join("/") ?? "";
-  const targetUrl = `${OPENROUTER_BASE_URL}/${subpath}${req.nextUrl.search}`;
 
+  const contentType = req.headers.get("Content-Type");
+  const body = req.method !== "GET" && req.method !== "HEAD"
+    ? Buffer.from(sanitizeBody(await req.arrayBuffer()))
+    : undefined;
+
+  if (apiKey === "FORWARD_TO_PRODUCTION") {
+    const targetUrl = `${PRODUCTION_PROXY_BASE_URL}/${subpath}${req.nextUrl.search}`;
+    const headers: Record<string, string> = {};
+    if (contentType) {
+      headers["Content-Type"] = contentType;
+    }
+
+    const response = await fetch(targetUrl, {
+      method: req.method,
+      headers,
+      body,
+    });
+
+    return new Response(response.body, {
+      status: response.status,
+      headers: {
+        "Content-Type": response.headers.get("Content-Type") ?? "application/json",
+        "Cache-Control": "no-cache",
+      },
+    });
+  }
+
+  const targetUrl = `${OPENROUTER_BASE_URL}/${subpath}${req.nextUrl.search}`;
   const headers: Record<string, string> = {
     "Authorization": `Bearer ${apiKey}`,
     "anthropic-version": "2023-06-01",
   };
-
-  const contentType = req.headers.get("Content-Type");
   if (contentType) {
     headers["Content-Type"] = contentType;
   }
 
-  const body = req.method !== "GET" && req.method !== "HEAD"
-    ? Buffer.from(sanitizeBody(await req.arrayBuffer()))
-    : undefined;
-
   const response = await fetch(targetUrl, {
     method: req.method,
     headers,
diff --git a/apps/backend/src/app/api/latest/internal/component-versions/route.ts b/apps/backend/src/app/api/latest/internal/component-versions/route.ts
new file mode 100644
index 0000000000..3cedd6981b
--- /dev/null
+++ b/apps/backend/src/app/api/latest/internal/component-versions/route.ts
@@ -0,0 +1,31 @@
+import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
+import { yupNumber, yupObject, yupRecord, yupString } from "@stackframe/stack-shared/dist/schema-fields";
+import { getLatestPageVersions } from "@stackframe/stack-shared/dist/interface/handler-urls";
+
+export const GET = createSmartRouteHandler({
+  metadata: {
+    hidden: true,
+  },
+  request: yupObject({
+    method: yupString().oneOf(["GET"]).defined(),
+  }),
+  response: yupObject({
+    statusCode: yupNumber().oneOf([200]).defined(),
+    bodyType: yupString().oneOf(["json"]).defined(),
+    body: yupObject({
+      versions: yupRecord(yupString().defined(), yupObject({
+        version: yupNumber().defined(),
+        changelogs: yupRecord(yupString().defined(), yupString().defined()).defined(),
+      }).defined()).defined(),
+    }).defined(),
+  }),
+  handler: async () => {
+    return {
+      statusCode: 200,
+      bodyType: "json" as const,
+      body: {
+        versions: getLatestPageVersions(),
+      },
+    };
+  },
+});
diff --git a/apps/backend/src/app/api/latest/internal/feedback/route.tsx b/apps/backend/src/app/api/latest/internal/feedback/route.tsx
index a78048fd07..99274039b3 100644
--- a/apps/backend/src/app/api/latest/internal/feedback/route.tsx
+++ b/apps/backend/src/app/api/latest/internal/feedback/route.tsx
@@ -1,26 +1,37 @@
 import { sendSupportFeedbackEmail } from "@/lib/internal-feedback-emails";
 import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
-import { adaptSchema, clientOrHigherAuthTypeSchema, emailSchema, yupBoolean, yupNumber, yupObject, yupString } from "@stackframe/stack-shared/dist/schema-fields";
+import { DEFAULT_BRANCH_ID, getSoleTenancyFromProjectBranch } from "@/lib/tenancies";
+import { adaptSchema, emailSchema, yupBoolean, yupNumber, yupObject, yupString } from "@stackframe/stack-shared/dist/schema-fields";
+import { getEnvVariable } from "@stackframe/stack-shared/dist/utils/env";
+import { StatusError } from "@stackframe/stack-shared/dist/utils/errors";
 
+/**
+ * Unified feedback endpoint used by both the dashboard and the dev tool.
+ *
+ * Auth is optional: when the user is signed in (dashboard), user info is
+ * included in the email. When unauthenticated (dev tool), feedback is sent
+ * without user context.
+ *
+ * In the local emulator, feedback is forwarded to production Stack Auth (same
+ * pattern as the AI query endpoint). Set STACK_FEEDBACK_MODE=FORWARD_TO_PRODUCTION
+ * in .env.development to enable this.
+ */
 export const POST = createSmartRouteHandler({
   metadata: {
     summary: "Submit support feedback",
-    description: "Send a support feedback message to the internal Stack Auth inbox",
+    description: "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
     tags: ["Internal"],
   },
   request: yupObject({
     auth: yupObject({
-      type: clientOrHigherAuthTypeSchema,
-      tenancy: adaptSchema.defined(),
-      user: adaptSchema.defined(),
-      project: yupObject({
-        id: yupString().oneOf(["internal"]).defined(),
-      }).defined(),
-    }).defined(),
+      tenancy: adaptSchema.optional(),
+      user: adaptSchema.optional(),
+    }).nullable().optional(),
     body: yupObject({
       name: yupString().optional().max(100),
       email: emailSchema.defined().nonEmpty(),
       message: yupString().defined().nonEmpty().max(5000),
+      feedback_type: yupString().oneOf(["feedback", "bug"]).optional(),
     }).defined(),
     method: yupString().oneOf(["POST"]).defined(),
   }),
@@ -32,12 +43,35 @@ export const POST = createSmartRouteHandler({
     }).defined(),
   }),
   async handler({ auth, body }) {
+    // Forward to production in local emulator (same pattern as AI query endpoint)
+    const feedbackMode = getEnvVariable("STACK_FEEDBACK_MODE", "email");
+    if (feedbackMode === "FORWARD_TO_PRODUCTION") {
+      const prodResponse = await fetch("https://api.stack-auth.com/api/latest/internal/feedback", {
+        method: "POST",
+        headers: { "content-type": "application/json", "accept-encoding": "identity" },
+        body: JSON.stringify(body),
+      });
+      if (!prodResponse.ok) {
+        throw new StatusError(prodResponse.status, "Failed to forward feedback to production");
+      }
+      return {
+        statusCode: 200,
+        bodyType: "json" as const,
+        body: { success: true as const },
+      };
+    }
+
+    // Use the authenticated tenancy if available, otherwise fall back to the
+    // internal project tenancy (for unauthenticated dev tool submissions).
+    const tenancy = auth?.tenancy ?? await getSoleTenancyFromProjectBranch("internal", DEFAULT_BRANCH_ID);
+
     await sendSupportFeedbackEmail({
-      tenancy: auth.tenancy,
-      user: auth.user,
+      tenancy,
+      user: auth?.user ?? null,
       name: body.name ?? null,
       email: body.email,
       message: body.message,
+      feedbackType: body.feedback_type,
     });
 
     return {
diff --git a/apps/backend/src/app/api/latest/internal/projects/crud.tsx b/apps/backend/src/app/api/latest/internal/projects/crud.tsx
index 8d23112663..c0bb47c61d 100644
--- a/apps/backend/src/app/api/latest/internal/projects/crud.tsx
+++ b/apps/backend/src/app/api/latest/internal/projects/crud.tsx
@@ -17,7 +17,7 @@ export const adminUserProjectsCrudHandlers = createLazyProxy(() => createCrudHan
   }),
   onPrepare: async ({ auth }) => {
     if (!auth.user) {
-      throw new KnownErrors.UserAuthenticationRequired;
+      throw new KnownErrors.UserAuthenticationRequired();
     }
     if (auth.project.id !== "internal") {
       throw new KnownErrors.ExpectedInternalProject();
diff --git a/apps/backend/src/lib/internal-feedback-emails.tsx b/apps/backend/src/lib/internal-feedback-emails.tsx
index d8ebb253e2..30db8a0e54 100644
--- a/apps/backend/src/lib/internal-feedback-emails.tsx
+++ b/apps/backend/src/lib/internal-feedback-emails.tsx
@@ -1,5 +1,6 @@
 import { createTemplateComponentFromHtml } from "@/lib/email-rendering";
 import { normalizeEmail, sendEmailToMany } from "@/lib/emails";
+import { isLocalEmulatorEnabled } from "@/lib/local-emulator";
 import { getNotificationCategoryByName } from "@/lib/notification-categories";
 import { Tenancy } from "@/lib/tenancies";
 import { UsersCrud } from "@stackframe/stack-shared/dist/interface/crud/users";
@@ -82,24 +83,41 @@ async function sendInternalOperationsEmail(options: {
 
 export async function sendSupportFeedbackEmail(options: {
   tenancy: Tenancy,
-  user: UsersCrud["Admin"]["Read"],
+  user: UsersCrud["Admin"]["Read"] | null,
   name: string | null,
   email: string,
   message: string,
+  feedbackType?: string,
 }) {
-  const displayName = options.name ?? options.user.display_name ?? "Not provided";
+  const displayName = options.name ?? options.user?.display_name ?? "Not provided";
+  const feedbackLabel = options.feedbackType === "bug" ? "Bug Report" : "Support";
+
+  const fields: Array<{ label: string, value: string }> = [
+    { label: "Sender name", value: displayName },
+    { label: "Sender email", value: options.email },
+  ];
+
+  if (options.user) {
+    fields.push(
+      { label: "Stack Auth user ID", value: options.user.id },
+      { label: "Stack Auth display name", value: options.user.display_name ?? "Not provided" },
+    );
+  }
+
+  if (options.feedbackType) {
+    fields.push({ label: "Type", value: feedbackLabel });
+  }
+
+  if (isLocalEmulatorEnabled()) {
+    fields.push({ label: "Environment", value: "Local Emulator" });
+  }
 
   await sendInternalOperationsEmail({
     tenancy: options.tenancy,
-    subject: `[Support] ${options.email}`,
+    subject: `[${feedbackLabel}] ${options.email}`,
     htmlContent: buildInternalEmailHtml({
-      heading: "Support feedback submission",
-      fields: [
-        { label: "Sender name", value: displayName },
-        { label: "Sender email", value: options.email },
-        { label: "Stack Auth user ID", value: options.user.id },
-        { label: "Stack Auth display name", value: options.user.display_name ?? "Not provided" },
-      ],
+      heading: `${feedbackLabel} feedback submission`,
+      fields,
       contentLabel: "Message",
       contentBody: options.message,
     }),
diff --git a/apps/dashboard/next.config.mjs b/apps/dashboard/next.config.mjs
index a3591a66ae..7698286e34 100644
--- a/apps/dashboard/next.config.mjs
+++ b/apps/dashboard/next.config.mjs
@@ -91,6 +91,7 @@ const nextConfig = {
   },
 
   async headers() {
+    const isLocalEmulator = process.env.NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR === "true";
     return [
       {
         source: "/(.*)",
@@ -118,7 +119,9 @@ const nextConfig = {
           }],
           {
             key: "Content-Security-Policy",
-            value: "",
+            // Note: *.localhost requires Chrome 117+ and may not work in Firefox
+            // without network.dns.localDomains configuration. Fine for dev tool purposes.
+            value: isLocalEmulator ? "frame-ancestors 'self' http://localhost:* https://localhost:* http://127.0.0.1:* https://127.0.0.1:* http://[::1]:* https://[::1]:* http://*.localhost https://*.localhost" : "",
           },
         ],
       },
diff --git a/apps/dashboard/src/components/feedback-form.tsx b/apps/dashboard/src/components/feedback-form.tsx
index 7025b536de..4b30f7e0f2 100644
--- a/apps/dashboard/src/components/feedback-form.tsx
+++ b/apps/dashboard/src/components/feedback-form.tsx
@@ -1,6 +1,6 @@
 import { Button } from "@/components/ui";
+import { SelectField } from "@/components/form-fields";
 import { getPublicEnvVar } from "@/lib/env";
-import { getInternalProjectHeaders } from "@/lib/internal-project-headers";
 import { CheckCircleIcon, EnvelopeIcon, GithubLogoIcon, WarningCircleIcon } from "@phosphor-icons/react";
 import { useUser } from "@stackframe/stack";
 import { emailSchema } from "@stackframe/stack-shared/dist/schema-fields";
@@ -34,6 +34,22 @@ export function FeedbackForm() {
       .max(5000)
       .label("Message")
       .meta({ type: "textarea" }),
+    feedback_type: yup.string()
+      .oneOf(["feedback", "bug"] as const)
+      .defined()
+      .label("Type")
+      .default("feedback")
+      .meta({
+        stackFormFieldRender: (props: any) => (
+          <SelectField
+            {...props}
+            options={[
+              { value: "feedback", label: "Feedback" },
+              { value: "bug", label: "Bug Report" },
+            ]}
+          />
+        ),
+      }),
   });
 
   const handleSubmit = async (values: yup.InferType<typeof domainFormSchema>) => {
@@ -41,18 +57,21 @@ export function FeedbackForm() {
     setErrorMessage('');
 
     try {
-      if (user == null) {
-        throw new Error("Please sign in again and retry sending feedback.");
+      // Auth headers are sent when available so the backend can include user
+      // context in the email, but the endpoint accepts unauthenticated requests.
+      const headers: Record<string, string> = { "Content-Type": "application/json" };
+      if (user) {
+        const authJson = await user.getAuthJson();
+        headers["X-Stack-Access-Type"] = "client";
+        headers["X-Stack-Project-Id"] = "internal";
+        headers["X-Stack-Publishable-Client-Key"] = getPublicEnvVar("NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY") ?? "";
+        if (authJson.accessToken) {
+          headers["X-Stack-Access-Token"] = authJson.accessToken;
+        }
       }
-      const authJson = await user.getAuthJson();
       const response = await fetch(`${baseUrl}/api/v1/internal/feedback`, {
         method: "POST",
-        headers: {
-          ...getInternalProjectHeaders({
-            accessToken: authJson.accessToken,
-            contentType: "application/json",
-          }),
-        },
+        headers,
         body: JSON.stringify(values),
       });
 
@@ -139,7 +158,7 @@ export function FeedbackForm() {
             form="feedback-form"
             className="w-full"
             loading={submitting}
-            disabled={submitting || user == null}
+            disabled={submitting}
           >
             Send Feedback
           </Button>
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/internal/component-versions.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/internal/component-versions.test.ts
new file mode 100644
index 0000000000..d510b9ea9f
--- /dev/null
+++ b/apps/e2e/tests/backend/endpoints/api/v1/internal/component-versions.test.ts
@@ -0,0 +1,50 @@
+import { describe } from "vitest";
+import { it } from "../../../../../helpers";
+import { niceBackendFetch } from "../../../../backend-helpers";
+
+describe("GET /api/v1/internal/component-versions", () => {
+  it("should return page versions and changelogs", async ({ expect }) => {
+    const response = await niceBackendFetch("/api/v1/internal/component-versions", {
+      method: "GET",
+    });
+
+    expect(response.status).toBe(200);
+
+    const body = response.body;
+    expect(body).toHaveProperty("versions");
+    expect(typeof body.versions).toBe("object");
+
+    const expectedPages = [
+      "signIn",
+      "signUp",
+      "signOut",
+      "emailVerification",
+      "passwordReset",
+      "forgotPassword",
+      "oauthCallback",
+      "magicLinkCallback",
+      "accountSettings",
+      "teamInvitation",
+      "mfa",
+      "error",
+      "onboarding",
+    ];
+
+    for (const page of expectedPages) {
+      expect(body.versions).toHaveProperty(page);
+      expect(body.versions[page]).toHaveProperty("version");
+      expect(typeof body.versions[page].version).toBe("number");
+      expect(body.versions[page]).toHaveProperty("changelogs");
+      expect(typeof body.versions[page].changelogs).toBe("object");
+    }
+  });
+
+  it("should reject non-GET methods", async ({ expect }) => {
+    const response = await niceBackendFetch("/api/v1/internal/component-versions", {
+      method: "POST",
+      body: {},
+    });
+
+    expect(response.status).toBe(405);
+  });
+});
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/internal/feedback.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/internal/feedback.test.ts
index b3d35f13ac..38b8ad090b 100644
--- a/apps/e2e/tests/backend/endpoints/api/v1/internal/feedback.test.ts
+++ b/apps/e2e/tests/backend/endpoints/api/v1/internal/feedback.test.ts
@@ -1,59 +1,125 @@
-import { afterEach, describe } from "vitest";
+import { describe } from "vitest";
 import { it } from "../../../../../helpers";
 import { Auth, backendContext, createMailbox, niceBackendFetch, waitForOutboxEmailWithStatus } from "../../../../backend-helpers";
 
-afterEach(() => {
-  delete process.env.STACK_INTERNAL_FEEDBACK_RECIPIENTS;
-});
+/**
+ * Probe the backend to detect whether it's forwarding feedback to production.
+ * Cached so we only make one probe request per test run.
+ */
+let cachedIsForwarding: boolean | null = null;
+async function isForwardingToProduction(): Promise<boolean> {
+  if (cachedIsForwarding !== null) return cachedIsForwarding;
+  const probe = await niceBackendFetch("/api/v1/internal/feedback", {
+    method: "POST",
+    body: {
+      email: "probe@test.stack-auth.com",
+      message: "mode detection probe",
+    },
+  });
+  // When forwarding, production rejects and we get a non-200 with "forward" in the body
+  cachedIsForwarding = probe.status !== 200;
+  return cachedIsForwarding;
+}
 
 describe("POST /api/v1/internal/feedback", () => {
-  it("should reject unauthenticated requests", async ({ expect }) => {
+  it("should send feedback from an authenticated user", async ({ expect }) => {
+    if (await isForwardingToProduction()) {
+      return; // forwarding mode — probe already verified endpoint is reachable
+    }
+
+    const senderEmail = backendContext.value.mailbox.emailAddress;
+    const signInResult = await Auth.Otp.signIn();
+    const recipientMailbox = createMailbox("team@stack-auth.com");
+    const subject = `[Support] ${senderEmail}`;
+
     const response = await niceBackendFetch("/api/v1/internal/feedback", {
       method: "POST",
       accessType: "client",
       body: {
-        email: "test@example.com",
-        message: "This should be rejected",
+        name: "Support Tester",
+        email: senderEmail,
+        message: "Authenticated feedback from the dashboard.",
       },
     });
 
     expect(response).toMatchInlineSnapshot(`
       NiceResponse {
-        "status": 400,
-        "body": {
-          "code": "SCHEMA_ERROR",
-          "details": {
-            "message": deindent\`
-              Request validation failed on POST /api/v1/internal/feedback:
-                - auth.user must be defined
-            \`,
-          },
-          "error": deindent\`
-            Request validation failed on POST /api/v1/internal/feedback:
-              - auth.user must be defined
-          \`,
-        },
-        "headers": Headers {
-          "x-stack-known-error": "SCHEMA_ERROR",
-          <some fields may have been hidden>,
-        },
+        "status": 200,
+        "body": { "success": true },
+        "headers": Headers { <some fields may have been hidden> },
+      }
+    `);
+
+    const emails = await waitForOutboxEmailWithStatus(subject, "sent");
+    expect(emails).toHaveLength(1);
+    expect(emails[0].to).toMatchObject({
+      type: "custom-emails",
+      emails: ["team@stack-auth.com"],
+    });
+
+    const messages = await recipientMailbox.waitForMessagesWithSubject(subject);
+    expect(messages).toHaveLength(1);
+    expect(messages[0].subject).toBe(subject);
+    expect(messages[0].body?.text).toContain("Support Tester");
+    expect(messages[0].body?.text).toContain(senderEmail);
+    expect(messages[0].body?.text).toContain(signInResult.userId);
+    expect(messages[0].body?.text).toContain("Authenticated feedback from the dashboard.");
+  });
+
+  it("should send feedback without authentication (dev tool)", async ({ expect }) => {
+    if (await isForwardingToProduction()) {
+      return;
+    }
+
+    const recipientMailbox = createMailbox("team@stack-auth.com");
+    const subject = "[Support] devtool-user@example.com";
+
+    const response = await niceBackendFetch("/api/v1/internal/feedback", {
+      method: "POST",
+      body: {
+        name: "Dev Tool User",
+        email: "devtool-user@example.com",
+        message: "Unauthenticated feedback from the dev tool.",
+        feedback_type: "feedback",
+      },
+    });
+
+    expect(response).toMatchInlineSnapshot(`
+      NiceResponse {
+        "status": 200,
+        "body": { "success": true },
+        "headers": Headers { <some fields may have been hidden> },
       }
     `);
+
+    const emails = await waitForOutboxEmailWithStatus(subject, "sent");
+    expect(emails).toHaveLength(1);
+    expect(emails[0].to).toMatchObject({
+      type: "custom-emails",
+      emails: ["team@stack-auth.com"],
+    });
+
+    const messages = await recipientMailbox.waitForMessagesWithSubject(subject);
+    expect(messages).toHaveLength(1);
+    expect(messages[0].body?.text).toContain("Dev Tool User");
+    expect(messages[0].body?.text).toContain("devtool-user@example.com");
+    expect(messages[0].body?.text).toContain("Unauthenticated feedback from the dev tool.");
   });
 
-  it("should send support feedback to the configured internal inbox", async ({ expect }) => {
-    const senderEmail = backendContext.value.mailbox.emailAddress;
-    const signInResult = await Auth.Otp.signIn();
+  it("should send bug reports with correct label", async ({ expect }) => {
+    if (await isForwardingToProduction()) {
+      return;
+    }
+
     const recipientMailbox = createMailbox("team@stack-auth.com");
-    const subject = `[Support] ${senderEmail}`;
+    const subject = "[Bug Report] bug@example.com";
 
     const response = await niceBackendFetch("/api/v1/internal/feedback", {
       method: "POST",
-      accessType: "client",
       body: {
-        name: "Support Tester",
-        email: senderEmail,
-        message: "Please replace Web3Forms with native email delivery.",
+        email: "bug@example.com",
+        message: "Something is broken.",
+        feedback_type: "bug",
       },
     });
 
@@ -66,28 +132,22 @@ describe("POST /api/v1/internal/feedback", () => {
     `);
 
     const emails = await waitForOutboxEmailWithStatus(subject, "sent");
-    expect(emails[0]?.to).toMatchObject({
+    expect(emails).toHaveLength(1);
+    expect(emails[0].to).toMatchObject({
       type: "custom-emails",
       emails: ["team@stack-auth.com"],
     });
 
     const messages = await recipientMailbox.waitForMessagesWithSubject(subject);
     expect(messages).toHaveLength(1);
-    expect(messages[0]?.subject).toBe(subject);
-    expect(messages[0]?.body?.text).toContain("Support Tester");
-    expect(messages[0]?.body?.text).toContain(senderEmail);
-    expect(messages[0]?.body?.text).toContain(signInResult.userId);
-    expect(messages[0]?.body?.text).toContain("Please replace Web3Forms with native email delivery.");
+    expect(messages[0].subject).toBe("[Bug Report] bug@example.com");
   });
 
   it("should reject invalid payloads", async ({ expect }) => {
-    await Auth.Otp.signIn();
-
     const response = await niceBackendFetch("/api/v1/internal/feedback", {
       method: "POST",
-      accessType: "client",
       body: {
-        email: backendContext.value.mailbox.emailAddress,
+        email: "test@example.com",
         message: "",
       },
     });
diff --git a/claude/CLAUDE-KNOWLEDGE.md b/claude/CLAUDE-KNOWLEDGE.md
index d444359e7b..0a95fada82 100644
--- a/claude/CLAUDE-KNOWLEDGE.md
+++ b/claude/CLAUDE-KNOWLEDGE.md
@@ -164,6 +164,23 @@ A: Use `signed_up_at` (OIDC-style naming) in access tokens and encode it as Unix
 Q: Where should new globally searchable Cmd+K destinations be added in the dashboard?
 A: Add project-level shortcuts to `PROJECT_SHORTCUTS` in `apps/dashboard/src/components/cmdk-commands.tsx` (optionally gated with `requiredApps`), and for app subpages rely on the flattened `appFrontend.navigationItems` command generation in the same file so pages are directly searchable without nested preview navigation.
 
+Q: How should handler URL/shared interface renames be rolled out when template/backend import `@stackframe/stack-shared/dist/*`?
+A: Add the new source entrypoint in `packages/stack-shared/src/interface` and update imports to the new `dist` path, but validate with package typechecks after the stack-shared dist artifacts are refreshed (for example via existing dev watchers), because consumers resolve through `dist/*` entrypoints rather than `src/*`.
+
+Q: How are custom page prompts organized in `page-component-versions.ts` now?
+A: `signIn` and `signUp` share a single `createAuthPagePrompt(type)` helper, and all remaining pages (`signOut`, `emailVerification`, `passwordReset`, `forgotPassword`, `oauthCallback`, `magicLinkCallback`, `accountSettings`, `teamInvitation`, `mfa`, `error`, `onboarding`) now use `createCustomPagePrompt(...)` with concise logical `structure` plus a React `reactExample`.
+
+Q: What makes custom page prompt examples actionable for coding agents?
+A: Avoid abstract placeholders for core flows (for example undefined section components or form primitives). In `page-component-versions.ts`, examples are most useful when they inline the section/form components and state transitions they rely on, while keeping `structure` focused on logical behavior rather than visual layout.
+
+Q: How detailed should the Account Settings custom-page prompt be?
+A: The `accountSettings` prompt should enumerate each top-level page and each subsection's exact responsibilities and API calls (emails, password, passkey, OTP, MFA, notifications, sessions, API keys, payments, settings, team pages, team creation). The example should inline section components and actions rather than referencing undefined placeholders.
+
+Q: What should we do if dashboard typecheck fails with syntax errors in `apps/dashboard/.next/dev/types/routes.d.ts`?
+A: Regenerate Next route types with `pnpm --filter @stackframe/dashboard exec next typegen` (and if needed, delete the corrupted `apps/dashboard/.next/dev/types/routes.d.ts` first). This fixes transient generated-file corruption without changing source code.
+
+Q: What is the current `getCustomPagePrompts` API shape?
+A: `getCustomPagePrompts` now takes no arguments and returns all prompts directly; call it as `getCustomPagePrompts()` instead of passing an SDK package name.
 Q: Which port suffixes are assigned to the two local docs sites?
 A: `docs` (old docs app) uses suffix `26`, and `docs-mintlify` uses suffix `04`. Keep these in sync across `docs/package.json`, `docs-mintlify/package.json`, `apps/dev-launchpad/public/index.html`, and `apps/dashboard/.env.development` (`NEXT_PUBLIC_STACK_DOCS_BASE_URL` points to old docs on `26`).
 
diff --git a/examples/demo/package.json b/examples/demo/package.json
index 4fc51ffce6..6a22191ff3 100644
--- a/examples/demo/package.json
+++ b/examples/demo/package.json
@@ -16,6 +16,8 @@
   "dependencies": {
     "@emotion/react": "^11.13.3",
     "@emotion/styled": "^11.13.0",
+    "@stackframe/js": "workspace:*",
+    "@stackframe/react": "workspace:*",
     "@stackframe/stack": "workspace:*",
     "@stackframe/stack-shared": "workspace:*",
     "@stackframe/stack-ui": "workspace:*",
diff --git a/examples/demo/src/app/dev-tool-test-js/page.tsx b/examples/demo/src/app/dev-tool-test-js/page.tsx
new file mode 100644
index 0000000000..26282fc248
--- /dev/null
+++ b/examples/demo/src/app/dev-tool-test-js/page.tsx
@@ -0,0 +1,30 @@
+"use client";
+
+import { StackClientApp } from "@stackframe/js";
+import { useEffect, useState } from "react";
+
+export default function DevToolTestJsPage() {
+  const [status, setStatus] = useState("Initializing StackClientApp from @stackframe/js…");
+
+  useEffect(() => {
+    const app = new StackClientApp({
+      projectId: "internal",
+      publishableClientKey: "this-publishable-client-key-is-for-local-development-only",
+      baseUrl: "http://localhost:8102",
+      tokenStore: "cookie",
+    });
+
+    setStatus(`StackClientApp initialized (project: ${app.projectId}). Dev tool should appear at the bottom.`);
+  }, []);
+
+  return (
+    <div style={{ padding: 40, maxWidth: 600, margin: "0 auto" }}>
+      <h1 style={{ fontSize: 24, marginBottom: 16 }}>Dev Tool Test (@stackframe/js)</h1>
+      <p style={{ marginBottom: 8 }}>
+        This page creates a <code>StackClientApp</code> from <code>@stackframe/js</code>.
+        The dev tool auto-mounts in the constructor (<code>js</code> platform path).
+      </p>
+      <p style={{ color: "#666" }}>{status}</p>
+    </div>
+  );
+}
diff --git a/examples/demo/src/app/dev-tool-test-react/page.tsx b/examples/demo/src/app/dev-tool-test-react/page.tsx
new file mode 100644
index 0000000000..3f9ad199d5
--- /dev/null
+++ b/examples/demo/src/app/dev-tool-test-react/page.tsx
@@ -0,0 +1,37 @@
+"use client";
+
+import { StackClientApp, StackProvider, useUser } from "@stackframe/react";
+import { Suspense } from "react";
+
+const app = new StackClientApp({
+  projectId: "internal",
+  publishableClientKey: "this-publishable-client-key-is-for-local-development-only",
+  baseUrl: "http://localhost:8102",
+  tokenStore: "cookie",
+});
+
+function Status() {
+  const user = useUser();
+  return (
+    <p style={{ color: "#666" }}>
+      Signed in as: {user?.primaryEmail ?? user?.displayName ?? "not signed in"}
+    </p>
+  );
+}
+
+export default function DevToolTestReactPage() {
+  return (
+    <StackProvider app={app}>
+      <div style={{ padding: 40, maxWidth: 600, margin: "0 auto" }}>
+        <h1 style={{ fontSize: 24, marginBottom: 16 }}>Dev Tool Test (@stackframe/react)</h1>
+        <p style={{ marginBottom: 8 }}>
+          This page creates its own <code>StackProvider</code> from <code>@stackframe/react</code>.
+          The dev tool mounts via the <code>DevToolMount</code> component (<code>react-like</code> platform path).
+        </p>
+        <Suspense fallback={<p style={{ color: "#666" }}>Loading user…</p>}>
+          <Status />
+        </Suspense>
+      </div>
+    </StackProvider>
+  );
+}
diff --git a/examples/demo/src/app/dev-tool-test/page.tsx b/examples/demo/src/app/dev-tool-test/page.tsx
new file mode 100644
index 0000000000..acae1b399e
--- /dev/null
+++ b/examples/demo/src/app/dev-tool-test/page.tsx
@@ -0,0 +1,21 @@
+"use client";
+
+import { useUser } from "@stackframe/stack";
+
+export default function DevToolTestPage() {
+  const user = useUser();
+
+  return (
+    <div style={{ padding: 40, maxWidth: 600, margin: "0 auto" }}>
+      <h1 style={{ fontSize: 24, marginBottom: 16 }}>Dev Tool Test (Next.js page)</h1>
+      <p style={{ marginBottom: 8 }}>
+        This is a standard Next.js page rendered inside the root layout&apos;s{" "}
+        <code>&lt;StackProvider&gt;</code>. The dev tool mounts via the{" "}
+        <code>DevToolMount</code> React component (<code>react-like</code> platform path).
+      </p>
+      <p style={{ color: "#666" }}>
+        Signed in as: {user?.primaryEmail ?? user?.displayName ?? "not signed in"}
+      </p>
+    </div>
+  );
+}
diff --git a/examples/demo/src/stack.tsx b/examples/demo/src/stack.tsx
index 57a87b229f..9b43aadaf5 100644
--- a/examples/demo/src/stack.tsx
+++ b/examples/demo/src/stack.tsx
@@ -6,8 +6,10 @@ export const stackServerApp = new StackServerApp({
   tokenStore: "nextjs-cookie",
   urls: {
     accountSettings: '/settings',
+    signIn: { type: "hosted" },
+    signUp: { type: "custom", url: "/auth/sign-up", version: 0 },
     default: {
-      "type": "hosted",
+      "type": "handler-component",
     },
   }
 });
diff --git a/package.json b/package.json
index 2ef22bf97a..295ca05937 100644
--- a/package.json
+++ b/package.json
@@ -17,7 +17,8 @@
     "build:docs": "pnpm run build:packages && pnpm run codegen && pnpm run build:backend && pnpm run --filter=@stackframe/stack-docs generate-openapi-docs && turbo run build --filter=@stackframe/stack-docs",
     "build:packages": "pnpm pre && turbo run build --filter=./packages/*",
     "clean": "pnpm pre-no-codegen && turbo run clean && rimraf --glob **/.next && rimraf --glob **/.turbo && rimraf .turbo && rimraf --glob **/node_modules && rimraf node_modules",
-    "fml": "pnpm clean && pnpm i && (pnpm build || true) && pnpm codegen && pnpm restart-deps",
+    "uff-cutie": "pnpm clean && pnpm i && (pnpm build || true) && pnpm codegen",
+    "fml": "pnpm uff-cutie && pnpm restart-deps",
     "codegen": "pnpm pre && turbo run codegen && pnpm run generate-sdks",
     "codegen:backend": "pnpm pre && turbo run codegen --filter=@stackframe/backend...",
     "deps-compose": "docker compose -p stack-dependencies-${NEXT_PUBLIC_STACK_PORT_PREFIX:-81} -f docker/dependencies/docker.compose.yaml",
diff --git a/packages/react/package.json b/packages/react/package.json
index ff196f9fc6..73a000c44a 100644
--- a/packages/react/package.json
+++ b/packages/react/package.json
@@ -58,6 +58,8 @@
     "LICENSE"
   ],
   "dependencies": {
+    "@ai-sdk/react": "^3.0.72",
+    "ai": "^6.0.0",
     "@hookform/resolvers": "^5.2.2",
     "@stripe/react-stripe-js": "^3.8.1",
     "@stripe/stripe-js": "^7.7.0",
diff --git a/packages/stack-shared/src/interface/client-interface.ts b/packages/stack-shared/src/interface/client-interface.ts
index b7fb192dd0..7279651584 100644
--- a/packages/stack-shared/src/interface/client-interface.ts
+++ b/packages/stack-shared/src/interface/client-interface.ts
@@ -33,6 +33,16 @@ import { TeamMemberProfilesCrud } from './crud/team-member-profiles';
 import { TeamPermissionsCrud } from './crud/team-permissions';
 import { TeamsCrud } from './crud/teams';
 
+export type RequestLogEntry = {
+  path: string,
+  method: string,
+  status?: number,
+  duration: number,
+  error?: string,
+};
+
+export type RequestListener = (entry: RequestLogEntry) => void;
+
 export type ClientInterfaceOptions = {
   clientVersion: string,
   // This is a function instead of a string because it might be different based on the environment (for example client vs server)
@@ -122,6 +132,7 @@ function getBotChallengeRequestFields(botChallenge: BotChallengeInput | undefine
 
 export class StackClientInterface {
   private pendingNetworkDiagnostics?: ReturnType<StackClientInterface["_runNetworkDiagnosticsInner"]>;
+  private _requestListeners = new Set<RequestListener>();
 
   /**
    * Fallback state. When null, we're in normal mode (primary first).
@@ -134,6 +145,13 @@ export class StackClientInterface {
     this._initialProbeRate = options.probeRate ?? 0.3;
   }
 
+  addRequestListener(listener: RequestListener): () => void {
+    this._requestListeners.add(listener);
+    return () => {
+      this._requestListeners.delete(listener);
+    };
+  }
+
   get projectId() {
     return this.options.projectId;
   }
@@ -651,10 +669,15 @@ export class StackClientInterface {
       }),
     };
 
+    const startTime = performance.now();
     let rawRes;
     try {
       rawRes = await fetch(url, params);
     } catch (e) {
+      if (this._requestListeners.size > 0) {
+        const entry: RequestLogEntry = { path, method: (params.method ?? "GET").toUpperCase(), duration: Math.round(performance.now() - startTime), error: e instanceof Error ? e.message : "Network error" };
+        this._requestListeners.forEach((l) => l(entry));
+      }
       if (e instanceof TypeError) {
         // Likely to be a network error. Retry if the request is idempotent, throw network error otherwise.
         if (HTTP_METHODS[(params.method ?? "GET") as HttpMethod].idempotent) {
@@ -666,6 +689,11 @@ export class StackClientInterface {
       throw e;
     }
 
+    if (this._requestListeners.size > 0) {
+      const entry: RequestLogEntry = { path, method: (params.method ?? "GET").toUpperCase(), status: rawRes.status, duration: Math.round(performance.now() - startTime) };
+      this._requestListeners.forEach((l) => l(entry));
+    }
+
     const processedRes = await this._processResponse(rawRes);
     if (processedRes.status === "error") {
       // If the access token is invalid, reset it and retry
diff --git a/packages/stack-shared/src/interface/handler-urls.ts b/packages/stack-shared/src/interface/handler-urls.ts
new file mode 100644
index 0000000000..cdb2e11fdf
--- /dev/null
+++ b/packages/stack-shared/src/interface/handler-urls.ts
@@ -0,0 +1,48 @@
+/**
+ * @deprecated Plain string URLs are deprecated. Use `{ type: "custom", url: "...", version: 0 }` instead.
+ */
+type DeprecatedStringUrl = string;
+
+export type HandlerPageUrls = Record<
+  | "handler"
+  | "signIn"
+  | "signUp"
+  | "signOut"
+  | "emailVerification"
+  | "passwordReset"
+  | "forgotPassword"
+  | "oauthCallback"
+  | "magicLinkCallback"
+  | "accountSettings"
+  | "teamInvitation"
+  | "mfa"
+  | "error"
+  | "onboarding",
+  DeprecatedStringUrl | { type: "custom", url: string, version: number } | { type: "hosted" | "handler-component" }
+>;
+
+export type HandlerRedirectUrls = Record<
+  | "afterSignIn"
+  | "afterSignUp"
+  | "afterSignOut"
+  | "home",
+  string
+>;
+
+export type HandlerUrls = HandlerPageUrls & HandlerRedirectUrls;
+export type HandlerUrlTarget = HandlerUrls[keyof HandlerUrls];
+export type DefaultHandlerUrlTarget = string | { type: "hosted" | "handler-component" };
+export type HandlerUrlOptions = Partial<HandlerUrls> & { default?: DefaultHandlerUrlTarget };
+export type ResolvedHandlerUrls = {
+  [K in keyof HandlerUrls]: string;
+};
+
+export {
+  getCustomPagePrompts,
+  getLatestPageVersions,
+  type CustomPagePrompt,
+  type PageComponentKey,
+  type PageVersionEntry,
+  type PageVersions
+} from "./page-component-versions";
+
diff --git a/packages/stack-shared/src/interface/page-component-versions.ts b/packages/stack-shared/src/interface/page-component-versions.ts
new file mode 100644
index 0000000000..ed9b20e184
--- /dev/null
+++ b/packages/stack-shared/src/interface/page-component-versions.ts
@@ -0,0 +1,1661 @@
+/**
+ * Single source of truth for SDK-managed page prompts and version metadata.
+ *
+ * Consumed by:
+ *   - the backend's `/internal/component-versions` endpoint (via
+ *     `getLatestPageVersions`), so the dev-tool can tell users when their
+ *     installed SDK is outdated.
+ *   - the template SDK's `url-targets.ts`, which calls `getCustomPagePrompts`
+ *     to build prompt metadata for custom page URL target validation.
+ *
+ * This file lives in stack-shared because both the backend and the template
+ * need the same data, and stack-shared is the only package both can import
+ * from without creating a wrong-direction dependency.
+ */
+
+import { ALL_APPS } from "../apps/apps-config";
+import { deindent } from "../utils/strings";
+import type { HandlerPageUrls } from "./handler-urls";
+
+export type PageVersionEntry = {
+  minSdkVersion: `${number}.${number}.${number}`,
+  upgradePrompt: string,
+  changelog: string,
+};
+
+export type PageVersions = Record<number, PageVersionEntry> & { 1: PageVersionEntry };
+
+export type PageComponentKey = Exclude<keyof HandlerPageUrls, "handler">;
+
+export type CustomPagePrompt = {
+  title: string,
+  fullPrompt: string,
+  versions: PageVersions,
+};
+
+const stackAuthReminders = deindent`
+  Some quick reminders on Stack Auth: 
+
+  - Stack Auth is a platform that provides a variety of apps that help you connect with your users. As of the time of writing these reminders, Stack Auth provides the following apps (although not all may be enabled): ${Object.entries(ALL_APPS).filter(([, app]) => app.stage !== "alpha").map(([key]) => key).join(", ")}. Don't hardcode this list, as it changes rapidly.
+  - The most important object in Stack Auth is the Stack App object. StackClientApp provides client-side functionality, while StackServerApp also provides server-side functionality (but can usually only be imported on the server, as it requires a secret server key environment variable). You can usually find an instance of this object in a file called \`stack/client.tsx\` or \`stack/server.tsx\`, although it may be in a different location in this particular codebase.
+  - Take extra care to always have great error handling and loading states whenever necessary (including in button onClick handlers; Stack Auth's code examples often use a special onClick class which handles loading states, but your own button may not). Stack Auth's SDK tends to return errors that need to be handled explicitly in its return types.
+  - Language, framework, and library-specific details:
+    - JavaScript & TypeScript:
+      - Stack Auth has different SDK packages for different frameworks and languages. As of the time of writing these reminders, they are: @stackframe/js (JavaScript/TypeScript), @stackframe/stack (Next.js), @stackframe/react (React). You can find all of these on npm. They are all versioned together, meaning that vX.Y.Z of one SDK was released at the same time as vX.Y.Z of another SDK. For the most part, they are the same, although each has platform-specific features and differences.
+      - The \`Result<T, E>\` type is \`{ status: "ok", data: T } | { status: "error", error: E }\`.
+      - \`KnownErrors[KNOWN_ERROR_CODE]\` refers to a specific known error type. Each KnownError may have its own properties, but they all inherit from \`Error & { statusCode: number, humanReadableMessage: string, details?: Json }\`.
+      - React & Next.js:
+        - Almost all \`getXyz\` and \`listXyz\` functions on the Stack App have corresponding \`useXyz\` hooks that suspend the current component until the data is available. Make sure there is a Suspense boundary in place if you're using this pattern. The parameter and return types are identical except that the hooks don't return promises.
+        - There is a \`useStackApp()\` hook as a named export from the package itself that serves as a shortcut to get the current Stack App object from the React context. Similarly, the \`useUser(...args)\` named export is short for \`useStackApp().useUser(...args)\`.
+`;
+
+function createCustomPagePrompt(options: {
+  key: PageComponentKey,
+  title: string,
+  minSdkVersion: `${number}.${number}.${number}`,
+  structure: string,
+  notes: string,
+  reactExample: string,
+  versions: Omit<PageVersions, 1>,
+}): CustomPagePrompt {
+  const latestPageVersion = Math.max(1, ...Object.keys(options.versions).map(Number));
+  const latestSdkVersion = latestPageVersion === 1 ? options.minSdkVersion : options.versions[latestPageVersion].minSdkVersion;
+  const fullPrompt = deindent`
+    This prompt explains how to implement a custom ${options.title} page for Stack Auth. The version of this page that you are implementing is v${latestPageVersion}. It can be found in Stack Auth's documentation, and in the Stack Auth devtool indicator.
+
+    First, make sure to upgrade the Stack Auth SDK to a recent version. The minimum supported SDK version for this walkthrough is v${latestSdkVersion}.
+
+    The user's codebase may already have a ${options.title} page that could be suitable (eg. from an earlier version of Stack Auth, a template, another auth provider before migrating to Stack Auth, etc.). Use your critical thinking skills to determine what the user's intent is; it is likely that instead of creating a new page, you can just modify the existing page to use Stack Auth & support the logic/structure below.
+
+    Below is a description of the logical structure of what this page should contain (note that the visual structure and layout may be different, and up to you). The page can have more content than this, but it should always contain at least what's described below.
+
+    ${options.structure}
+
+    Some more notes:
+
+    - When implementing the custom page, make sure to adjust its design to match the frameworks, libraries, codestyle, design and branding of the remaining app.
+    ${options.notes}
+
+    Below is a React example of an extremely minimalistic implementation of this page. Note that this is an example, not a template, and as such you should spend careful consideration on how to implement the page in a way that is consistent with the existing codebase. Also note that these components are NOT self-contained, and NOT shadcn-ui components or a UI framework like that. They serve purely as examples on how to implement the page, but you must make sure to use the correct components and props for the framework and libraries you're using yourself. DO NOT USE THE EXACT DESIGN AS SPECIFIED IN THIS EXAMPLE, INSTEAD MAKE IT LOOK REALLY GOOD. THIS EXAMPLE ONLY DESCRIBES THE MINIMAL LOGIC THAT A SIGN-IN PAGE NEEDS TO SUPPORT, IT IS NOT A COMPLETE EXAMPLE!
+
+    \`\`\`tsx
+    ${options.reactExample}
+    \`\`\`
+
+    When you're done, please update the file where the Stack app is configured with its URLs, to make sure it points to this page. For example, you may have an object declared like this:
+
+    \`\`\`tsx
+    export const stackServerApp = new StackServerApp({
+      tokenStore: "nextjs-cookie",
+      urls: {
+        default: {
+          "type": "hosted",
+        },
+      }
+    });
+    \`\`\`
+
+    You will want to update the \`urls\` property to point to this page, for example:
+
+    \`\`\`tsx
+      urls: {
+        ${JSON.stringify(options.key)}: { type: "custom", url: "/path/to/your/custom/page", version: ${latestPageVersion} },
+        // ...
+      },
+    \`\`\`
+
+    ${stackAuthReminders}
+  `;
+  const versions = {
+    1: {
+      minSdkVersion: options.minSdkVersion,
+      upgradePrompt: fullPrompt,
+      changelog: "Initial version.",
+    },
+    ...options.versions,
+  };
+  return {
+    title: options.title,
+    versions,
+    fullPrompt,
+  };
+}
+
+type AuthPagePromptType = "signIn" | "signUp";
+
+function createAuthPagePrompt(type: AuthPagePromptType): CustomPagePrompt {
+  const isSignIn = type === "signIn";
+  const otherType = isSignIn ? "signUp" : "signIn";
+
+  const title = isSignIn ? "Sign In" : "Sign Up";
+  const pageHeading = isSignIn ? "Sign in to your account" : "Create a new account";
+  const authVerb = isSignIn ? "sign in" : "sign up";
+  const authVerbCapitalized = isSignIn ? "Sign in" : "Sign up";
+  const otherAuthVerb = isSignIn ? "sign up" : "sign in";
+
+  const credentialMethodCall = isSignIn
+    ? "stackApp.signInWithCredential({ email: form.email, password: form.password })"
+    : "stackApp.signUpWithCredential({ email: form.email, password: form.password })";
+
+  const credentialResultType = isSignIn
+    ? "Promise<Result<undefined, KnownErrors[\"EmailPasswordMismatch\"] | KnownErrors[\"InvalidTotpCode\"]>>"
+    : "Promise<Result<undefined, KnownErrors[\"UserWithEmailAlreadyExists\"] | KnownErrors[\"PasswordRequirementsNotMet\"] | KnownErrors[\"BotChallengeFailed\"]>>";
+
+  return createCustomPagePrompt({
+    key: type,
+    title,
+    minSdkVersion: "0.0.1",
+    structure: deindent`
+      - If user is already signed in, regardless of whether restricted or not (ie. \`await stackApp.getUser({ includeRestricted: true }) !== null\`):
+        - If user is restricted, \`await stackApp.redirectToOnboarding({ replace: true })\`
+        - Otherwise, \`await stackApp.redirectToAfterSign${isSignIn ? "In" : "Up"}({ replace: true })\`
+        - While the redirect is happening, you may display a loading indicator, or a note that the user is being redirected. If necessary, or if preferable, you can also render a message card that shows a link to \`await stackApp.redirectToHome()\` and a sign out button.
+      - If user is not signed in:
+        ${isSignIn
+          ? "- If sign-ups are enabled (\\`project = await stackApp.getProject(); project.config.signUpEnabled\\`), show a link to the sign-up page."
+          : "- If sign-ups are disabled (\\`project = await stackApp.getProject(); !project.config.signUpEnabled\\`), show a message that sign-up is disabled."}
+        - Show a ${authVerb} screen. The auth methods that should render:
+          - For each OAuth provider (\`project.config.oauthProviders: { readonly id: string }[]\`), render an OAuth button. Clicking the button calls \`await stackApp.signInWithOAuth("<providerId>")\`.
+          ${isSignIn ? "- If \\`project.config.passkeyEnabled\\`, render a passkey button. Clicking the button calls \\`await stackApp.signInWithPasskey()\\`." : ""}
+          - If \`project.config.credentialEnabled\`, render a credential ${authVerb} form:
+            - Email + password${isSignIn ? "" : " + repeat password"}
+            ${isSignIn ? "" : "- Validate password strength with \\`getPasswordError()\\` and ensure repeated password matches"}
+            ${isSignIn ? "- \"Forgot password?\" link calling \\`await stackApp.redirectToForgotPassword()\\`" : ""}
+            - Submit calls \`${credentialMethodCall}: ${credentialResultType}\`
+            - On error, display the error message on the email field
+          - If \`project.config.magicLinkEnabled\`, render a magic link form:
+            - Email input (validated to be a correct email address) + "Send email" button
+            - Calls \`stackApp.sendMagicLinkEmail(email): Promise<Result<{ nonce: string }, KnownErrors["RedirectUrlNotWhitelisted"] | KnownErrors["BotChallengeFailed"]>>\`
+            - After sending, switch to a 6-digit OTP input. User enters the code from their email
+            - Submit the OTP + nonce via \`stackApp.signInWithMagicLink(otp + nonce): Promise<Result<undefined, KnownErrors["VerificationCodeError"] | KnownErrors["InvalidTotpCode"]>>\` (string concatenation)
+          - If both credential and magic-link are enabled, allow the user to choose which flow to use.
+          - If none of the above auth methods are enabled, show a message explaining that no authentication methods are enabled.
+        - Show a link to the ${otherAuthVerb} page that calls \`await stackApp.redirectTo${isSignIn ? "SignUp" : "SignIn"}()\`.
+    `,
+    reactExample: deindent`
+      export default function Custom${isSignIn ? "SignIn" : "SignUp"}Page() {
+        const stackApp = useStackApp();
+        const user = useUser({ includeRestricted: true });
+        const project = stackApp.useProject();
+        const [otpState, setOtpState] = useState<null | { nonce: string }>(null);
+
+        useEffect(() => {
+          if (user) {
+            if (user.isRestricted) {
+              void stackApp.redirectToOnboarding();
+            } else {
+              void stackApp.redirectToAfterSign${isSignIn ? "In" : "Up"}();
+            }
+          }
+        }, [user]);
+
+        if (user && !user.isRestricted) {
+          return (
+            <div>
+              <Typography>You are already signed in.</Typography>
+              <Button onClick={async () => await stackApp.redirectToSignOut()}>Sign out</Button>
+              <Button onClick={async () => await stackApp.redirectToHome()}>Go home</Button>
+            </div>
+          );
+        }
+
+        ${isSignIn ? "" : `
+        if (!project.config.signUpEnabled) {
+          return <Typography>Sign-up is not enabled.</Typography>;
+        }`}
+
+        if (otpState) {
+          return (
+            <Form onSubmit={async (form) => {
+              const result = await stackApp.signInWithMagicLink(form.otp + otpState.nonce);
+              if (result.status === "error") handleErrorNicely(...);
+            }}>
+              <Typography>Enter the code from your email</Typography>
+              <OTPInput id="otp" />
+              <Button type="button" onClick={() => setOtpState(null)}>Go back</Button>
+              <SubmitButton>Verify code</SubmitButton>
+            </Form>
+          );
+        }
+
+        const hasOAuthProviders = project.config.oauthProviders.length > 0;
+        ${isSignIn ? "const hasPasskey = project.config.passkeyEnabled;" : ""}
+        const hasCredential = project.config.credentialEnabled;
+        const hasMagicLink = project.config.magicLinkEnabled;
+        const showSeparator = (hasCredential || hasMagicLink) && ${isSignIn ? "(hasOAuthProviders || hasPasskey)" : "hasOAuthProviders"};
+        const hasAnyAuthMethod = hasOAuthProviders || hasCredential || hasMagicLink${isSignIn ? " || hasPasskey" : ""};
+
+        return (
+          <div>
+            <Typography type="h2">${pageHeading}</Typography>
+            ${isSignIn ? `{
+              project.config.signUpEnabled ? (
+                <Typography>
+                  {"Don't have an account? "}
+                  <a
+                    href={stackApp.urls.signUp}
+                    onClick={async (e) => {
+                      e.preventDefault();
+                      await stackApp.redirectToSignUp();
+                    }}
+                  >
+                    Sign up
+                  </a>
+                </Typography>
+              ) : null
+            }` : `<Typography>
+              {"Already have an account? "}
+              <a
+                href={stackApp.urls.signIn}
+                onClick={async (e) => {
+                  e.preventDefault();
+                  await stackApp.redirectToSignIn();
+                }}
+              >
+                Sign in
+              </a>
+            </Typography>`}
+
+            {${isSignIn ? "(hasOAuthProviders || hasPasskey)" : "hasOAuthProviders"} && (
+              <div>
+                {project.config.oauthProviders.map((provider) => (
+                  <Button
+                    key={provider.id}
+                    onClick={async () => {
+                      await stackApp.signInWithOAuth(provider.id);
+                    }}
+                  >
+                    ${authVerbCapitalized} with {provider.id}
+                  </Button>
+                ))}
+                ${isSignIn ? `{hasPasskey && (
+                  <Button onClick={async () => await stackApp.signInWithPasskey()}>
+                    Sign in with passkey
+                  </Button>
+                )}` : ""}
+              </div>
+            )}
+
+            {showSeparator ? (
+              <Typography>
+                Or continue with
+              </Typography>
+            ) : null}
+
+            {hasCredential || hasMagicLink ? (
+              <Tabs>
+                <TabsList visible={hasCredential && hasMagicLink}>
+                  {hasMagicLink && <TabsTrigger value="magic-link">Email</TabsTrigger>}
+                  {hasCredential && <TabsTrigger value="password">Email & Password</TabsTrigger>}
+                </TabsList>
+                {hasMagicLink && <TabsContent value="magic-link">
+                  <Form onSubmit={async (form) => {
+                    const result = await stackApp.sendMagicLinkEmail(form.email);
+                    if (result.status === "error") handleErrorNicely(...);
+                    else setOtpState({ nonce: result.data.nonce });
+                  }}>
+                    <Label htmlFor="magic-link-email">Email</Label>
+                    <EmailInput id="magic-link-email" />
+                    <SubmitButton>Send OTP code</SubmitButton>
+                  </Form>
+                </TabsContent>}
+                {hasCredential && <TabsContent value="password">
+                  <Form onSubmit={async (form) => {
+                    ${isSignIn ? "" : `if (form.password !== form.passwordRepeat) {
+                      handleErrorNicely(...);
+                      return;
+                    }`}
+
+                    const result = await ${credentialMethodCall};
+                    if (result.status === "error") handleErrorNicely(...);
+                  }}>
+                    <Label htmlFor="email">Email</Label>
+                    <EmailInput id="email" />
+
+                    <Label htmlFor="password">Password</Label>
+                    <PasswordInput id="password" />
+
+                    ${isSignIn ? `<Button type="button" variant="link" onClick={async () => await stackApp.redirectToForgotPassword()}>
+                      Forgot password?
+                    </Button>` : `<Label htmlFor="password-repeat">Repeat password</Label>
+                    <PasswordInput id="password-repeat" />`}
+
+                    <SubmitButton>
+                      ${isSignIn ? "Sign In" : "Sign Up"}
+                    </SubmitButton>
+                  </Form>
+                </TabsContent>}
+              </Tabs>
+            ) : null}
+
+            {!hasAnyAuthMethod ? (
+              <Typography variant="destructive">No authentication method enabled.</Typography>
+            ) : null}
+          </div>
+        );
+      }
+    `,
+    notes: deindent`
+      - This page shares a lot of code with the ${otherType} page, and potentially other pages. Make sure to reuse code and keep behavior consistent wherever possible.
+    `,
+    versions: {},
+  });
+}
+
+export function getCustomPagePrompts(): Record<PageComponentKey, CustomPagePrompt> {
+  return {
+    signIn: createAuthPagePrompt("signIn"),
+    signUp: createAuthPagePrompt("signUp"),
+    signOut: createCustomPagePrompt({
+      key: "signOut",
+      title: "Sign Out",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read the current user.
+        - If a user exists, sign them out.
+        - After sign-out, show a confirmation state that the user is signed out.
+      `,
+      reactExample: deindent`
+        const cacheSignOut = cacheFunction(async (user: CurrentUser) => {
+          return await user.signOut();
+        });
+
+        export default function CustomSignOutPage() {
+          const user = useUser({ or: "return-null" });
+          const stackApp = useStackApp();
+
+          if (user) {
+            use(cacheSignOut(user));
+          }
+
+          return (
+            <MessageCard
+              title="Signed out"
+              primaryButtonText="Go home"
+              primaryAction={async () => {
+                await stackApp.redirectToHome();
+              }}
+            >
+              You have been signed out successfully.
+            </MessageCard>
+          );
+        }
+      `,
+      notes: deindent`
+        - Keep this page idempotent. Refreshing the page should still leave the user signed out and show a stable confirmation state.
+      `,
+      versions: {},
+    }),
+    emailVerification: createCustomPagePrompt({
+      key: "emailVerification",
+      title: "Email Verification",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read the verification code from URL params.
+        - If the code is missing, show an invalid-link state.
+        - If the code exists, show a confirmation step:
+          - Verify action calls \`stackApp.verifyEmail(code)\`.
+          - Cancel action calls \`stackApp.redirectToHome()\`.
+        - Handle verification result:
+          - \`VerificationCodeNotFound\` => invalid-link state.
+          - \`VerificationCodeExpired\` => expired-link state.
+          - \`VerificationCodeAlreadyUsed\` => treat as successful verification.
+          - Any other error => throw.
+        - On success, show a verified state with a "Go home" action.
+      `,
+      reactExample: deindent`
+        export default function CustomEmailVerificationPage(props: { searchParams?: Record<string, string> }) {
+          const stackApp = useStackApp();
+          const [result, setResult] = useState<Awaited<ReturnType<typeof stackApp.verifyEmail>> | null>(null);
+          const code = props.searchParams?.code;
+
+          if (!code) {
+            return <MessageCard title="Invalid Verification Link" />;
+          }
+
+          if (!result) {
+            return (
+              <MessageCard
+                title="Do you want to verify your email?"
+                primaryButtonText="Verify"
+                primaryAction={async () => {
+                  setResult(await stackApp.verifyEmail(code));
+                }}
+                secondaryButtonText="Cancel"
+                secondaryAction={async () => {
+                  await stackApp.redirectToHome();
+                }}
+              />
+            );
+          }
+
+          if (result.status === "error") {
+            if (KnownErrors.VerificationCodeNotFound.isInstance(result.error)) {
+              return <MessageCard title="Invalid Verification Link" />;
+            } else if (KnownErrors.VerificationCodeExpired.isInstance(result.error)) {
+              return <MessageCard title="Expired Verification Link" />;
+            } else if (!KnownErrors.VerificationCodeAlreadyUsed.isInstance(result.error)) {
+              throw result.error;
+            }
+          }
+
+          return (
+            <MessageCard
+              title="Your email has been verified!"
+              primaryButtonText="Go home"
+              primaryAction={async () => {
+                await stackApp.redirectToHome();
+              }}
+            />
+          );
+        }
+      `,
+      notes: deindent`
+        - Preserve explicit states for invalid, expired, and already-used codes so users know what happened and what to do next.
+      `,
+      versions: {},
+    }),
+    passwordReset: createCustomPagePrompt({
+      key: "passwordReset",
+      title: "Password Reset",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read the reset code from URL params.
+        - If code is missing, show an invalid-link state.
+        - Before rendering the form, verify the code via \`stackApp.verifyPasswordResetCode(code)\`.
+          - \`VerificationCodeNotFound\` => invalid-link state.
+          - \`VerificationCodeExpired\` => expired-link state.
+          - \`VerificationCodeAlreadyUsed\` => used-link state.
+          - Any other error => throw.
+        - If code is valid, render reset form:
+          - New password + repeated password.
+          - Validate password strength and ensure repeated password matches.
+          - Submit calls \`stackApp.resetPassword({ password, code })\`.
+        - If reset succeeds, show success state.
+        - If reset fails, show error state with guidance to request a new link.
+      `,
+      reactExample: deindent`
+        export default function CustomPasswordResetPage(props: { searchParams: Record<string, string> }) {
+          const stackApp = useStackApp();
+          const code = props.searchParams.code;
+          const [password, setPassword] = useState("");
+          const [passwordRepeat, setPasswordRepeat] = useState("");
+          const [done, setDone] = useState(false);
+          const [failed, setFailed] = useState(false);
+          const [formError, setFormError] = useState<string | null>(null);
+
+          const cachedVerifyPasswordResetCode = cacheFunction(async (app: StackClientApp<true>, codeToVerify: string) => {
+            return await app.verifyPasswordResetCode(codeToVerify);
+          });
+
+          if (!code) {
+            return <MessageCard title="Invalid Password Reset Link" />;
+          }
+
+          const verificationResult = use(cachedVerifyPasswordResetCode(stackApp, code));
+          if (verificationResult.status === "error") {
+            if (KnownErrors.VerificationCodeNotFound.isInstance(verificationResult.error)) return <MessageCard title="Invalid Password Reset Link" />;
+            if (KnownErrors.VerificationCodeExpired.isInstance(verificationResult.error)) return <MessageCard title="Expired Password Reset Link" />;
+            if (KnownErrors.VerificationCodeAlreadyUsed.isInstance(verificationResult.error)) return <MessageCard title="Used Password Reset Link" />;
+            throw verificationResult.error;
+          }
+
+          if (done) return <MessageCard title="Your password has been reset" />;
+          if (failed) return <MessageCard title="Failed to reset password" />;
+
+          return (
+            <form onSubmit={async (e) => {
+              e.preventDefault();
+              setFormError(null);
+
+              if (password !== passwordRepeat) {
+                setFormError("Passwords do not match");
+                return;
+              }
+
+              const result = await stackApp.resetPassword({ password, code });
+              if (result.status === "error") setFailed(true);
+              else setDone(true);
+            }}>
+              <Label htmlFor="password">New Password</Label>
+              <PasswordInput id="password" value={password} onChange={(e) => setPassword(e.target.value)} />
+
+              <Label htmlFor="password-repeat">Repeat New Password</Label>
+              <PasswordInput id="password-repeat" value={passwordRepeat} onChange={(e) => setPasswordRepeat(e.target.value)} />
+
+              {formError ? <Typography variant="destructive">{formError}</Typography> : null}
+              <Button type="submit">Reset Password</Button>
+            </form>
+          );
+        }
+      `,
+      notes: deindent`
+        - Verify the reset code before rendering the form so users immediately get the right state for invalid/expired/used links.
+      `,
+      versions: {},
+    }),
+    forgotPassword: createCustomPagePrompt({
+      key: "forgotPassword",
+      title: "Forgot Password",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - If a user is already signed in, show a signed-in state instead of the reset form.
+        - If user is signed out:
+          - Render a forgot-password form with email input.
+          - Submit calls \`stackApp.sendForgotPasswordEmail(email)\`.
+          - On success, switch to an email-sent confirmation state.
+        - Provide a link back to sign-in.
+      `,
+      reactExample: deindent`
+        export default function CustomForgotPasswordPage() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "return-null" });
+          const [email, setEmail] = useState("");
+          const [sent, setSent] = useState(false);
+          const [error, setError] = useState<string | null>(null);
+
+          if (user) {
+            return <MessageCard title="You are already signed in." />;
+          }
+
+          if (sent) {
+            return <MessageCard title="Email sent" />;
+          }
+
+          return (
+            <div>
+              <Typography type="h2">Reset Your Password</Typography>
+              <Typography>
+                {"Don't need to reset? "}
+                <a href={stackApp.urls.signIn}>Sign in</a>
+              </Typography>
+
+              <form onSubmit={async (e) => {
+                e.preventDefault();
+                setError(null);
+                if (!email) {
+                  setError("Please enter your email");
+                  return;
+                }
+                await stackApp.sendForgotPasswordEmail(email);
+                setSent(true);
+              }}>
+                <Label htmlFor="email">Your Email</Label>
+                <Input id="email" type="email" value={email} onChange={(e) => setEmail(e.target.value)} />
+                {error ? <Typography variant="destructive">{error}</Typography> : null}
+                <Button type="submit">Send Email</Button>
+              </form>
+            </div>
+          );
+        }
+      `,
+      notes: deindent`
+        - Keep the success state explicit so users know the request succeeded and do not repeatedly re-submit.
+      `,
+      versions: {},
+    }),
+    oauthCallback: createCustomPagePrompt({
+      key: "oauthCallback",
+      title: "OAuth Callback",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Trigger OAuth callback handling once when the page loads by calling \`stackApp.callOAuthCallback()\`.
+        - If callback handler already redirected, keep a neutral loading state.
+        - If callback handler did not redirect, redirect to sign-in with \`stackApp.redirectToSignIn({ noRedirectBack: true })\`.
+        - If callback processing throws, capture/show a useful error state.
+        - Provide a fallback "click here" link in case automatic redirect does not happen.
+      `,
+      reactExample: deindent`
+        export default function CustomOAuthCallbackPage() {
+          const stackApp = useStackApp();
+          const called = useRef(false);
+          const [error, setError] = useState<unknown>(null);
+          const [showRedirectLink, setShowRedirectLink] = useState(false);
+
+          if (!called.current) {
+            called.current = true;
+            void runAsynchronously(async () => {
+              setTimeout(() => setShowRedirectLink(true), 3000);
+              try {
+                const hasRedirected = await stackApp.callOAuthCallback();
+                if (!hasRedirected) {
+                  await stackApp.redirectToSignIn({ noRedirectBack: true });
+                }
+              } catch (e) {
+                setError(e);
+              }
+            });
+          }
+
+          return (
+            <div>
+              <Spinner />
+              {showRedirectLink ? (
+                <Typography>
+                  {"If you are not redirected automatically, "}
+                  <a href={stackApp.urls.home}>click here</a>
+                </Typography>
+              ) : null}
+              {error ? <pre>{JSON.stringify(error, null, 2)}</pre> : null}
+            </div>
+          );
+        }
+      `,
+      notes: deindent`
+        - This page is mainly control flow. Keep user-visible UI minimal while still providing a reliable fallback path.
+      `,
+      versions: {},
+    }),
+    magicLinkCallback: createCustomPagePrompt({
+      key: "magicLinkCallback",
+      title: "Magic Link Callback",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - If a user is already signed in, show a signed-in state.
+        - Read the magic-link code from URL params.
+        - If code is missing, show invalid-link state.
+        - If code exists, show a confirmation step:
+          - Confirm action calls \`stackApp.signInWithMagicLink(code)\`.
+          - Cancel action calls \`stackApp.redirectToHome()\`.
+        - Handle callback result:
+          - \`VerificationCodeNotFound\` => invalid-link state.
+          - \`VerificationCodeExpired\` => expired-link state.
+          - \`VerificationCodeAlreadyUsed\` => already-used state.
+          - Any other error => throw.
+        - On success, show a success state with "Go home".
+      `,
+      reactExample: deindent`
+        export default function CustomMagicLinkCallbackPage(props: { searchParams?: Record<string, string> }) {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "return-null" });
+          const [result, setResult] = useState<Awaited<ReturnType<typeof stackApp.signInWithMagicLink>> | null>(null);
+          const code = props.searchParams?.code;
+
+          if (user) return <MessageCard title="You are already signed in." />;
+          if (!code) return <MessageCard title="Invalid Magic Link" />;
+
+          if (!result) {
+            return (
+              <MessageCard
+                title="Do you want to sign in?"
+                primaryButtonText="Sign in"
+                primaryAction={async () => setResult(await stackApp.signInWithMagicLink(code))}
+                secondaryButtonText="Cancel"
+                secondaryAction={async () => await stackApp.redirectToHome()}
+              />
+            );
+          }
+
+          if (result.status === "error") {
+            if (KnownErrors.VerificationCodeNotFound.isInstance(result.error)) return <MessageCard title="Invalid Magic Link" />;
+            if (KnownErrors.VerificationCodeExpired.isInstance(result.error)) return <MessageCard title="Expired Magic Link" />;
+            if (KnownErrors.VerificationCodeAlreadyUsed.isInstance(result.error)) return <MessageCard title="Magic Link Already Used" />;
+            throw result.error;
+          }
+
+          return (
+            <MessageCard
+              title="Signed in successfully!"
+              primaryButtonText="Go home"
+              primaryAction={async () => await stackApp.redirectToHome()}
+            />
+          );
+        }
+      `,
+      notes: deindent`
+        - Keep invalid/expired/already-used states distinct so users understand whether they should request a new link.
+      `,
+      versions: {},
+    }),
+    accountSettings: createCustomPagePrompt({
+      key: "accountSettings",
+      title: "Account Settings",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Require an authenticated user (\`useUser({ or: "redirect" })\`) and project config (\`stackApp.useProject()\`).
+        - Render top-level pages in this order:
+          - **My Profile**
+          - **Emails & Auth**
+          - **Notifications**
+          - **Active Sessions**
+          - **API Keys** (only if \`project.config.allowUserApiKeys\`)
+          - **Payments** (only if user/team has billable products)
+          - **Settings**
+        - Conditionally include sections:
+          - API keys page only when \`project.config.allowUserApiKeys\` is true.
+          - Payments page only when user has products or at least one team has products.
+        - Render team-related entries:
+          - Show a "Teams" divider when teams exist or team creation is enabled.
+          - For each team in \`user.useTeams()\`, render a team page with these sections:
+            - Team user profile (override your own display name in this team) via \`user.useTeamProfile(team).update(...)\`.
+            - Team profile image (\`team.update({ profileImageUrl })\`) only if \`user.usePermission(team, "$update_team")\`.
+            - Team display name (\`team.update({ displayName })\`) only if \`user.usePermission(team, "$update_team")\`.
+            - Member list (\`team.useUsers()\`) when \`$read_members\` or \`$invite_members\` permission exists.
+            - Invite member form (\`team.inviteUser({ email })\`) when \`$invite_members\`; show outstanding invitations (\`team.useInvitations()\`) and revoke invitation action when \`$remove_members\`.
+            - Team API keys (\`team.useApiKeys()\`, \`team.createApiKey(...)\`) only if \`user.usePermission(team, "$manage_api_keys")\` and \`project.config.allowTeamApiKeys\`.
+            - Leave team confirmation flow using \`user.leaveTeam(team)\`.
+          - Include "Create a team" page when \`project.config.clientTeamCreationEnabled\` and submit via \`user.createTeam({ displayName })\`.
+        - **My Profile** page requirements:
+          - Editable display name (\`user.update({ displayName })\`).
+          - Editable profile image (\`user.update({ profileImageUrl })\`).
+        - **Emails & Auth** page requirements (render all sub-sections in this order):
+          - **Emails**:
+            - List email contact channels from \`user.useContactChannels()\`.
+            - Add email: \`user.createContactChannel({ type: "email", value, usedForAuth: false })\`.
+            - Actions per email (with permission/state guards): send verification email, set primary (only if verified), toggle used-for-sign-in, remove email.
+            - Prevent removing/disabling the last sign-in email.
+          - **Password** (only if \`project.config.credentialEnabled\`):
+            - If user already has password: update flow via \`user.updatePassword({ oldPassword, newPassword })\`.
+            - If user has no password: set flow via \`user.setPassword({ password })\`.
+            - Require a sign-in email before allowing set/update.
+            - Validate password quality via \`getPasswordError()\`.
+          - **Passkey** (only if \`project.config.passkeyEnabled\`):
+            - Register passkey via \`user.registerPasskey()\`.
+            - Disable passkey via \`user.update({ passkeyAuthEnabled: false })\`.
+            - Require a verified sign-in email to enable.
+            - Prevent disabling if passkey is currently the only sign-in method.
+          - **OTP sign-in** (only if \`project.config.magicLinkEnabled\`):
+            - Toggle OTP via \`user.update({ otpAuthEnabled: true | false })\`.
+            - Require a verified sign-in email to enable.
+            - Prevent disabling if OTP is currently the only sign-in method.
+          - **MFA (TOTP)**:
+            - Enable by generating secret + QR code, verify initial code, then persist secret via \`user.update({ totpMultiFactorSecret: secret })\`.
+            - Disable via \`user.update({ totpMultiFactorSecret: null })\`.
+        - **Notifications** page requirements:
+          - Render categories from \`user.useNotificationCategories()\`.
+          - Toggle each category via \`category.setEnabled(value)\`.
+          - Show non-disableable categories as locked.
+        - **Active Sessions** page requirements:
+          - Load sessions via \`user.getActiveSessions()\`.
+          - Show current vs other session, IP, location, created-at/last-used.
+          - Revoke single session via \`user.revokeSession(sessionId)\`.
+          - Revoke all non-current sessions with a confirmation step.
+        - **API Keys** page requirements:
+          - List keys via \`user.useApiKeys()\`.
+          - Create via \`user.createApiKey(options)\`; show first-view key secret once.
+          - Support revoke/update operations from table/actions.
+        - **Payments** page requirements:
+          - Support personal/team customer context switch.
+          - Render current default payment method and allow updating it via setup-intent flow.
+          - Render active plans/products with cancel and switch-plan actions.
+          - Render recent invoices and link to hosted invoice URLs when available.
+        - **Settings** page requirements:
+          - Sign-out section (\`user.signOut()\`).
+          - Delete-account section (only if \`project.config.clientUserDeletionEnabled\`) with destructive confirmation and \`user.delete()\` then redirect home.
+        - Support extension points (for example \`extraItems\`) for custom sections.
+        - Use loading/skeleton states for async sections.
+      `,
+      reactExample: deindent`
+        function ProfileSection() {
+          const user = useUser({ or: "redirect" });
+          const [displayName, setDisplayName] = useState(user.displayName ?? "");
+          const [profileImageUrl, setProfileImageUrl] = useState(user.profileImageUrl ?? "");
+
+          return (
+            <div>
+              <Typography type="h3">My Profile</Typography>
+              <Label htmlFor="display-name">Display name</Label>
+              <Input id="display-name" value={displayName} onChange={(e) => setDisplayName(e.target.value)} />
+              <Label htmlFor="profile-image-url">Profile image URL</Label>
+              <Input id="profile-image-url" value={profileImageUrl} onChange={(e) => setProfileImageUrl(e.target.value)} />
+              <div className="flex gap-2 mt-2">
+                <Button onClick={async () => await user.update({ displayName })}>Save display name</Button>
+                <Button variant="secondary" onClick={async () => await user.update({ profileImageUrl })}>Save profile image</Button>
+              </div>
+            </div>
+          );
+        }
+
+        function EmailsSection() {
+          const user = useUser({ or: "redirect" });
+          const [newEmail, setNewEmail] = useState("");
+          const contactChannels = user.useContactChannels().filter((x) => x.type === "email");
+          const usedForAuthCount = contactChannels.filter((x) => x.usedForAuth).length;
+
+          return (
+            <div className="space-y-3">
+              <Typography type="h4">Emails</Typography>
+              <form onSubmit={async (e) => {
+                e.preventDefault();
+                if (!newEmail) return;
+                await user.createContactChannel({ type: "email", value: newEmail, usedForAuth: false });
+                setNewEmail("");
+              }}>
+                <Input value={newEmail} onChange={(e) => setNewEmail(e.target.value)} placeholder="Enter email" />
+                <Button type="submit" className="mt-2">Add email</Button>
+              </form>
+
+              {contactChannels.map((channel) => {
+                const isLastAuthEmail = channel.usedForAuth && usedForAuthCount === 1;
+                return (
+                  <div key={channel.id} className="border rounded p-3 space-y-2">
+                    <Typography>{channel.value}</Typography>
+                    <div className="flex gap-2 flex-wrap">
+                      {!channel.isVerified ? <Button variant="secondary" onClick={async () => await channel.sendVerificationEmail()}>Send verification email</Button> : null}
+                      {channel.isVerified && !channel.isPrimary ? <Button variant="secondary" onClick={async () => await channel.update({ isPrimary: true })}>Set as primary</Button> : null}
+                      {channel.isVerified && !channel.usedForAuth ? <Button variant="secondary" onClick={async () => await channel.update({ usedForAuth: true })}>Use for sign-in</Button> : null}
+                      {channel.usedForAuth ? <Button variant="secondary" disabled={isLastAuthEmail} onClick={async () => await channel.update({ usedForAuth: false })}>Stop using for sign-in</Button> : null}
+                      <Button variant="destructive" disabled={isLastAuthEmail} onClick={async () => await channel.delete()}>Remove</Button>
+                    </div>
+                  </div>
+                );
+              })}
+            </div>
+          );
+        }
+
+        function PasswordSection() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "redirect" });
+          const project = stackApp.useProject();
+          const [oldPassword, setOldPassword] = useState("");
+          const [newPassword, setNewPassword] = useState("");
+          const [newPasswordRepeat, setNewPasswordRepeat] = useState("");
+          const hasAuthEmail = user.useContactChannels().some((x) => x.type === "email" && x.usedForAuth);
+
+          if (!project.config.credentialEnabled) return null;
+
+          return (
+            <div className="space-y-2">
+              <Typography type="h4">Password</Typography>
+              {!hasAuthEmail ? <Typography variant="secondary">To set a password, please add a sign-in email.</Typography> : null}
+              {user.hasPassword ? <Input type="password" value={oldPassword} onChange={(e) => setOldPassword(e.target.value)} placeholder="Old password" /> : null}
+              <Input type="password" value={newPassword} onChange={(e) => setNewPassword(e.target.value)} placeholder="New password" />
+              <Input type="password" value={newPasswordRepeat} onChange={(e) => setNewPasswordRepeat(e.target.value)} placeholder="Repeat new password" />
+              <Button onClick={async () => {
+                if (newPassword !== newPasswordRepeat) return;
+                const passwordError = getPasswordError(newPassword);
+                if (passwordError) return;
+                if (user.hasPassword) await user.updatePassword({ oldPassword, newPassword });
+                else await user.setPassword({ password: newPassword });
+              }}>
+                {user.hasPassword ? "Update password" : "Set password"}
+              </Button>
+            </div>
+          );
+        }
+
+        function PasskeySection() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "redirect" });
+          const project = stackApp.useProject();
+          const hasVerifiedAuthEmail = user.useContactChannels().some((x) => x.type === "email" && x.isVerified && x.usedForAuth);
+          const isOnlyAuthMethod = user.passkeyAuthEnabled && !user.hasPassword && user.oauthProviders.length === 0 && !user.otpAuthEnabled;
+
+          if (!project.config.passkeyEnabled) return null;
+
+          return (
+            <div className="space-y-2">
+              <Typography type="h4">Passkey</Typography>
+              {!hasVerifiedAuthEmail ? <Typography variant="secondary">Add a verified sign-in email before enabling passkey sign-in.</Typography> : null}
+              {!user.passkeyAuthEnabled && hasVerifiedAuthEmail ? <Button onClick={async () => await user.registerPasskey()}>Add new passkey</Button> : null}
+              {user.passkeyAuthEnabled ? (
+                <Button
+                  variant="secondary"
+                  disabled={isOnlyAuthMethod}
+                  onClick={async () => await user.update({ passkeyAuthEnabled: false })}
+                >
+                  Disable passkey
+                </Button>
+              ) : null}
+            </div>
+          );
+        }
+
+        function OtpSection() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "redirect" });
+          const project = stackApp.useProject();
+          const hasVerifiedAuthEmail = user.useContactChannels().some((x) => x.type === "email" && x.isVerified && x.usedForAuth);
+          const isOnlyAuthMethod = user.otpAuthEnabled && !user.hasPassword && user.oauthProviders.length === 0 && !user.passkeyAuthEnabled;
+
+          if (!project.config.magicLinkEnabled) return null;
+
+          return (
+            <div className="space-y-2">
+              <Typography type="h4">OTP sign-in</Typography>
+              {!hasVerifiedAuthEmail ? <Typography variant="secondary">Add a verified sign-in email before enabling OTP sign-in.</Typography> : null}
+              {!user.otpAuthEnabled && hasVerifiedAuthEmail ? <Button variant="secondary" onClick={async () => await user.update({ otpAuthEnabled: true })}>Enable OTP</Button> : null}
+              {user.otpAuthEnabled ? <Button variant="secondary" disabled={isOnlyAuthMethod} onClick={async () => await user.update({ otpAuthEnabled: false })}>Disable OTP</Button> : null}
+            </div>
+          );
+        }
+
+        function MfaSection() {
+          const user = useUser({ or: "redirect" });
+          const [generatedSecret, setGeneratedSecret] = useState<Uint8Array | null>(null);
+          const [mfaCode, setMfaCode] = useState("");
+
+          return (
+            <div className="space-y-2">
+              <Typography type="h4">Multi-factor authentication</Typography>
+              {!user.isMultiFactorRequired && !generatedSecret ? (
+                <Button variant="secondary" onClick={async () => {
+                  const secret = generateRandomValues(new Uint8Array(20));
+                  setGeneratedSecret(secret);
+                }}>
+                  Enable MFA
+                </Button>
+              ) : null}
+              {generatedSecret ? (
+                <div className="space-y-2">
+                  <Typography>Show generated QR code here and ask for the first code.</Typography>
+                  <Input value={mfaCode} onChange={(e) => setMfaCode(e.target.value)} placeholder="123456" />
+                  <Button onClick={async () => {
+                    if (!verifyTOTP(generatedSecret, 30, 6, mfaCode)) return;
+                    await user.update({ totpMultiFactorSecret: generatedSecret });
+                    setGeneratedSecret(null);
+                    setMfaCode("");
+                  }}>
+                    Confirm MFA setup
+                  </Button>
+                </div>
+              ) : null}
+              {user.isMultiFactorRequired ? <Button variant="secondary" onClick={async () => await user.update({ totpMultiFactorSecret: null })}>Disable MFA</Button> : null}
+            </div>
+          );
+        }
+
+        function EmailsAndAuthSection() {
+          return (
+            <div>
+              <Typography type="h3">Emails & Auth</Typography>
+              <EmailsSection />
+              <PasswordSection />
+              <PasskeySection />
+              <OtpSection />
+              <MfaSection />
+            </div>
+          );
+        }
+
+        function NotificationsSection() {
+          return (
+            <div>
+              <Typography type="h3">Notifications</Typography>
+              <Typography>Render notification preference controls here.</Typography>
+            </div>
+          );
+        }
+
+        function ActiveSessionsSection() {
+          const user = useUser({ or: "redirect" });
+          const [sessions, setSessions] = useState<ActiveSession[]>([]);
+
+          return (
+            <div>
+              <Typography type="h3">Active Sessions</Typography>
+              <Button variant="secondary" onClick={async () => setSessions(await user.getActiveSessions())}>Refresh sessions</Button>
+              {sessions.map((session) => (
+                <div key={session.id} className="border rounded p-2 mt-2">
+                  <Typography>{session.isCurrentSession ? "Current Session" : "Other Session"}</Typography>
+                  <Typography variant="secondary">{session.geoInfo?.ip ?? "-"} / {session.geoInfo?.cityName ?? "Unknown"}</Typography>
+                  {!session.isCurrentSession ? <Button variant="destructive" onClick={async () => await user.revokeSession(session.id)}>Revoke</Button> : null}
+                </div>
+              ))}
+              <Button
+                variant="secondary"
+                onClick={async () => {
+                  const latestSessions = await user.getActiveSessions();
+                  await Promise.all(latestSessions.filter((x) => !x.isCurrentSession).map((x) => user.revokeSession(x.id)));
+                  setSessions(await user.getActiveSessions());
+                }}
+              >
+                Revoke all other sessions
+              </Button>
+            </div>
+          );
+        }
+
+        function ApiKeysSection() {
+          const user = useUser({ or: "redirect" });
+          const [newlyCreated, setNewlyCreated] = useState<ApiKey<"user", true> | null>(null);
+          const apiKeys = user.useApiKeys();
+
+          return (
+            <div>
+              <Typography type="h3">API Keys</Typography>
+              <Button onClick={async () => {
+                const created = await user.createApiKey({ description: "New key" });
+                setNewlyCreated(created);
+              }}>
+                Create API key
+              </Button>
+              {newlyCreated ? <Typography variant="secondary">Copy this key now: {newlyCreated.value}</Typography> : null}
+              {apiKeys.map((key) => (
+                <div key={key.id} className="border rounded p-2 mt-2 flex justify-between">
+                  <Typography>{key.description ?? key.id}</Typography>
+                  <Button variant="destructive" onClick={async () => await key.revoke()}>Revoke</Button>
+                </div>
+              ))}
+            </div>
+          );
+        }
+
+        function PaymentsSection(props: { customer: any, customerType: "user" | "team" }) {
+          const billing = props.customer.useBilling();
+          const products = props.customer.useProducts().filter((p: any) => p.customerType === props.customerType);
+          const invoices = props.customer.useInvoices({ limit: 10 });
+
+          return (
+            <div>
+              <Typography type="h3">Payments</Typography>
+              <Typography>Default payment method: {billing.defaultPaymentMethod ? "set" : "not set"}</Typography>
+              <Button onClick={async () => {
+                const setup = await props.customer.createPaymentMethodSetupIntent();
+                await props.customer.setDefaultPaymentMethodFromSetupIntent(setup.clientSecret);
+              }}>
+                Update payment method
+              </Button>
+
+              <Typography type="h4">Active plans</Typography>
+              {products.map((product: any) => (
+                <div key={product.id ?? product.displayName} className="border rounded p-2 mt-2">
+                  <Typography>{product.displayName}</Typography>
+                  {product.subscription?.isCancelable ? (
+                    <Button variant="secondary" onClick={async () => {
+                      await useStackApp().cancelSubscription({
+                        ...(props.customerType === "team" ? { teamId: props.customer.id } : {}),
+                        productId: product.id ?? "",
+                        subscriptionId: product.subscription?.subscriptionId ?? undefined,
+                      });
+                    }}>
+                      Cancel subscription
+                    </Button>
+                  ) : null}
+                </div>
+              ))}
+
+              <Typography type="h4">Invoices</Typography>
+              {invoices.map((invoice: any, index: number) => (
+                <div key={index} className="flex justify-between border rounded p-2 mt-2">
+                  <Typography>{invoice.status}</Typography>
+                  {invoice.hostedInvoiceUrl ? <a href={invoice.hostedInvoiceUrl} target="_blank" rel="noreferrer">View</a> : <Typography variant="secondary">Unavailable</Typography>}
+                </div>
+              ))}
+            </div>
+          );
+        }
+
+        function TeamSection(props: { team: { displayName: string } }) {
+          const user = useUser({ or: "redirect" });
+          const stackApp = useStackApp();
+          const project = stackApp.useProject();
+          const team = user.useTeam((props.team as any).id);
+
+          if (!team) return null;
+
+          const canUpdateTeam = user.usePermission(team, "$update_team");
+          const canReadMembers = user.usePermission(team, "$read_members");
+          const canInviteMembers = user.usePermission(team, "$invite_members");
+          const canRemoveMembers = user.usePermission(team, "$remove_members");
+          const canManageApiKeys = user.usePermission(team, "$manage_api_keys");
+
+          return (
+            <div className="space-y-3">
+              <Typography type="h3">{props.team.displayName}</Typography>
+              <Typography type="h4">Team user profile</Typography>
+              <Button variant="secondary" onClick={async () => {
+                const profile = user.useTeamProfile(team);
+                await profile.update({ displayName: "Updated team display name for current user" });
+              }}>
+                Save team user display name
+              </Button>
+
+              {canUpdateTeam ? (
+                <>
+                  <Typography type="h4">Team profile image</Typography>
+                  <Button variant="secondary" onClick={async () => await team.update({ profileImageUrl: "https://example.com/team.png" })}>
+                    Save team profile image URL
+                  </Button>
+
+                  <Typography type="h4">Team display name</Typography>
+                  <Button variant="secondary" onClick={async () => await team.update({ displayName: team.displayName + " (updated)" })}>
+                    Save team display name
+                  </Button>
+                </>
+              ) : null}
+
+              {(canReadMembers || canInviteMembers) ? (
+                <>
+                  <Typography type="h4">Members</Typography>
+                  {team.useUsers().map((member) => (
+                    <Typography key={member.id}>{member.teamProfile.displayName ?? "No display name set"}</Typography>
+                  ))}
+                </>
+              ) : null}
+
+              {canInviteMembers ? (
+                <div className="space-y-2">
+                  <Typography type="h4">Invite member</Typography>
+                  <Button variant="secondary" onClick={async () => await team.inviteUser({ email: "new-member@example.com" })}>
+                    Invite user
+                  </Button>
+                  {canReadMembers ? team.useInvitations().map((invitation) => (
+                    <div key={invitation.id} className="flex gap-2 items-center">
+                      <Typography>{invitation.recipientEmail}</Typography>
+                      {canRemoveMembers ? <Button variant="destructive" onClick={async () => await invitation.revoke()}>Revoke invitation</Button> : null}
+                    </div>
+                  )) : null}
+                </div>
+              ) : null}
+
+              {(canManageApiKeys && project.config.allowTeamApiKeys) ? (
+                <div>
+                  <Typography type="h4">Team API Keys</Typography>
+                  <Button variant="secondary" onClick={async () => await team.createApiKey({ description: "Team key" })}>
+                    Create team API key
+                  </Button>
+                </div>
+              ) : null}
+
+              <div>
+                <Typography type="h4">Leave team</Typography>
+                <Button variant="destructive" onClick={async () => {
+                  await user.leaveTeam(team);
+                  window.location.reload();
+                }}>
+                  Leave team
+                </Button>
+              </div>
+            </div>
+          );
+        }
+
+        function CreateTeamSection() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "redirect" });
+          const project = stackApp.useProject();
+          const navigate = stackApp.useNavigate();
+          const [displayName, setDisplayName] = useState("");
+
+          if (!project.config.clientTeamCreationEnabled) {
+            return <Typography variant="secondary">Team creation is not enabled.</Typography>;
+          }
+
+          return (
+            <div>
+              <Typography type="h3">Create a team</Typography>
+              <Input value={displayName} onChange={(e) => setDisplayName(e.target.value)} placeholder="Team name" />
+              <Button onClick={async () => {
+                const team = await user.createTeam({ displayName });
+                navigate("#team-" + team.id);
+              }}>
+                Create
+              </Button>
+            </div>
+          );
+        }
+
+        function SettingsSection() {
+          const user = useUser({ or: "redirect" });
+          return (
+            <div>
+              <Typography type="h3">Settings</Typography>
+              <Button onClick={async () => await user.signOut()}>Sign out</Button>
+              <Button variant="destructive" onClick={async () => {
+                await user.delete();
+                await useStackApp().redirectToHome();
+              }}>
+                Delete account
+              </Button>
+            </div>
+          );
+        }
+
+        export default function CustomAccountSettingsPage(props: { extraItems?: { id: string, title: string, content: React.ReactNode }[] }) {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "redirect" });
+          const project = stackApp.useProject();
+          const teams = user.useTeams();
+          const [activeId, setActiveId] = useState("profile");
+          const [selectedPaymentTeamId, setSelectedPaymentTeamId] = useState<string | null>(null);
+          const [paymentsReady, setPaymentsReady] = useState(false);
+          const [userHasProducts, setUserHasProducts] = useState(false);
+          const [teamIdsWithProducts, setTeamIdsWithProducts] = useState<Set<string>>(new Set());
+
+          if (!paymentsReady) {
+            void runAsynchronously(async () => {
+              const userProducts = await user.listProducts({ limit: 1 });
+              const teamsWithProducts = await Promise.all(
+                teams.map(async (team) => {
+                  const isAdmin = await user.hasPermission(team, "team_admin");
+                  if (!isAdmin) return null;
+                  const teamProducts = await team.listProducts({ limit: 1 });
+                  const hasTeamProducts = teamProducts.some((product) => product.customerType === "team");
+                  return hasTeamProducts ? team.id : null;
+                })
+              );
+              setUserHasProducts(userProducts.some((product) => product.customerType === "user"));
+              setTeamIdsWithProducts(new Set(teamsWithProducts.filter((id): id is string => id !== null)));
+              setPaymentsReady(true);
+            });
+          }
+
+          const teamsWithProducts = teams.filter((team) => teamIdsWithProducts.has(team.id));
+          const shouldShowPayments = paymentsReady && (userHasProducts || teamsWithProducts.length > 0);
+          const selectedPaymentTeam = selectedPaymentTeamId
+            ? teams.find((team) => team.id === selectedPaymentTeamId) ?? null
+            : null;
+          const paymentCustomer = selectedPaymentTeam ?? (userHasProducts ? user : null);
+          const paymentCustomerType = selectedPaymentTeam ? "team" : "user";
+
+          const items = [
+            { id: "profile", title: "My Profile", content: <ProfileSection /> },
+            { id: "auth", title: "Emails & Auth", content: <EmailsAndAuthSection /> },
+            { id: "notifications", title: "Notifications", content: <NotificationsSection /> },
+            { id: "sessions", title: "Active Sessions", content: <ActiveSessionsSection /> },
+            ...(project.config.allowUserApiKeys ? [{ id: "api-keys", title: "API Keys", content: <ApiKeysSection /> }] : []),
+            ...(shouldShowPayments && paymentCustomer ? [{
+              id: "payments",
+              title: "Payments",
+              content: (
+                <div className="space-y-2">
+                  {teamsWithProducts.length > 0 ? (
+                    <Select value={selectedPaymentTeamId ?? "__personal__"} onValueChange={(value) => setSelectedPaymentTeamId(value === "__personal__" ? null : value)}>
+                      <SelectTrigger className="w-[240px]"><SelectValue /></SelectTrigger>
+                      <SelectContent>
+                        {userHasProducts ? <SelectItem value="__personal__">Personal</SelectItem> : null}
+                        {teamsWithProducts.map((team) => <SelectItem key={team.id} value={team.id}>{team.displayName}</SelectItem>)}
+                      </SelectContent>
+                    </Select>
+                  ) : null}
+                  <PaymentsSection customer={paymentCustomer} customerType={paymentCustomerType} />
+                </div>
+              ),
+            }] : []),
+            ...(props.extraItems ?? []),
+            ...(teams.length > 0 || project.config.clientTeamCreationEnabled ? [{ id: "teams-divider", title: "Teams", content: null }] : []),
+            ...teams.map((team) => ({ id: "team-" + team.id, title: team.displayName, content: <TeamSection team={team} /> })),
+            ...(project.config.clientTeamCreationEnabled ? [{ id: "team-create", title: "Create a team", content: <CreateTeamSection /> }] : []),
+            { id: "settings", title: "Settings", content: <SettingsSection /> },
+          ];
+
+          const activeItem = items.find((item) => item.id === activeId) ?? items[0];
+
+          return (
+            <div>
+              <Typography type="h2">Account Settings</Typography>
+              <div style={{ display: "grid", gridTemplateColumns: "240px 1fr", gap: 16 }}>
+                <div style={{ display: "flex", flexDirection: "column", gap: 8 }}>
+                  {items.map((item) => (
+                    <Button key={item.id} variant={item.id === activeId ? "default" : "secondary"} onClick={() => setActiveId(item.id)}>
+                      {item.title}
+                    </Button>
+                  ))}
+                </div>
+                <div>{activeItem.content}</div>
+              </div>
+            </div>
+          );
+        }
+      `,
+      notes: deindent`
+        - Keep section boundaries explicit and low-coupled so teams can evolve independently without rewriting the full page.
+      `,
+      versions: {},
+    }),
+    teamInvitation: createCustomPagePrompt({
+      key: "teamInvitation",
+      title: "Team Invitation",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read invitation code from URL params.
+        - If code is missing, show invalid-link state.
+        - Resolve current user with \`includeRestricted: true\`.
+          - If user is signed out, show a sign-in prompt with cancel path.
+          - If user is restricted, route user to onboarding first.
+        - Verify invitation code via \`stackApp.verifyTeamInvitationCode(code)\`:
+          - Not found => invalid-link state.
+          - Expired => expired-link state.
+          - Already used => used-link state.
+          - Other errors => throw.
+        - If code is valid, load invitation details via \`stackApp.getTeamInvitationDetails(code)\`.
+        - Render invitation actions:
+          - Join => \`stackApp.acceptTeamInvitation(code)\`.
+          - Ignore => \`stackApp.redirectToHome()\`.
+        - On successful join, show success state and allow navigation home.
+      `,
+      reactExample: deindent`
+        export default function CustomTeamInvitationPage(props: { searchParams: Record<string, string> }) {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "return-null", includeRestricted: true });
+          const code = props.searchParams.code;
+          const [accepted, setAccepted] = useState(false);
+          const [details, setDetails] = useState<null | { teamDisplayName: string }>(null);
+          const [pageError, setPageError] = useState<null | "invalid" | "expired" | "used" | "unknown">(null);
+
+          if (!code) return <MessageCard title="Invalid Team Invitation Link" />;
+
+          if (!user) {
+            return (
+              <MessageCard
+                title="Team invitation"
+                primaryButtonText="Sign in"
+                primaryAction={async () => await stackApp.redirectToSignIn()}
+                secondaryButtonText="Cancel"
+                secondaryAction={async () => await stackApp.redirectToHome()}
+              />
+            );
+          }
+
+          if (user.isRestricted) {
+            return (
+              <MessageCard
+                title="Complete your account setup"
+                primaryButtonText="Complete setup"
+                primaryAction={async () => await stackApp.redirectToOnboarding()}
+              />
+            );
+          }
+
+          if (pageError === "invalid") return <MessageCard title="Invalid Team Invitation Link" />;
+          if (pageError === "expired") return <MessageCard title="Expired Team Invitation Link" />;
+          if (pageError === "used") return <MessageCard title="Used Team Invitation Link" />;
+          if (pageError === "unknown") return <PredefinedMessageCard type="unknownError" />;
+
+          if (!details) {
+            return (
+              <MessageCard
+                title="Team invitation"
+                primaryButtonText="Check invitation"
+                primaryAction={async () => {
+                  const verification = await stackApp.verifyTeamInvitationCode(code);
+                  if (verification.status === "error") {
+                    if (KnownErrors.VerificationCodeNotFound.isInstance(verification.error)) {
+                      setPageError("invalid");
+                      return;
+                    }
+                    if (KnownErrors.VerificationCodeExpired.isInstance(verification.error)) {
+                      setPageError("expired");
+                      return;
+                    }
+                    if (KnownErrors.VerificationCodeAlreadyUsed.isInstance(verification.error)) {
+                      setPageError("used");
+                      return;
+                    }
+                    throw verification.error;
+                  }
+
+                  const invitationDetails = await stackApp.getTeamInvitationDetails(code);
+                  if (invitationDetails.status === "error") {
+                    setPageError("unknown");
+                    return;
+                  }
+
+                  setDetails(invitationDetails.data);
+                }}
+                secondaryButtonText="Cancel"
+                secondaryAction={async () => await stackApp.redirectToHome()}
+              >
+                We will verify your invitation before showing the join action.
+              </MessageCard>
+            );
+          }
+
+          if (accepted) {
+            return <MessageCard title="Team invitation">You have successfully joined {details.teamDisplayName}</MessageCard>;
+          }
+
+          return (
+            <MessageCard
+              title="Team invitation"
+              primaryButtonText="Join"
+              primaryAction={async () => {
+                const result = await stackApp.acceptTeamInvitation(code);
+                if (result.status === "ok") setAccepted(true);
+                else setPageError("unknown");
+              }}
+              secondaryButtonText="Ignore"
+              secondaryAction={async () => await stackApp.redirectToHome()}
+            >
+              You are invited to join {details.teamDisplayName}
+            </MessageCard>
+          );
+        }
+      `,
+      notes: deindent`
+        - Treat invitation flow as a gatekeeper: auth state, restricted state, and code validity should be checked in a predictable order.
+      `,
+      versions: {},
+    }),
+    mfa: createCustomPagePrompt({
+      key: "mfa",
+      title: "MFA",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read the MFA attempt code from session storage.
+        - Render OTP input for the one-time code.
+        - When OTP is complete, submit \`stackApp.signInWithMfa(otp, attemptCode, { noRedirect: true })\`.
+        - Handle result:
+          - Success => clear stored attempt code, show success state, then redirect after sign-in.
+          - \`InvalidTotpCode\` => show invalid-code error and allow retry.
+          - Other errors => show generic verification failure.
+        - Keep a clear verifying/loading state while request is in flight.
+        - Optionally provide a cancel action.
+      `,
+      reactExample: deindent`
+        function OtpInput(props: { value: string, onChange: (value: string) => void, disabled?: boolean }) {
+          return (
+            <InputOTP maxLength={6} value={props.value} onChange={(value) => props.onChange(value.toUpperCase())} disabled={props.disabled}>
+              <InputOTPGroup>
+                {[0, 1, 2, 3, 4, 5].map((index) => (
+                  <InputOTPSlot key={index} index={index} />
+                ))}
+              </InputOTPGroup>
+            </InputOTP>
+          );
+        }
+
+        export default function CustomMfaPage() {
+          const stackApp = useStackApp();
+          const [otp, setOtp] = useState("");
+          const [submitting, setSubmitting] = useState(false);
+          const [error, setError] = useState<string | null>(null);
+          const [verified, setVerified] = useState(false);
+          const attemptCode = typeof window !== "undefined"
+            ? window.sessionStorage.getItem("stack_mfa_attempt_code")
+            : null;
+
+          const submit = async () => {
+            if (!attemptCode || otp.length !== 6 || submitting) return;
+            setSubmitting(true);
+            setError(null);
+            const result = await stackApp.signInWithMfa(otp, attemptCode, { noRedirect: true });
+            if (result.status === "ok") {
+              window.sessionStorage.removeItem("stack_mfa_attempt_code");
+              setVerified(true);
+              await stackApp.redirectToAfterSignIn();
+            } else if (KnownErrors.InvalidTotpCode.isInstance(result.error)) {
+              setError("Invalid TOTP code");
+              setOtp("");
+            } else {
+              setError("Verification failed");
+            }
+            setSubmitting(false);
+          };
+
+          return (
+            <div>
+              <Typography type="h2">Multi-Factor Authentication</Typography>
+              <Typography>Enter the six-digit code from your authenticator app</Typography>
+              <OtpInput
+                value={otp}
+                disabled={submitting || verified}
+                onChange={(value) => {
+                  setOtp(value);
+                  if (value.length === 6) {
+                    void submit();
+                  } else {
+                    setError(null);
+                  }
+                }}
+              />
+              {submitting ? <Typography>Verifying...</Typography> : null}
+              {verified ? <Typography>Verified! Redirecting...</Typography> : null}
+              {error ? <Typography variant="destructive">{error}</Typography> : null}
+            </div>
+          );
+        }
+      `,
+      notes: deindent`
+        - Keep MFA state transitions explicit (idle, verifying, verified, error) so retries and redirects are predictable.
+      `,
+      versions: {},
+    }),
+    error: createCustomPagePrompt({
+      key: "error",
+      title: "Error",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Read \`errorCode\`, \`message\`, and optional \`details\` from URL params.
+        - If required params are missing, show unknown-error state.
+        - Parse error via \`KnownError.fromJson(...)\`.
+          - If parsing fails, show unknown-error state.
+        - Handle specific known OAuth-related errors with tailored messages/actions.
+        - For all other known errors, show a generic known-error card/state.
+      `,
+      reactExample: deindent`
+        export default function CustomErrorPage(props: { searchParams: Record<string, string> }) {
+          const stackApp = useStackApp();
+          const errorCode = props.searchParams.errorCode;
+          const message = props.searchParams.message;
+          const details = props.searchParams.details;
+
+          if (!errorCode || !message) {
+            return <PredefinedMessageCard type="unknownError" />;
+          }
+
+          let error: KnownError;
+          try {
+            error = KnownError.fromJson({
+              code: errorCode,
+              message,
+              details: details ? JSON.parse(details) : {},
+            });
+          } catch {
+            return <PredefinedMessageCard type="unknownError" />;
+          }
+
+          if (KnownErrors.OAuthConnectionAlreadyConnectedToAnotherUser.isInstance(error)) {
+            return <MessageCard title="Failed to connect account" primaryButtonText="Go Home" primaryAction={() => stackApp.redirectToHome()} />;
+          }
+
+          if (KnownErrors.UserAlreadyConnectedToAnotherOAuthConnection.isInstance(error)) {
+            return <MessageCard title="Failed to connect account" primaryButtonText="Go Home" primaryAction={() => stackApp.redirectToHome()} />;
+          }
+
+          if (KnownErrors.OAuthProviderAccessDenied.isInstance(error)) {
+            return (
+              <MessageCard
+                title="OAuth provider access denied"
+                primaryButtonText="Sign in again"
+                primaryAction={() => stackApp.redirectToSignIn()}
+                secondaryButtonText="Go Home"
+                secondaryAction={() => stackApp.redirectToHome()}
+              />
+            );
+          }
+
+          return <KnownErrorMessageCard error={error} />;
+        }
+      `,
+      notes: deindent`
+        - Fail safely on malformed query params. Unknown-error fallback should always be available.
+      `,
+      versions: {},
+    }),
+    onboarding: createCustomPagePrompt({
+      key: "onboarding",
+      title: "Onboarding",
+      minSdkVersion: "0.0.1",
+      structure: deindent`
+        - Resolve user with \`useUser({ or: "return-null", includeRestricted: true })\`.
+        - Route by user state:
+          - Restricted user resolved to unrestricted => redirect to \`stackApp.redirectToAfterSignIn()\`.
+          - Missing/anonymous user => redirect to \`stackApp.redirectToSignIn()\`.
+          - Restricted user => continue onboarding flow.
+        - Handle restricted reasons:
+          - \`email_not_verified\` and no primary email => ask user for email and call \`user.update({ primaryEmail })\`.
+          - \`email_not_verified\` with primary email => show verification step, resend via \`user.sendVerificationEmail()\`, allow changing email.
+          - Any other restricted reason => show generic setup-required state.
+        - Provide sign-out path from onboarding states.
+      `,
+      reactExample: deindent`
+        export default function CustomOnboardingPage() {
+          const stackApp = useStackApp();
+          const user = useUser({ or: "return-null", includeRestricted: true });
+          const [email, setEmail] = useState("");
+          const [changeEmail, setChangeEmail] = useState(false);
+
+          if (user && !user.isRestricted) {
+            void runAsynchronously(stackApp.redirectToAfterSignIn());
+            return null;
+          }
+
+          if (!user || user.isAnonymous) {
+            void runAsynchronously(stackApp.redirectToSignIn());
+            return null;
+          }
+
+          if (user.restrictedReason?.type !== "email_not_verified") {
+            return (
+              <MessageCard
+                title="Complete your account setup"
+                secondaryButtonText="Sign out"
+                secondaryAction={async () => await user.signOut()}
+              />
+            );
+          }
+
+          if (!user.primaryEmail || changeEmail) {
+            return (
+              <form onSubmit={async (e) => {
+                e.preventDefault();
+                await user.update({ primaryEmail: email });
+                setChangeEmail(false);
+              }}>
+                <Typography>Add your email address</Typography>
+                <Input type="email" value={email} onChange={(e) => setEmail(e.target.value)} />
+                <Button type="submit">Continue</Button>
+              </form>
+            );
+          }
+
+          return (
+            <MessageCard
+              title="Please check your email inbox"
+              primaryButtonText="Resend verification email"
+              primaryAction={async () => await user.sendVerificationEmail()}
+              secondaryButtonText="Sign out"
+              secondaryAction={async () => await user.signOut()}
+            >
+              Please verify your email address {user.primaryEmail}.{" "}
+              <button type="button" onClick={() => setChangeEmail(true)}>change</button>
+            </MessageCard>
+          );
+        }
+      `,
+      notes: deindent`
+        - Treat onboarding as a state machine based on restricted reason; avoid mixing unrelated onboarding states into one branch.
+      `,
+      versions: {},
+    }),
+  };
+}
+
+export function getLatestPageVersions(): Record<string, { version: number, changelogs: Record<number, string> }> {
+  return Object.fromEntries(
+    Object.entries(getCustomPagePrompts()).map(([key, prompt]) => {
+      const versionKeys = Object.keys(prompt.versions).map(Number);
+      const latest = versionKeys.length > 0 ? Math.max(...versionKeys) : 0;
+      const changelogs: Record<number, string> = {};
+      for (const v of versionKeys) {
+        if (prompt.versions[v].changelog) {
+          changelogs[v] = prompt.versions[v].changelog;
+        }
+      }
+      return [key, { version: latest, changelogs }];
+    })
+  );
+}
diff --git a/packages/stack/package.json b/packages/stack/package.json
index 7dd92417fd..4c8ffce276 100644
--- a/packages/stack/package.json
+++ b/packages/stack/package.json
@@ -58,6 +58,8 @@
     "LICENSE"
   ],
   "dependencies": {
+    "@ai-sdk/react": "^3.0.72",
+    "ai": "^6.0.0",
     "@hookform/resolvers": "^5.2.2",
     "@stripe/react-stripe-js": "^3.8.1",
     "@stripe/stripe-js": "^7.7.0",
diff --git a/packages/template/package-template.json b/packages/template/package-template.json
index 355e4a0e4c..e65ff426fc 100644
--- a/packages/template/package-template.json
+++ b/packages/template/package-template.json
@@ -86,6 +86,10 @@
     "LICENSE"
   ],
   "dependencies": {
+    "//": "NEXT_LINE_PLATFORM react-like",
+    "@ai-sdk/react": "^3.0.72",
+    "//": "NEXT_LINE_PLATFORM react-like",
+    "ai": "^6.0.0",
     "@hookform/resolvers": "^5.2.2",
     "//": "NEXT_LINE_PLATFORM react-like",
     "@stripe/react-stripe-js": "^3.8.1",
diff --git a/packages/template/package.json b/packages/template/package.json
index 5df2383133..4eb1e4d02c 100644
--- a/packages/template/package.json
+++ b/packages/template/package.json
@@ -63,6 +63,8 @@
     "LICENSE"
   ],
   "dependencies": {
+    "@ai-sdk/react": "^3.0.72",
+    "ai": "^6.0.0",
     "@hookform/resolvers": "^5.2.2",
     "@stripe/react-stripe-js": "^3.8.1",
     "@stripe/stripe-js": "^7.7.0",
diff --git a/packages/template/src/dev-tool/dev-tool-core.ts b/packages/template/src/dev-tool/dev-tool-core.ts
new file mode 100644
index 0000000000..9179f96588
--- /dev/null
+++ b/packages/template/src/dev-tool/dev-tool-core.ts
@@ -0,0 +1,2467 @@
+// IF_PLATFORM js-like
+
+import type { RequestLogEntry } from "@stackframe/stack-shared/dist/interface/client-interface";
+import { runAsynchronously } from "@stackframe/stack-shared/dist/utils/promises";
+import { isLocalhost } from "@stackframe/stack-shared/dist/utils/urls";
+import { envVars } from "../lib/env";
+import type { StackClientApp } from "../lib/stack-app";
+import { getBaseUrl } from "../lib/stack-app/apps/implementations/common";
+import type { HandlerUrlOptions, HandlerUrls, HandlerUrlTarget } from "../lib/stack-app/common";
+import { stackAppInternalsSymbol } from "../lib/stack-app/common";
+import { getPagePrompt } from "../lib/stack-app/url-targets";
+import { devToolCSS } from "./dev-tool-styles";
+import type { TriggerPlacement } from "./dev-tool-trigger-position";
+import { clampTriggerPosition, getSnappedTriggerPlacement, resolveTriggerPosition } from "./dev-tool-trigger-position";
+
+// ---------------------------------------------------------------------------
+// Types
+// ---------------------------------------------------------------------------
+
+type TabId = 'overview' | 'components' | 'ai' | 'docs' | 'dashboard' | 'console' | 'support';
+
+type TabResult = { element: HTMLElement, cleanup?: () => void };
+
+type ApiLogEntry = {
+  id: string;
+  timestamp: number;
+  method: string;
+  url: string;
+  status?: number;
+  duration?: number;
+  error?: string;
+};
+
+type EventLogEntry = {
+  id: string;
+  timestamp: number;
+  type: 'error' | 'info';
+  message: string;
+};
+
+type ConsoleSubTab = 'logs' | 'config';
+type SupportSubTab = 'feedback' | 'feature-requests';
+
+type DevToolState = {
+  isOpen: boolean;
+  activeTab: TabId;
+  consoleSubTab: ConsoleSubTab;
+  panelWidth: number;
+  panelHeight: number;
+};
+
+// ---------------------------------------------------------------------------
+// Constants
+// ---------------------------------------------------------------------------
+
+const STORAGE_KEY = '__stack-dev-tool-state';
+const TRIGGER_POS_KEY = 'stack-devtool-trigger-position';
+const MAX_LOG_ENTRIES = 500;
+const DRAG_THRESHOLD = 5;
+
+const TABS: { id: TabId; label: string; icon: string }[] = [
+  { id: 'overview', label: 'Overview', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="3" y="3" width="7" height="7"/><rect x="14" y="3" width="7" height="7"/><rect x="14" y="14" width="7" height="7"/><rect x="3" y="14" width="7" height="7"/></svg>' },
+  { id: 'components', label: 'Components', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="3" y="3" width="7" height="7" rx="1"/><rect x="14" y="3" width="7" height="7" rx="1"/><rect x="3" y="14" width="7" height="7" rx="1"/><rect x="14" y="14" width="7" height="7" rx="1"/></svg>' },
+  { id: 'ai', label: 'AI', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><polygon points="12 2 15.09 8.26 22 9.27 17 14.14 18.18 21.02 12 17.77 5.82 21.02 7 14.14 2 9.27 8.91 8.26 12 2"/></svg>' },
+  { id: 'console', label: 'Console', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><polyline points="4 17 10 11 4 5"/><line x1="12" y1="19" x2="20" y2="19"/></svg>' },
+  { id: 'docs', label: 'Docs', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/><polyline points="14 2 14 8 20 8"/></svg>' },
+  { id: 'dashboard', label: 'Dashboard', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="3" y="3" width="18" height="18" rx="2"/><path d="M3 9h18"/><path d="M9 21V9"/></svg>' },
+  { id: 'support', label: 'Support', icon: '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M21 15a2 2 0 0 1-2 2H7l-4 4V5a2 2 0 0 1 2-2h14a2 2 0 0 1 2 2z"/></svg>' },
+];
+
+const DEFAULT_STATE: DevToolState = {
+  isOpen: false,
+  activeTab: 'overview',
+  consoleSubTab: 'logs',
+  panelWidth: 800,
+  panelHeight: 520,
+};
+
+const STACK_LOGO_SVG = '<svg width="14" height="17" viewBox="0 0 131 156" fill="currentColor"><path d="M124.447 28.6459L70.1382 1.75616C67.3472 0.374284 64.0715 0.372197 61.279 1.75051L0.740967 31.6281V87.6369L65.7101 119.91L117.56 93.675V112.414L65.7101 138.44L0.740967 106.584V119.655C0.740967 122.359 2.28151 124.827 4.71097 126.015L62.282 154.161C65.0966 155.538 68.3938 155.515 71.1888 154.099L130.47 124.074V79.7105C130.47 74.8003 125.34 71.5769 120.915 73.7077L79.4531 93.675V75.9771L130.47 50.1589V38.3485C130.47 34.2325 128.137 30.4724 124.447 28.6459Z"/></svg>';
+
+// ---------------------------------------------------------------------------
+// State management
+// ---------------------------------------------------------------------------
+
+function loadState(): DevToolState {
+  try {
+    const stored = localStorage.getItem(STORAGE_KEY);
+    if (stored) {
+      return { ...DEFAULT_STATE, ...JSON.parse(stored) };
+    }
+  } catch {}
+  return { ...DEFAULT_STATE };
+}
+
+function saveState(state: DevToolState) {
+  try {
+    localStorage.setItem(STORAGE_KEY, JSON.stringify(state));
+  } catch {}
+}
+
+function createStateStore() {
+  let state = loadState();
+  const listeners = new Set<() => void>();
+
+  return {
+    get: () => state,
+    update(partial: Partial<DevToolState>) {
+      state = { ...state, ...partial };
+      saveState(state);
+      listeners.forEach((fn) => fn());
+    },
+    subscribe(fn: () => void) {
+      listeners.add(fn);
+      return () => {
+        listeners.delete(fn);
+      };
+    },
+  };
+}
+
+// ---------------------------------------------------------------------------
+// Global log store (survives remounts, shared across instances)
+// ---------------------------------------------------------------------------
+
+type LogStore = {
+  apiLogs: ApiLogEntry[];
+  eventLogs: EventLogEntry[];
+  listeners: Set<() => void>;
+  addApiLog(entry: ApiLogEntry): void;
+  addEventLog(entry: EventLogEntry): void;
+  clear(): void;
+  subscribe(fn: () => void): () => void;
+};
+
+function getGlobalLogStore(): LogStore {
+  const g = globalThis as any;
+  if (!g.__STACK_DEV_TOOL_LOG_STORE__) {
+    g.__STACK_DEV_TOOL_LOG_STORE__ = {
+      apiLogs: [] as ApiLogEntry[],
+      eventLogs: [] as EventLogEntry[],
+      listeners: new Set<() => void>(),
+      addApiLog(entry: ApiLogEntry) {
+        this.apiLogs = [entry, ...this.apiLogs].slice(0, MAX_LOG_ENTRIES);
+        this.listeners.forEach((fn: () => void) => fn());
+      },
+      addEventLog(entry: EventLogEntry) {
+        this.eventLogs = [entry, ...this.eventLogs].slice(0, MAX_LOG_ENTRIES);
+        this.listeners.forEach((fn: () => void) => fn());
+      },
+      clear() {
+        this.apiLogs = [];
+        this.eventLogs = [];
+        this.listeners.forEach((fn: () => void) => fn());
+      },
+      subscribe(fn: () => void) {
+        this.listeners.add(fn);
+        return () => {
+          this.listeners.delete(fn);
+        };
+      },
+    };
+  }
+  return g.__STACK_DEV_TOOL_LOG_STORE__;
+}
+
+// ---------------------------------------------------------------------------
+// Utility helpers
+// ---------------------------------------------------------------------------
+
+let _idCounter = 0;
+function nextId() {
+  return `sdt-${++_idCounter}-${Date.now()}`;
+}
+
+function resolveApiBaseUrl(app: StackClientApp<true>): string {
+  const opts = app[stackAppInternalsSymbol].getConstructorOptions();
+  return getBaseUrl(opts.baseUrl);
+}
+
+function deriveDashboardBaseUrl(apiBaseUrl: string): string {
+  try {
+    const url = new URL(apiBaseUrl);
+    if (url.hostname === 'localhost' || url.hostname === '127.0.0.1' || url.hostname === '[::1]') {
+      const port = url.port;
+      if (port && port.endsWith('02')) {
+        url.port = port.slice(0, -2) + '01';
+      }
+      return url.origin;
+    }
+    if (url.hostname.startsWith('api.')) {
+      url.hostname = 'app.' + url.hostname.slice(4);
+      return url.origin;
+    }
+    return url.origin;
+  } catch {
+    return 'https://app.stack-auth.com';
+  }
+}
+
+function resolveDashboardUrl(app: StackClientApp<true>): string {
+  const base = deriveDashboardBaseUrl(resolveApiBaseUrl(app));
+  return `${base}/projects/${encodeURIComponent(app.projectId)}`;
+}
+
+function formatTimestamp(ts: number): string {
+  return new Date(ts).toLocaleTimeString([], {
+    hour: '2-digit',
+    minute: '2-digit',
+    second: '2-digit',
+    fractionalSecondDigits: 3,
+  } as any);
+}
+
+function escapeHtml(str: string): string {
+  return str.replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;');
+}
+
+function generateRandomEmail(): string {
+  const chars = 'abcdefghijklmnopqrstuvwxyz0123456789';
+  let id = '';
+  for (let i = 0; i < 8; i++) {
+    id += chars[Math.floor(Math.random() * chars.length)];
+  }
+  return `dev-${id}@test.stack-auth.com`;
+}
+
+// ---------------------------------------------------------------------------
+// DOM helpers
+// ---------------------------------------------------------------------------
+
+function h<K extends keyof HTMLElementTagNameMap>(
+  tag: K,
+  attrs?: Record<string, any> | null,
+  ...children: (string | Node | null | undefined)[]
+): HTMLElementTagNameMap[K] {
+  const el = document.createElement(tag);
+  if (attrs) {
+    for (const [k, v] of Object.entries(attrs)) {
+      if (v == null) continue;
+      if (k === 'className') {
+        el.className = v;
+      } else if (k === 'style' && typeof v === 'object') {
+        Object.assign(el.style, v);
+      } else if (k.startsWith('on') && typeof v === 'function') {
+        el.addEventListener(k.slice(2).toLowerCase(), v);
+      } else {
+        el.setAttribute(k, String(v));
+      }
+    }
+  }
+  for (const child of children) {
+    if (child == null) continue;
+    el.appendChild(typeof child === 'string' ? document.createTextNode(child) : child);
+  }
+  return el;
+}
+
+function setHtml(el: HTMLElement, html: string) {
+  el.innerHTML = html;
+}
+
+function hasAppendChild(value: unknown): value is { appendChild(node: Node): void } {
+  return typeof value === 'object' && value !== null && typeof Reflect.get(value, 'appendChild') === 'function';
+}
+
+function parseMarkdownImage(line: string): { alt: string, src: string } | null {
+  const match = line.trim().match(/^!\[([^\]]*)\]\((.+)\)$/);
+  if (!match) return null;
+
+  const [, alt, src] = match;
+  const normalizedSrc = src.trim();
+  if (normalizedSrc === '') return null;
+
+  return {
+    alt: alt.trim(),
+    src: normalizedSrc,
+  };
+}
+
+function appendInlineMarkdown(container: HTMLElement, text: string) {
+  const tokenPattern = /(\[[^\]]+\]\([^)]+\)|`[^`\n]+`|\*\*[^*\n]+\*\*|__[^_\n]+__|\*[^*\n]+\*|_[^_\n]+_)/g;
+  let lastIndex = 0;
+  let match: RegExpExecArray | null;
+
+  while ((match = tokenPattern.exec(text)) !== null) {
+    if (match.index > lastIndex) {
+      container.appendChild(document.createTextNode(text.slice(lastIndex, match.index)));
+    }
+
+    const token = match[0];
+    if (token.startsWith("`")) {
+      container.appendChild(h("code", { className: "sdt-ai-inline-code" }, token.slice(1, -1)));
+    } else if (token.startsWith("**") || token.startsWith("__")) {
+      const bold = h("strong", { className: "sdt-ai-bold" });
+      appendInlineMarkdown(bold, token.slice(2, -2));
+      container.appendChild(bold);
+    } else if (token.startsWith("*") || token.startsWith("_")) {
+      const italic = h("em");
+      appendInlineMarkdown(italic, token.slice(1, -1));
+      container.appendChild(italic);
+    } else {
+      const linkMatch = token.match(/^\[([^\]]+)\]\(([^)]+)\)$/);
+      if (linkMatch) {
+        const [, linkText, href] = linkMatch;
+        const trimmedHref = href.trim();
+        if (/^(https?:\/\/|mailto:)/i.test(trimmedHref)) {
+          const link = h("a", {
+            className: "sdt-ai-link",
+            href: trimmedHref,
+            target: "_blank",
+            rel: "noopener noreferrer",
+          });
+          appendInlineMarkdown(link, linkText);
+          container.appendChild(link);
+        } else {
+          container.appendChild(document.createTextNode(token));
+        }
+      } else {
+        container.appendChild(document.createTextNode(token));
+      }
+    }
+
+    lastIndex = tokenPattern.lastIndex;
+  }
+
+  if (lastIndex < text.length) {
+    container.appendChild(document.createTextNode(text.slice(lastIndex)));
+  }
+}
+
+// ---------------------------------------------------------------------------
+// Trigger button (draggable pill)
+// ---------------------------------------------------------------------------
+
+function createTrigger(onClick: () => void): HTMLElement {
+  type Position = { left: number; top: number };
+  type Placement = TriggerPlacement;
+  const triggerSize = { width: 76, height: 36 };
+
+  const defaultPos = (): Position => ({
+    left: window.innerWidth - 76 - 16,
+    top: window.innerHeight - 36 - 16,
+  });
+
+  function isPosition(value: unknown): value is Position {
+    if (typeof value !== 'object' || value === null) return false;
+    return typeof Reflect.get(value, 'left') === 'number' && typeof Reflect.get(value, 'top') === 'number';
+  }
+
+  function isPlacement(value: unknown): value is Placement {
+    if (typeof value !== 'object' || value === null) return false;
+    const side = Reflect.get(value, 'side');
+    return ['left', 'right', 'top', 'bottom'].includes(String(side)) && typeof Reflect.get(value, 'offset') === 'number';
+  }
+
+  function loadPlacement(): Placement | null {
+    try {
+      const raw = localStorage.getItem(TRIGGER_POS_KEY);
+      if (!raw) return null;
+      const parsed = JSON.parse(raw);
+      if (isPlacement(parsed)) return parsed;
+      if (isPosition(parsed)) {
+        return getSnappedTriggerPlacement(parsed, triggerSize, { width: window.innerWidth, height: window.innerHeight });
+      }
+    } catch {}
+    return null;
+  }
+
+  function savePlacement(placement: Placement) {
+    try {
+      localStorage.setItem(TRIGGER_POS_KEY, JSON.stringify(placement));
+    } catch {}
+  }
+
+  function applyPos(nextPos: Position) {
+    pos = nextPos;
+    btn.style.left = pos.left + 'px';
+    btn.style.top = pos.top + 'px';
+  }
+
+  const btn = h('button', { className: 'sdt-trigger', 'aria-label': 'Toggle Stack Auth Dev Tools', title: 'Stack Auth Dev Tools' });
+  const logoSpan = h('span', { className: 'sdt-trigger-logo' });
+  setHtml(logoSpan, STACK_LOGO_SVG);
+  btn.appendChild(logoSpan);
+  btn.appendChild(h('span', { className: 'sdt-trigger-text' }, 'DEV'));
+
+  let placement = loadPlacement() ?? getSnappedTriggerPlacement(defaultPos(), triggerSize, { width: window.innerWidth, height: window.innerHeight });
+  let pos = resolveTriggerPosition(placement, triggerSize, { width: window.innerWidth, height: window.innerHeight });
+  applyPos(pos);
+
+  let dragState: { startX: number; startY: number; startLeft: number; startTop: number; didDrag: boolean } | null = null;
+
+  btn.addEventListener('pointerdown', (e) => {
+    e.preventDefault();
+    btn.setPointerCapture(e.pointerId);
+    dragState = { startX: e.clientX, startY: e.clientY, startLeft: pos.left, startTop: pos.top, didDrag: false };
+  });
+
+  btn.addEventListener('pointermove', (e) => {
+    if (!dragState) return;
+    const dx = e.clientX - dragState.startX;
+    const dy = e.clientY - dragState.startY;
+    if (!dragState.didDrag && Math.abs(dx) + Math.abs(dy) < DRAG_THRESHOLD) return;
+    dragState.didDrag = true;
+    applyPos(clampTriggerPosition(
+      { left: dragState.startLeft + dx, top: dragState.startTop + dy },
+      triggerSize,
+      { width: window.innerWidth, height: window.innerHeight },
+    ));
+  });
+
+  btn.addEventListener('pointerup', (e) => {
+    const ds = dragState;
+    dragState = null;
+    if (!ds) return;
+    btn.releasePointerCapture(e.pointerId);
+    if (ds.didDrag) {
+      placement = getSnappedTriggerPlacement(pos, triggerSize, { width: window.innerWidth, height: window.innerHeight });
+      applyPos(resolveTriggerPosition(placement, triggerSize, { width: window.innerWidth, height: window.innerHeight }));
+      savePlacement(placement);
+    } else {
+      onClick();
+    }
+  });
+
+  window.addEventListener('resize', () => {
+    const resizedPos = resolveTriggerPosition(placement, triggerSize, { width: window.innerWidth, height: window.innerHeight });
+    if (resizedPos.left !== pos.left || resizedPos.top !== pos.top) {
+      applyPos(resizedPos);
+      placement = getSnappedTriggerPlacement(pos, triggerSize, { width: window.innerWidth, height: window.innerHeight });
+      savePlacement(placement);
+    }
+  });
+
+  return btn;
+}
+
+// ---------------------------------------------------------------------------
+// Tab bar with sliding indicator
+// ---------------------------------------------------------------------------
+
+function createTabBar(
+  tabs: { id: string; label: string; icon?: string }[],
+  activeTab: string,
+  onTabChange: (id: string) => void,
+  opts?: { variant?: 'bar' | 'pills'; trailing?: HTMLElement },
+): { el: HTMLElement; setActive: (id: string) => void } {
+  const variant = opts?.variant ?? 'bar';
+  const barClass = variant === 'pills' ? 'sdt-console-tabs' : 'sdt-tabbar';
+  const tabClass = variant === 'pills' ? 'sdt-console-tab' : 'sdt-tab';
+  const indicatorClass = variant === 'pills' ? 'sdt-console-tab-indicator' : 'sdt-tab-indicator';
+
+  const bar = h('div', { className: barClass });
+  const indicator = h('div', { className: indicatorClass });
+  indicator.style.opacity = '0';
+  bar.appendChild(indicator);
+
+  let current = activeTab;
+  let isInitial = true;
+
+  const buttons = tabs.map((tab) => {
+    const btn = h('button', {
+      className: tabClass,
+      'data-tab-id': tab.id,
+      'data-active': String(tab.id === activeTab),
+    });
+    if (tab.icon) {
+      const iconSpan = h('span', { className: 'sdt-tab-icon' });
+      setHtml(iconSpan, tab.icon);
+      btn.appendChild(iconSpan);
+    }
+    btn.appendChild(document.createTextNode(tab.label));
+    btn.addEventListener('click', () => onTabChange(tab.id));
+    bar.appendChild(btn);
+    return btn;
+  });
+
+  if (variant === 'bar') {
+    bar.appendChild(h('div', { className: 'sdt-tabbar-spacer' }));
+  }
+  if (opts?.trailing) {
+    bar.appendChild(opts.trailing);
+  }
+
+  function measure() {
+    const btn = bar.querySelector<HTMLElement>(`[data-tab-id="${current}"]`);
+    if (!btn) return;
+    indicator.style.transform = `translateX(${btn.offsetLeft}px)`;
+    indicator.style.width = btn.offsetWidth + 'px';
+    indicator.style.height = btn.offsetHeight + 'px';
+    indicator.style.opacity = '1';
+    indicator.style.transition = isInitial ? 'none' : '';
+    isInitial = false;
+  }
+
+  const ro = new ResizeObserver(measure);
+  ro.observe(bar);
+  requestAnimationFrame(measure);
+
+  function setActive(id: string) {
+    current = id;
+    buttons.forEach((btn) => {
+      const tabId = btn.getAttribute('data-tab-id');
+      btn.setAttribute('data-active', String(tabId === id));
+    });
+    measure();
+  }
+
+  return { el: bar, setActive };
+}
+
+// ---------------------------------------------------------------------------
+// Iframe helper
+// ---------------------------------------------------------------------------
+
+function createIframeTab(src: string, title: string, loadingMsg = 'Loading\u2026', errorMsg = 'Unable to load content', errorDetail?: string): HTMLElement {
+  const container = h('div', { className: 'sdt-iframe-container' });
+  const loadingEl = h('div', { className: 'sdt-iframe-loading' }, loadingMsg);
+  container.appendChild(loadingEl);
+
+  const iframe = document.createElement('iframe');
+  iframe.src = src;
+  iframe.title = title;
+  iframe.setAttribute('sandbox', 'allow-scripts allow-same-origin allow-popups allow-forms');
+  iframe.style.display = 'none';
+
+  iframe.addEventListener('load', () => {
+    loadingEl.style.display = 'none';
+    iframe.style.display = 'block';
+  });
+
+  iframe.addEventListener('error', () => {
+    loadingEl.style.display = 'none';
+    container.innerHTML = '';
+    const errDiv = h('div', { className: 'sdt-iframe-error' });
+    errDiv.appendChild(h('div', null, errorMsg));
+    if (errorDetail) {
+      errDiv.appendChild(h('div', { style: { fontSize: '12px', color: 'var(--sdt-text-tertiary)' } }, errorDetail));
+    }
+    const retryBtn = h('button', { className: 'sdt-iframe-error-btn' }, 'Retry');
+    retryBtn.addEventListener('click', () => {
+      container.innerHTML = '';
+      container.appendChild(createIframeTab(src, title, loadingMsg, errorMsg, errorDetail));
+    });
+    errDiv.appendChild(retryBtn);
+    const link = h('a', { href: src, target: '_blank', rel: 'noopener noreferrer', style: { color: 'var(--sdt-accent)', fontSize: '12px', textDecoration: 'none' } }, 'Open in new tab');
+    errDiv.appendChild(link);
+    container.appendChild(errDiv);
+  });
+
+  container.appendChild(iframe);
+  return container;
+}
+
+// ===========================================================================================
+// TABS
+// ===========================================================================================
+
+// ---------------------------------------------------------------------------
+// Overview tab
+// ---------------------------------------------------------------------------
+
+function createOverviewTab(app: StackClientApp<true>): TabResult {
+  const container = h('div', { className: 'sdt-ov' });
+  const apiBaseUrl = resolveApiBaseUrl(app);
+
+  // -- User hero card --
+  const heroCard = h('div', { className: 'sdt-ov-card sdt-ov-card-hero' });
+  heroCard.appendChild(h('div', { className: 'sdt-ov-label' }, 'Identity'));
+
+  const userRow = h('div', { className: 'sdt-ov-user-row' });
+  const avatar = h('div', { className: 'sdt-ov-avatar' }, '?');
+  const userMeta = h('div', { className: 'sdt-ov-user-meta' });
+  const userName = h('div', { className: 'sdt-ov-user-name' }, 'Loading\u2026');
+  const userEmail = h('div', { className: 'sdt-ov-user-email' }, '');
+  const authIndicator = h('div', { className: 'sdt-ov-auth-indicator', style: { display: 'none' } }, 'Authenticated');
+  userMeta.append(userName, userEmail, authIndicator);
+  userRow.append(avatar, userMeta);
+  heroCard.appendChild(userRow);
+
+  const actions = h('div', { className: 'sdt-ov-actions' });
+  const toast = h('div', { className: 'sdt-ov-toast', style: { display: 'none' } });
+  const emailRow = h('div', { className: 'sdt-ov-email-input' });
+  const emailInput = h('input', { type: 'email', placeholder: 'Sign in as email\u2026' }) as HTMLInputElement;
+  const emailBtn = h('button', null);
+  setHtml(emailBtn, '<svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round"><line x1="5" y1="12" x2="19" y2="12"/><polyline points="12 5 19 12 12 19"/></svg>');
+  emailRow.append(emailInput, emailBtn);
+
+  function showToast(msg: string, type: 'success' | 'error') {
+    toast.textContent = msg;
+    toast.className = `sdt-ov-toast sdt-ov-toast-${type}`;
+    toast.style.display = '';
+    setTimeout(() => {
+      toast.style.display = 'none';
+    }, 4000);
+  }
+
+  let currentUser: any = null;
+  let loading = false;
+
+  function rebuildActions() {
+    actions.innerHTML = '';
+    if (currentUser) {
+      const signOutBtn = h('button', { className: 'sdt-ov-btn sdt-ov-btn-danger' }, 'Sign Out');
+      signOutBtn.disabled = loading;
+      signOutBtn.addEventListener('click', () => {
+        runAsynchronously(async () => {
+          loading = true;
+          rebuildActions();
+          try {
+            await currentUser.signOut();
+            showToast('Signed out', 'success');
+          } catch (e: any) {
+            showToast(e.message || 'Sign out failed', 'error');
+          }
+          loading = false;
+          await refreshUser();
+        });
+      });
+      const randomBtn = h('button', { className: 'sdt-ov-btn sdt-ov-btn-primary' }, 'Random User');
+      randomBtn.disabled = loading;
+      randomBtn.addEventListener('click', () => {
+        runAsynchronously(doQuickSignIn());
+      });
+      actions.append(signOutBtn, randomBtn);
+    } else {
+      const quickBtn = h('button', { className: 'sdt-ov-btn sdt-ov-btn-primary sdt-ov-btn-wide' }, loading ? 'Working\u2026' : 'Quick Sign In');
+      quickBtn.disabled = loading;
+      quickBtn.addEventListener('click', () => {
+        runAsynchronously(doQuickSignIn());
+      });
+      actions.appendChild(quickBtn);
+    }
+    emailInput.placeholder = currentUser ? 'Switch to email\u2026' : 'Sign in as email\u2026';
+    actions.appendChild(emailRow);
+  }
+
+  async function doQuickSignIn() {
+    if (!isLocalhost(window.location.href)) {
+      showToast('Quick sign-in is only available on localhost', 'error');
+      return;
+    }
+    loading = true;
+    rebuildActions();
+    const email = generateRandomEmail();
+    try {
+      const signUpResult = await app.signUpWithCredential({ email, password: email, noRedirect: true } as any);
+      if (signUpResult.status === 'error') {
+        showToast(`Sign up failed: ${signUpResult.error.message}`, 'error');
+        loading = false;
+        rebuildActions();
+        return;
+      }
+      const signInResult = await app.signInWithCredential({ email, password: email, noRedirect: true });
+      if (signInResult.status === 'error') {
+        showToast(`Sign in failed: ${signInResult.error.message}`, 'error');
+      } else {
+        showToast(`Signed in as ${email}`, 'success');
+      }
+    } catch (e: any) {
+      showToast(e.message || 'Unknown error', 'error');
+    }
+    loading = false;
+    await refreshUser();
+  }
+
+  async function doSignInAs(targetEmail: string) {
+    if (!targetEmail.trim()) return;
+    if (!isLocalhost(window.location.href)) {
+      showToast('Quick sign-in is only available on localhost', 'error');
+      return;
+    }
+    loading = true;
+    rebuildActions();
+    const trimmed = targetEmail.trim();
+    try {
+      const signInResult = await app.signInWithCredential({ email: trimmed, password: trimmed, noRedirect: true });
+      if (signInResult.status === 'ok') {
+        showToast(`Signed in as ${trimmed}`, 'success');
+        emailInput.value = '';
+        loading = false;
+        await refreshUser();
+        return;
+      }
+      const signUpResult = await app.signUpWithCredential({ email: trimmed, password: trimmed, noRedirect: true } as any);
+      if (signUpResult.status === 'error') {
+        showToast(`Failed: ${signUpResult.error.message}`, 'error');
+        loading = false;
+        rebuildActions();
+        return;
+      }
+      const retryResult = await app.signInWithCredential({ email: trimmed, password: trimmed, noRedirect: true });
+      if (retryResult.status === 'error') {
+        showToast(`Sign in failed: ${retryResult.error.message}`, 'error');
+      } else {
+        showToast(`Signed in as ${trimmed}`, 'success');
+        emailInput.value = '';
+      }
+    } catch (e: any) {
+      showToast(e.message || 'Unknown error', 'error');
+    }
+    loading = false;
+    await refreshUser();
+  }
+
+  emailBtn.addEventListener('click', () => {
+    runAsynchronously(doSignInAs(emailInput.value));
+  });
+  emailInput.addEventListener('keydown', (e) => {
+    if (e.key === 'Enter') {
+      runAsynchronously(doSignInAs(emailInput.value));
+    }
+  });
+
+  async function refreshUser() {
+    try {
+      currentUser = await app.getUser();
+    } catch {
+      currentUser = null;
+    }
+    if (currentUser) {
+      const initials = (currentUser.displayName || currentUser.primaryEmail || '?')
+        .split(' ').map((s: string) => s[0]).join('').slice(0, 2).toUpperCase();
+      avatar.className = 'sdt-ov-avatar sdt-ov-avatar-active';
+      if (currentUser.profileImageUrl) {
+        avatar.innerHTML = `<img src="${escapeHtml(currentUser.profileImageUrl)}" alt="" />`;
+      } else {
+        avatar.textContent = initials;
+      }
+      userName.textContent = currentUser.displayName || 'Anonymous';
+      userEmail.textContent = currentUser.primaryEmail || 'No email';
+      authIndicator.style.display = '';
+    } else {
+      avatar.className = 'sdt-ov-avatar';
+      avatar.textContent = '?';
+      userName.textContent = 'No user signed in';
+      userEmail.textContent = 'Sign in to test auth flows';
+      authIndicator.style.display = 'none';
+    }
+    rebuildActions();
+    buildChecklist();
+  }
+
+  heroCard.append(actions, toast);
+  runAsynchronously(refreshUser());
+  const userPoll = setInterval(() => {
+    runAsynchronously(refreshUser());
+  }, 3000);
+
+  // -- Project info card --
+  const projectCard = h('div', { className: 'sdt-ov-card sdt-ov-card-project' });
+  projectCard.appendChild(h('div', { className: 'sdt-ov-label' }, 'Project'));
+  const projectRows = h('div', { className: 'sdt-ov-project-rows' });
+
+  const sdkVersion = app.version;
+  const projectId = app.projectId;
+
+  function addProjectRow(key: string, val: string | HTMLElement) {
+    const row = h('div', { className: 'sdt-ov-project-row' });
+    row.appendChild(h('span', { className: 'sdt-ov-project-key' }, key));
+    const valEl = h('span', { className: 'sdt-ov-project-val' });
+    if (typeof val === 'string') {
+      valEl.textContent = val;
+    } else {
+      valEl.appendChild(val);
+    }
+    row.appendChild(valEl);
+    projectRows.appendChild(row);
+  }
+
+  const sdkValSpan = h('span', null, sdkVersion || '?');
+  addProjectRow('SDK', sdkValSpan);
+
+  // Check latest version
+  const parsed = sdkVersion.match(/(@[\w-]+\/[\w-]+)@(\d+\.\d+\.\d+)/);
+  if (parsed) {
+    runAsynchronously(
+      fetch(`https://registry.npmjs.org/${parsed[1]}/latest`)
+        .then((r) => r.json())
+        .then((data) => {
+          if (data.version) {
+            const pa = parsed[2].split('.').map(Number);
+            const pb = data.version.split('.').map(Number);
+            let outdated = false;
+            for (let i = 0; i < 3; i++) {
+              if (pa[i] !== pb[i]) {
+                outdated = pa[i] < pb[i];
+                break;
+              }
+            }
+            if (outdated) {
+              const badge = h('span', { className: 'sdt-ov-sdk-badge', title: `Latest: ${data.version}` }, 'Outdated');
+              sdkValSpan.parentElement!.appendChild(badge);
+            }
+          }
+        })
+    );
+  }
+
+  const idValSpan = h('span', { className: 'sdt-ov-project-val-mono' }, projectId || 'N/A');
+  addProjectRow('Project ID', idValSpan);
+
+  const envVal = h('span', { className: 'sdt-ov-env-val' });
+  const dot = h('span', { className: 'sdt-ov-pulse-dot' });
+  envVal.append(dot, h('span', null, 'Development'));
+  addProjectRow('Environment', envVal);
+
+  projectCard.appendChild(projectRows);
+
+  // -- Auth config card --
+  const authCard = h('div', { className: 'sdt-ov-card sdt-ov-card-auth' });
+  authCard.appendChild(h('div', { className: 'sdt-ov-label' }, 'Config'));
+  const authGrid = h('div', { className: 'sdt-ov-auth-grid' });
+  for (let i = 0; i < 3; i++) {
+    authGrid.appendChild(h('div', { className: 'sdt-ov-method sdt-ov-skeleton-pill' }));
+  }
+  authCard.appendChild(authGrid);
+
+  runAsynchronously(
+    app.getProject().then((project: any) => {
+      authGrid.innerHTML = '';
+      const config = project.config;
+      const methods = [
+        { label: 'Password', enabled: config.credentialEnabled },
+        { label: 'Magic Link', enabled: config.magicLinkEnabled },
+        { label: 'Passkey', enabled: config.passkeyEnabled },
+      ];
+      for (const m of methods) {
+        const pill = h('div', { className: `sdt-ov-method ${m.enabled ? 'sdt-ov-method-on' : 'sdt-ov-method-off'}` });
+        pill.appendChild(h('span', { className: 'sdt-ov-method-name' }, m.label));
+        authGrid.appendChild(pill);
+      }
+      for (const p of config.oauthProviders) {
+        const pill = h('div', { className: 'sdt-ov-method sdt-ov-method-on sdt-ov-method-oauth' });
+        pill.appendChild(h('span', { className: 'sdt-ov-method-name' }, p.id));
+        authGrid.appendChild(pill);
+      }
+      if (!config.signUpEnabled) {
+        const pill = h('div', { className: 'sdt-ov-method sdt-ov-method-warn' });
+        pill.appendChild(h('span', { className: 'sdt-ov-method-name' }, 'Sign-up off'));
+        authGrid.appendChild(pill);
+      }
+    }).catch(() => {
+      authGrid.innerHTML = '<div style="font-size:11px;color:var(--sdt-text-tertiary)">Could not load config</div>';
+    })
+  );
+
+  // -- Checklist card --
+  const checksCard = h('div', { className: 'sdt-ov-card sdt-ov-card-checks' });
+  function buildChecklist() {
+    checksCard.innerHTML = '';
+    const checks = [
+      { ok: !!projectId && projectId !== 'default', label: 'Project' },
+      { ok: true, label: 'Provider' },
+      { ok: !!currentUser, label: 'Auth' },
+    ];
+    const passCount = checks.filter((c) => c.ok).length;
+    const allGood = passCount === checks.length;
+    if (allGood) {
+      checksCard.classList.add('sdt-ov-card-checks-ok');
+    } else {
+      checksCard.classList.remove('sdt-ov-card-checks-ok');
+    }
+
+    const header = h('div', { className: 'sdt-ov-checks-header' });
+    header.appendChild(h('div', { className: 'sdt-ov-label', style: { marginBottom: '0' } }, 'Setup'));
+    header.appendChild(h('span', { className: `sdt-ov-checks-badge ${allGood ? 'sdt-ov-checks-badge-ok' : 'sdt-ov-checks-badge-warn'}` }, allGood ? 'All good' : `${passCount}/${checks.length}`));
+    checksCard.appendChild(header);
+
+    const bar = h('div', { className: 'sdt-ov-checks-bar' });
+    const fill = h('div', { className: 'sdt-ov-checks-bar-fill' });
+    fill.style.width = `${(passCount / checks.length) * 100}%`;
+    bar.appendChild(fill);
+    checksCard.appendChild(bar);
+
+    const checksRow = h('div', { className: 'sdt-ov-checks' });
+    for (const c of checks) {
+      const check = h('div', { className: `sdt-ov-check ${c.ok ? 'sdt-ov-check-ok' : 'sdt-ov-check-warn'}` });
+      check.appendChild(h('span', { className: 'sdt-ov-check-icon' }, c.ok ? '\u2713' : '!'));
+      check.appendChild(h('span', { className: 'sdt-ov-check-label' }, c.label));
+      checksRow.appendChild(check);
+    }
+    checksCard.appendChild(checksRow);
+  }
+  buildChecklist();
+
+  // -- Changelog card --
+  const changelogCard = h('div', { className: 'sdt-ov-card sdt-ov-card-changelog' });
+  changelogCard.appendChild(h('div', { className: 'sdt-ov-label' }, "What's New"));
+
+  const changelogPath = '/api/latest/internal/changelog';
+  const changelogContent = h('div', { className: 'sdt-ov-changelog-content' });
+  changelogContent.innerHTML = '<div style="padding:12px 0;color:var(--sdt-text-tertiary);font-size:12px">Loading changelog...</div>';
+  changelogCard.appendChild(changelogContent);
+
+  runAsynchronously((async () => {
+    let entries: any[] = [];
+    try {
+      const res = await fetch(apiBaseUrl + changelogPath);
+      if (res.ok) {
+        const data = await res.json();
+        entries = data.entries ?? [];
+      }
+    } catch {}
+    if (entries.length === 0) {
+      try {
+        const res = await fetch('https://api.stack-auth.com' + changelogPath);
+        if (res.ok) {
+          const data = await res.json();
+          entries = data.entries ?? [];
+        }
+      } catch {}
+    }
+
+    changelogContent.innerHTML = '';
+    if (entries.length === 0) {
+      changelogContent.innerHTML = '<div style="padding:12px 0;color:var(--sdt-text-tertiary);font-size:12px">Could not load changelog.</div>';
+      return;
+    }
+
+    const changelogDiv = h('div', { className: 'sdt-ov-changelog' });
+    let expandedVersion: string | null = entries[0]?.version ?? null;
+
+    function renderEntries() {
+      changelogDiv.innerHTML = '';
+      for (const entry of entries.slice(0, 5)) {
+        const isExpanded = expandedVersion === entry.version;
+        const release = h('div', { className: 'sdt-ov-release' });
+        const head = h('div', { className: 'sdt-ov-release-head', style: { cursor: 'pointer' } });
+        head.textContent = entry.version;
+        if (entry.releasedAt) {
+          head.appendChild(h('span', { className: 'sdt-ov-release-date' }, entry.releasedAt));
+        }
+        const arrow = h('span', { style: { marginLeft: 'auto', fontSize: '10px', color: 'var(--sdt-text-tertiary)' } }, isExpanded ? '\u25B2' : '\u25BC');
+        head.appendChild(arrow);
+        head.addEventListener('click', () => {
+          expandedVersion = isExpanded ? null : entry.version;
+          renderEntries();
+        });
+        release.appendChild(head);
+
+        if (isExpanded && entry.markdown) {
+          const body = h('div', { className: 'sdt-ov-release-body', style: { padding: '4px 0 8px' } });
+          const lines = entry.markdown.split('\n');
+          for (const line of lines) {
+            const trimmedLine = line.trim();
+            if (trimmedLine === '') continue;
+
+            const image = parseMarkdownImage(trimmedLine);
+            if (image) {
+              const figure = h('figure', { className: 'sdt-ov-release-image-figure' });
+              const imageLink = h('a', {
+                className: 'sdt-ov-release-image-link',
+                href: image.src,
+                target: '_blank',
+                rel: 'noopener noreferrer',
+              });
+              imageLink.appendChild(h('img', {
+                className: 'sdt-ov-release-image',
+                src: image.src,
+                alt: image.alt,
+                loading: 'lazy',
+                decoding: 'async',
+              }));
+              figure.appendChild(imageLink);
+              if (image.alt !== '') {
+                figure.appendChild(h('figcaption', { className: 'sdt-ov-release-image-caption' }, image.alt));
+              }
+              body.appendChild(figure);
+              continue;
+            }
+
+            const headingMatch = line.match(/^###\s+(.+)/);
+            if (headingMatch) {
+              const heading = h('div', { style: { fontWeight: '600', color: 'var(--sdt-text)', marginTop: '8px', marginBottom: '4px', fontSize: '12px' } });
+              appendInlineMarkdown(heading, headingMatch[1]);
+              body.appendChild(heading);
+              continue;
+            }
+            if (line.startsWith('- ')) {
+              const li = h('div', { style: { fontSize: '12px', color: 'var(--sdt-text-secondary)', lineHeight: '1.6', paddingLeft: '12px' } });
+              li.appendChild(document.createTextNode('\u2022 '));
+              appendInlineMarkdown(li, line.slice(2));
+              body.appendChild(li);
+              continue;
+            }
+            const paragraph = h('div', { style: { fontSize: '12px', color: 'var(--sdt-text-secondary)', lineHeight: '1.6' } });
+            appendInlineMarkdown(paragraph, line);
+            body.appendChild(paragraph);
+          }
+          release.appendChild(body);
+        }
+        changelogDiv.appendChild(release);
+      }
+    }
+    renderEntries();
+    changelogContent.appendChild(changelogDiv);
+  })());
+
+  const allReleasesLink = h('a', { className: 'sdt-ov-all-releases', href: 'https://github.com/stack-auth/stack/releases', target: '_blank', rel: 'noopener noreferrer' });
+  setHtml(allReleasesLink, 'All releases <svg width="10" height="10" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round"><line x1="7" y1="17" x2="17" y2="7"/><polyline points="7 7 17 7 17 17"/></svg>');
+  changelogCard.appendChild(allReleasesLink);
+
+  container.append(heroCard, projectCard, authCard, checksCard, changelogCard);
+
+  return { element: container, cleanup: () => clearInterval(userPoll) };
+}
+
+// ---------------------------------------------------------------------------
+// Console tab
+// ---------------------------------------------------------------------------
+
+function createConsoleTab(app: StackClientApp<true>, logStore: LogStore, state: ReturnType<typeof createStateStore>): TabResult {
+  const container = h('div', { style: { display: 'flex', flexDirection: 'column', height: '100%' } });
+
+  const EVENT_TYPE_STYLES: Record<string, string> = {
+    'error': 'sdt-badge-error',
+    'info': 'sdt-badge-info',
+  };
+
+  const trailingBtns = h('div', { style: { display: 'flex', gap: '4px' } });
+  const exportBtn = h('button', { className: 'sdt-close-btn', title: 'Export logs & config', style: { fontSize: '11px', width: 'auto', padding: '0 8px' } });
+  setHtml(exportBtn, '<svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round" style="margin-right:4px"><path d="M4 12v8a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2v-8"/><polyline points="16 6 12 2 8 6"/><line x1="12" y1="2" x2="12" y2="15"/></svg>Export');
+  const clearBtn = h('button', { className: 'sdt-close-btn', title: 'Clear logs', style: { fontSize: '11px', width: 'auto', padding: '0 8px' } }, 'Clear');
+  clearBtn.addEventListener('click', () => logStore.clear());
+  trailingBtns.append(exportBtn, clearBtn);
+
+  const subTabBar = createTabBar(
+    [{ id: 'logs', label: 'Logs' }, { id: 'config', label: 'Config' }],
+    state.get().consoleSubTab,
+    (id) => {
+      state.update({ consoleSubTab: id as ConsoleSubTab });
+      renderSubTab();
+    },
+    { variant: 'pills', trailing: trailingBtns },
+  );
+  container.appendChild(h('div', { style: { display: 'flex', alignItems: 'center', gap: '8px', marginBottom: '12px' } }, subTabBar.el));
+
+  const contentArea = h('div', { className: 'sdt-tab-content-fade', style: { flex: '1', overflow: 'auto' } });
+  container.appendChild(contentArea);
+
+  function renderLogs() {
+    contentArea.innerHTML = '';
+    const merged = [
+      ...logStore.apiLogs.map((e) => ({ kind: 'api' as const, entry: e })),
+      ...logStore.eventLogs.map((e) => ({ kind: 'event' as const, entry: e })),
+    ].sort((a, b) => b.entry.timestamp - a.entry.timestamp);
+
+    if (merged.length === 0) {
+      contentArea.innerHTML = '<div class="sdt-empty-state"><div class="sdt-empty-state-icon">\uD83D\uDCCB</div><div>No logs recorded yet</div><div style="font-size:12px;color:var(--sdt-text-tertiary)">API calls and auth events will appear here</div></div>';
+      return;
+    }
+
+    const list = h('div', { className: 'sdt-log-list' });
+    for (const item of merged) {
+      if (item.kind === 'api') {
+        const log = item.entry as ApiLogEntry;
+        const row = h('div', { className: 'sdt-log-item' });
+        row.appendChild(h('span', { className: 'sdt-log-time' }, formatTimestamp(log.timestamp)));
+        row.appendChild(h('span', { className: `sdt-log-method sdt-log-method-${log.method.toLowerCase()}` }, log.method));
+        row.appendChild(h('span', { className: 'sdt-log-url' }, log.url));
+        if (log.status !== undefined) {
+          row.appendChild(h('span', { className: `sdt-log-status ${log.status < 400 ? 'sdt-log-status-ok' : 'sdt-log-status-err'}` }, String(log.status)));
+        }
+        if (log.duration !== undefined) {
+          row.appendChild(h('span', { className: 'sdt-log-time' }, log.duration + 'ms'));
+        }
+        list.appendChild(row);
+      } else {
+        const log = item.entry as EventLogEntry;
+        const row = h('div', { className: 'sdt-log-item' });
+        row.appendChild(h('span', { className: 'sdt-log-time' }, formatTimestamp(log.timestamp)));
+        row.appendChild(h('span', { className: `sdt-badge ${EVENT_TYPE_STYLES[log.type] || 'sdt-badge-info'}` }, log.type));
+        row.appendChild(h('span', { className: 'sdt-log-message' }, log.message));
+        list.appendChild(row);
+      }
+    }
+    contentArea.appendChild(list);
+  }
+
+  function renderConfig() {
+    contentArea.innerHTML = '<div style="padding:12px 0;color:var(--sdt-text-tertiary);font-size:12px">Loading config...</div>';
+    runAsynchronously(
+      app.getProject().then((project: any) => {
+        contentArea.innerHTML = '';
+        const table = h('table', { className: 'sdt-config-table' });
+        const tbody = h('tbody', null);
+        const items: [string, string][] = [
+          ['Project ID', project.id],
+          ['Display Name', project.displayName],
+          ['Sign-Up Enabled', String(project.config.signUpEnabled)],
+          ['Credential Auth', String(project.config.credentialEnabled)],
+          ['Magic Link', String(project.config.magicLinkEnabled)],
+          ['Passkey', String(project.config.passkeyEnabled)],
+          ['Client Team Creation', String(project.config.clientTeamCreationEnabled)],
+          ['Client User Deletion', String(project.config.clientUserDeletionEnabled)],
+          ['User API Keys', String(project.config.allowUserApiKeys)],
+          ['Team API Keys', String(project.config.allowTeamApiKeys)],
+          ['OAuth Providers', project.config.oauthProviders.length > 0 ? project.config.oauthProviders.map((p: any) => p.id).join(', ') : 'None'],
+        ];
+        for (const [label, value] of items) {
+          const tr = h('tr', null);
+          tr.appendChild(h('td', null, label));
+          const td = h('td', null);
+          if (value === 'true') {
+            setHtml(td, '<span style="color:var(--sdt-success)">Enabled</span>');
+          } else if (value === 'false') {
+            setHtml(td, '<span style="color:var(--sdt-text-tertiary)">Disabled</span>');
+          } else {
+            td.textContent = value;
+          }
+          tr.appendChild(td);
+          tbody.appendChild(tr);
+        }
+        table.appendChild(tbody);
+        contentArea.appendChild(table);
+      }).catch(() => {
+        contentArea.innerHTML = '<div style="padding:12px 0;color:var(--sdt-text-tertiary);font-size:12px">Could not load config.</div>';
+      })
+    );
+  }
+
+  function renderSubTab() {
+    subTabBar.setActive(state.get().consoleSubTab);
+    clearBtn.style.display = state.get().consoleSubTab === 'logs' ? '' : 'none';
+    if (state.get().consoleSubTab === 'logs') {
+      renderLogs();
+    } else {
+      renderConfig();
+    }
+  }
+
+  renderSubTab();
+
+  exportBtn.addEventListener('click', () => {
+    const lines: string[] = [];
+    lines.push('=== Stack Auth Dev Tool Report ===');
+    lines.push(`Generated: ${new Date().toISOString()}`);
+    lines.push('');
+    for (const log of logStore.apiLogs.slice(0, 50)) {
+      const status = log.status !== undefined ? ` [${log.status}]` : '';
+      const duration = log.duration !== undefined ? ` ${log.duration}ms` : '';
+      lines.push(`${new Date(log.timestamp).toISOString()} ${log.method} ${log.url}${status}${duration}`);
+    }
+    runAsynchronously(
+      navigator.clipboard.writeText(lines.join('\n')).then(() => {
+        exportBtn.textContent = '\u2713 Copied';
+        setTimeout(() => {
+          setHtml(exportBtn, '<svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round" style="margin-right:4px"><path d="M4 12v8a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2v-8"/><polyline points="16 6 12 2 8 6"/><line x1="12" y1="2" x2="12" y2="15"/></svg>Export');
+        }, 1500);
+      })
+    );
+  });
+
+  const unsub = logStore.subscribe(() => {
+    if (state.get().consoleSubTab === 'logs') {
+      renderLogs();
+    }
+  });
+
+  return { element: container, cleanup: unsub };
+}
+
+// ---------------------------------------------------------------------------
+// AI tab
+// ---------------------------------------------------------------------------
+
+function createAITab(app: StackClientApp<true>): HTMLElement {
+  const container = h('div', { className: 'sdt-ai-container' });
+  const apiBaseUrl = resolveApiBaseUrl(app);
+
+  type ToolCallState = 'running' | 'success' | 'error';
+  type ToolCall = {
+    id: string,
+    toolName: string,
+    argsText: string | null,
+    resultText: string | null,
+    state: ToolCallState,
+    errorText: string | null,
+    isExpanded: boolean,
+  };
+  type AssistantPart =
+    | { type: 'text', content: string }
+    | { type: 'tool', toolCallId: string };
+  type UserMessage = { role: 'user'; content: string };
+  type AssistantMessage = { role: 'assistant'; parts: AssistantPart[]; toolCallsById: Map<string, ToolCall> };
+  type Message = UserMessage | AssistantMessage;
+  const messages: Message[] = [];
+  let aiLoading = false;
+  let activeAiAbortController: AbortController | null = null;
+
+  const messagesArea = h('div', { className: 'sdt-ai-messages' });
+  const inputArea = h('div', { className: 'sdt-ai-input-area' });
+
+  const SUGGESTED_QUESTIONS = [
+    { icon: '\uD83D\uDD12', text: 'How do I protect a Next.js route?' },
+    { icon: '\uD83D\uDC65', text: 'How do teams and permissions work?' },
+    { icon: '\uD83D\uDD17', text: 'How do I add OAuth providers?' },
+    { icon: '\u2709\uFE0F', text: 'How do I customize auth emails?' },
+  ];
+
+  function getHeaders(): Record<string, string> {
+    const opts = app[stackAppInternalsSymbol].getConstructorOptions();
+    const headers: Record<string, string> = {
+      'X-Stack-Access-Type': 'client',
+      'X-Stack-Project-Id': app.projectId,
+    };
+    if ('publishableClientKey' in opts && opts.publishableClientKey) {
+      headers['X-Stack-Publishable-Client-Key'] = opts.publishableClientKey as string;
+    }
+    return headers;
+  }
+
+  function renderToolCard(toolCall: ToolCall): HTMLElement {
+    const toolCard = h('div', { className: 'sdt-ai-tool-card' });
+    const header = h('button', { className: 'sdt-ai-tool-header', type: 'button' });
+    header.appendChild(h('span', { className: 'sdt-ai-tool-name' }, toolCall.toolName));
+    header.appendChild(h('span', { className: `sdt-ai-tool-status sdt-ai-tool-status-${toolCall.state}` }, toolCall.state));
+    header.appendChild(h('span', { className: `sdt-ai-tool-chevron${toolCall.isExpanded ? ' sdt-ai-tool-chevron-open' : ''}` }, '\u25BE'));
+    header.addEventListener('click', () => {
+      toolCall.isExpanded = !toolCall.isExpanded;
+      renderMessages();
+    });
+    toolCard.appendChild(header);
+
+    if (toolCall.isExpanded) {
+      const body = h('div', { className: 'sdt-ai-tool-body' });
+      if (toolCall.argsText !== null) {
+        body.appendChild(h('div', { className: 'sdt-ai-tool-label' }, 'Args'));
+        const argsPre = h('pre', { className: 'sdt-ai-tool-pre' });
+        argsPre.appendChild(h('code', null, toolCall.argsText));
+        body.appendChild(argsPre);
+      }
+      if (toolCall.resultText !== null) {
+        body.appendChild(h('div', { className: 'sdt-ai-tool-label' }, toolCall.state === 'error' ? 'Error' : 'Result'));
+        const resultPre = h('pre', { className: 'sdt-ai-tool-pre' });
+        resultPre.appendChild(h('code', null, toolCall.resultText));
+        body.appendChild(resultPre);
+      }
+      if (toolCall.state === 'running') {
+        body.appendChild(h('div', { className: 'sdt-ai-tool-running' }, 'Running...'));
+      }
+      toolCard.appendChild(body);
+    }
+
+    return toolCard;
+  }
+
+  function renderMessages() {
+    messagesArea.innerHTML = '';
+
+    if (messages.length === 0) {
+      const empty = h('div', { className: 'sdt-ai-empty' });
+      const icon = h('div', { className: 'sdt-ai-empty-icon' });
+      setHtml(icon, '<svg width="32" height="32" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round"><polygon points="12 2 15.09 8.26 22 9.27 17 14.14 18.18 21.02 12 17.77 5.82 21.02 7 14.14 2 9.27 8.91 8.26 12 2"/></svg>');
+      empty.appendChild(icon);
+      empty.appendChild(h('div', { className: 'sdt-ai-empty-title' }, 'Ask AI'));
+      empty.appendChild(h('div', { className: 'sdt-ai-empty-desc' }, 'Get help with Stack Auth integration, troubleshooting, and best practices.'));
+
+      const suggestions = h('div', { className: 'sdt-ai-suggestions' });
+      for (const q of SUGGESTED_QUESTIONS) {
+        const btn = h('button', { className: 'sdt-ai-suggestion' });
+        btn.appendChild(h('span', { className: 'sdt-ai-suggestion-icon' }, q.icon));
+        btn.appendChild(h('span', null, q.text));
+        btn.addEventListener('click', () => {
+          runAsynchronously(sendMessage(q.text));
+        });
+        suggestions.appendChild(btn);
+      }
+      empty.appendChild(suggestions);
+      messagesArea.appendChild(empty);
+      return;
+    }
+
+    const list = h('div', { className: 'sdt-ai-message-list' });
+    for (const msg of messages) {
+      if (msg.role === 'user') {
+        const msgDiv = h('div', { className: 'sdt-ai-msg sdt-ai-msg-user' });
+        const bubble = h('div', { className: 'sdt-ai-bubble sdt-ai-bubble-user' });
+        bubble.appendChild(h('p', null, msg.content));
+        msgDiv.appendChild(bubble);
+        const avatarDiv = h('div', { className: 'sdt-ai-avatar sdt-ai-avatar-user' });
+        setHtml(avatarDiv, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/><circle cx="12" cy="7" r="4"/></svg>');
+        msgDiv.appendChild(avatarDiv);
+        list.appendChild(msgDiv);
+      } else {
+        const msgDiv = h('div', { className: 'sdt-ai-msg sdt-ai-msg-assistant' });
+        const avatarDiv = h('div', { className: 'sdt-ai-avatar sdt-ai-avatar-assistant' });
+        setHtml(avatarDiv, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><polygon points="12 2 15.09 8.26 22 9.27 17 14.14 18.18 21.02 12 17.77 5.82 21.02 7 14.14 2 9.27 8.91 8.26 12 2"/></svg>');
+        msgDiv.appendChild(avatarDiv);
+        const bubble = h('div', { className: 'sdt-ai-bubble sdt-ai-bubble-assistant' });
+        if (msg.parts.length === 0) {
+          bubble.innerHTML = '<div class="sdt-ai-thinking"><span class="sdt-ai-thinking-dot"></span><span class="sdt-ai-thinking-dot"></span><span class="sdt-ai-thinking-dot"></span></div>';
+        } else {
+          for (const part of msg.parts) {
+            if (part.type === 'text') {
+              const textContainer = h('div', { className: 'sdt-ai-part-text' });
+              renderMarkdownInto(textContainer, part.content);
+              bubble.appendChild(textContainer);
+              continue;
+            }
+
+            const toolCall = msg.toolCallsById.get(part.toolCallId);
+            if (toolCall == null) {
+              const missingTool = h('div', { className: 'sdt-ai-tool-card' });
+              const missingBody = h('div', { className: 'sdt-ai-tool-body' });
+              missingBody.appendChild(h('div', { className: 'sdt-ai-tool-label' }, 'Error'));
+              const missingPre = h('pre', { className: 'sdt-ai-tool-pre' });
+              missingPre.appendChild(h('code', null, `Missing tool call state for ${part.toolCallId}`));
+              missingBody.appendChild(missingPre);
+              missingTool.appendChild(missingBody);
+              bubble.appendChild(missingTool);
+              continue;
+            }
+            const toolsContainer = h('div', { className: 'sdt-ai-tools' });
+            toolsContainer.appendChild(renderToolCard(toolCall));
+            bubble.appendChild(toolsContainer);
+          }
+        }
+        msgDiv.appendChild(bubble);
+        list.appendChild(msgDiv);
+      }
+    }
+    messagesArea.appendChild(list);
+    messagesArea.scrollTop = messagesArea.scrollHeight;
+  }
+
+  function renderMarkdownInto(el: HTMLElement, content: string) {
+    function appendBlockWithInlineMarkdown(tag: "p" | "li" | "h1" | "h2" | "h3", className: string, text: string) {
+      const block = h(tag, { className });
+      appendInlineMarkdown(block, text);
+      el.appendChild(block);
+    }
+
+    const lines = content.split('\n');
+    let i = 0;
+    while (i < lines.length) {
+      const line = lines[i];
+
+      if (line.startsWith('```')) {
+        const lang = line.slice(3).trim();
+        const codeLines: string[] = [];
+        i++;
+        while (i < lines.length && !lines[i].startsWith('```')) {
+          codeLines.push(lines[i]);
+          i++;
+        }
+        i++;
+        const block = h('div', { className: 'sdt-ai-code-block' });
+        const header = h('div', { className: 'sdt-ai-code-header' });
+        header.appendChild(h('span', { className: 'sdt-ai-code-lang' }, lang || 'CODE'));
+        const copyBtn = h('button', { className: 'sdt-ai-copy-btn' }, '\u2398');
+        const code = codeLines.join('\n');
+        copyBtn.addEventListener('click', () => {
+          runAsynchronously(navigator.clipboard.writeText(code).then(() => {
+            copyBtn.textContent = '\u2713';
+            setTimeout(() => {
+              copyBtn.textContent = '\u2398';
+            }, 1500);
+          }));
+        });
+        header.appendChild(copyBtn);
+        block.appendChild(header);
+        const pre = h('pre', { className: 'sdt-ai-code-pre' });
+        pre.appendChild(h('code', null, code));
+        block.appendChild(pre);
+        el.appendChild(block);
+        continue;
+      }
+
+      const headingMatch = line.match(/^(#{1,3}) (.+)/);
+      if (headingMatch) {
+        const tag = `h${headingMatch[1].length}` as 'h1' | 'h2' | 'h3';
+        appendBlockWithInlineMarkdown(tag, "sdt-ai-heading", headingMatch[2]);
+        i++;
+        continue;
+      }
+
+      if (/^[-*] /.test(line)) {
+        const ul = h('ul', { className: 'sdt-ai-list' });
+        while (i < lines.length && /^[-*] /.test(lines[i])) {
+          const li = h("li");
+          appendInlineMarkdown(li, lines[i].replace(/^[-*] /, ""));
+          ul.appendChild(li);
+          i++;
+        }
+        el.appendChild(ul);
+        continue;
+      }
+
+      if (/^\d+\. /.test(line)) {
+        const ol = h('ol', { className: 'sdt-ai-list sdt-ai-list-ordered' });
+        while (i < lines.length && /^\d+\. /.test(lines[i])) {
+          const li = h("li");
+          appendInlineMarkdown(li, lines[i].replace(/^\d+\. /, ""));
+          ol.appendChild(li);
+          i++;
+        }
+        el.appendChild(ol);
+        continue;
+      }
+
+      if (line.trim() === '') {
+        i++;
+        continue;
+      }
+
+      appendBlockWithInlineMarkdown("p", "sdt-ai-paragraph", line);
+      i++;
+    }
+  }
+
+  function stringifyForDebug(value: unknown): string {
+    if (value === undefined || typeof value === 'function' || typeof value === 'symbol') {
+      return String(value);
+    }
+    return JSON.stringify(value, null, 2);
+  }
+
+  function getLastItem<T>(items: readonly T[]): T | undefined {
+    return items.length > 0 ? items[items.length - 1] : undefined;
+  }
+
+  function isRecord(value: unknown): value is Record<string, unknown> {
+    return typeof value === 'object' && value !== null && !Array.isArray(value);
+  }
+
+  function expectObject(value: unknown, payload: string): Record<string, unknown> {
+    if (!isRecord(value)) {
+      throw new Error(`SSE payload must be an object: ${payload}`);
+    }
+    return value;
+  }
+
+  function getRequiredStringField(event: Record<string, unknown>, field: string, payload: string): string {
+    const value = event[field];
+    if (typeof value !== 'string') {
+      throw new Error(`SSE event '${String(event.type)}' missing string '${field}': ${payload}`);
+    }
+    return value;
+  }
+
+  function getCurrentAssistantMessage(): AssistantMessage {
+    const lastMessage = getLastItem(messages);
+    if (lastMessage?.role !== 'assistant') {
+      throw new Error('Expected current message to be an assistant message');
+    }
+    return lastMessage;
+  }
+
+  function appendTextDelta(delta: string) {
+    const assistantMessage = getCurrentAssistantMessage();
+    const lastPart = getLastItem(assistantMessage.parts);
+    if (lastPart?.type === 'text') {
+      lastPart.content += delta;
+      return;
+    }
+    assistantMessage.parts.push({ type: 'text', content: delta });
+  }
+
+  function ensureToolPart(assistantMessage: AssistantMessage, toolCallId: string) {
+    const hasPart = assistantMessage.parts.some(part => part.type === 'tool' && part.toolCallId === toolCallId);
+    if (!hasPart) {
+      assistantMessage.parts.push({ type: 'tool', toolCallId });
+    }
+  }
+
+  function findOrCreateToolCall(toolCallId: string, fallbackToolName: string): ToolCall {
+    const assistantMessage = getCurrentAssistantMessage();
+    const existing = assistantMessage.toolCallsById.get(toolCallId);
+    if (existing != null) {
+      if (existing.toolName === 'tool' && fallbackToolName !== 'tool') {
+        existing.toolName = fallbackToolName;
+      }
+      ensureToolPart(assistantMessage, toolCallId);
+      return existing;
+    }
+
+    const created: ToolCall = {
+      id: toolCallId,
+      toolName: fallbackToolName,
+      argsText: null,
+      resultText: null,
+      state: 'running',
+      errorText: null,
+      isExpanded: false,
+    };
+    assistantMessage.toolCallsById.set(toolCallId, created);
+    ensureToolPart(assistantMessage, toolCallId);
+    return created;
+  }
+
+  async function sendMessage(text: string) {
+    if (!text.trim() || aiLoading) return;
+    messages.push({ role: 'user', content: text.trim() });
+    messages.push({ role: 'assistant', parts: [], toolCallsById: new Map<string, ToolCall>() });
+    aiLoading = true;
+    renderMessages();
+    renderInput();
+
+    try {
+      const abortController = new AbortController();
+      activeAiAbortController = abortController;
+      const res = await fetch(`${apiBaseUrl}/api/latest/ai/query/stream`, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json',
+          ...getHeaders(),
+        },
+        signal: abortController.signal,
+        body: JSON.stringify({
+          systemPrompt: 'command-center-ask-ai',
+          tools: ['docs'],
+          quality: 'smart',
+          speed: 'slow',
+          messages: messages
+            .slice(0, -1)
+            .map((m) => ({
+              role: m.role,
+              content: [{ type: 'text', text: m.role === 'user' ? m.content : m.parts.filter(part => part.type === 'text').map(part => part.content).join('') }],
+            })),
+        }),
+      });
+
+      if (!res.ok) {
+        throw new Error(`AI request failed with status ${res.status}`);
+      }
+      if (!res.body) {
+        throw new Error('AI request returned no response body');
+      }
+
+      const reader = res.body.getReader();
+      const decoder = new TextDecoder();
+      let buffer = '';
+
+      while (true) {
+        const { done, value } = await reader.read();
+        if (done) break;
+        buffer += decoder.decode(value, { stream: true });
+        const streamLines = buffer.split('\n');
+        buffer = streamLines.pop() || '';
+
+        for (const streamLine of streamLines) {
+          const line = streamLine.trim();
+          if (line === '' || line.startsWith(':')) continue;
+          if (!line.startsWith('data: ')) {
+            throw new Error(`Unexpected SSE line: ${line}`);
+          }
+
+          const payload = line.slice(6);
+          if (payload === '[DONE]') continue;
+          const event = expectObject(JSON.parse(payload), payload);
+          const eventType = getRequiredStringField(event, 'type', payload);
+
+          switch (eventType) {
+            case 'start':
+            case 'start-step':
+            case 'finish-step':
+            case 'finish':
+            case 'message-metadata':
+            case 'text-start':
+            case 'text-end':
+            case 'reasoning-start':
+            case 'reasoning-delta':
+            case 'reasoning-end':
+            case 'source-url':
+            case 'source-document':
+            case 'file': {
+              break;
+            }
+            case 'text-delta': {
+              const delta = getRequiredStringField(event, 'delta', payload);
+              appendTextDelta(delta);
+              break;
+            }
+            case 'tool-input-start': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const toolName = getRequiredStringField(event, 'toolName', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, toolName);
+              toolCall.state = 'running';
+              toolCall.resultText = null;
+              toolCall.errorText = null;
+              toolCall.argsText = '';
+              break;
+            }
+            case 'tool-input-delta': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const inputTextDelta = getRequiredStringField(event, 'inputTextDelta', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, 'tool');
+              toolCall.argsText = (toolCall.argsText ?? '') + inputTextDelta;
+              break;
+            }
+            case 'tool-input-available': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const toolName = getRequiredStringField(event, 'toolName', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, toolName);
+              toolCall.argsText = stringifyForDebug(event.input);
+              break;
+            }
+            case 'tool-input-error': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const toolName = getRequiredStringField(event, 'toolName', payload);
+              const errorText = getRequiredStringField(event, 'errorText', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, toolName);
+              toolCall.state = 'error';
+              toolCall.errorText = errorText;
+              toolCall.resultText = errorText;
+              break;
+            }
+            case 'tool-output-available': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, 'tool');
+              const preliminary = event.preliminary === true;
+              toolCall.resultText = stringifyForDebug(event.output);
+              if (!preliminary) {
+                toolCall.state = 'success';
+              }
+              break;
+            }
+            case 'tool-output-error': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const errorText = getRequiredStringField(event, 'errorText', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, 'tool');
+              toolCall.state = 'error';
+              toolCall.errorText = errorText;
+              toolCall.resultText = errorText;
+              break;
+            }
+            case 'tool-output-denied': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, 'tool');
+              toolCall.state = 'error';
+              toolCall.errorText = 'Tool output denied';
+              toolCall.resultText = 'Tool output denied';
+              break;
+            }
+            case 'tool-approval-request': {
+              const toolCallId = getRequiredStringField(event, 'toolCallId', payload);
+              const approvalId = getRequiredStringField(event, 'approvalId', payload);
+              const toolCall = findOrCreateToolCall(toolCallId, 'tool');
+              toolCall.state = 'running';
+              toolCall.resultText = `Approval requested (${approvalId})`;
+              break;
+            }
+            case 'abort': {
+              const reason = typeof event.reason === 'string' ? event.reason : 'unknown reason';
+              throw new Error(`AI stream aborted: ${reason}`);
+            }
+            case 'error': {
+              throw new Error(
+                typeof event.errorText === 'string'
+                  ? `AI stream error: ${event.errorText}`
+                  : `AI stream error event: ${payload}`
+              );
+            }
+            default: {
+              if (eventType.startsWith('data-')) {
+                break;
+              }
+              throw new Error(`Unexpected AI stream event type: ${eventType}`);
+            }
+          }
+        }
+
+        renderMessages();
+      }
+    } catch (error) {
+      if (error instanceof DOMException && error.name === 'AbortError') {
+        const assistantMessage = getCurrentAssistantMessage();
+        if (assistantMessage.parts.length === 0) {
+          assistantMessage.parts.push({ type: 'text', content: 'Stopped.' });
+        }
+        renderMessages();
+        return;
+      }
+
+      const message = error instanceof Error ? error.message : 'Unknown AI stream error';
+      const lastMessage = getLastItem(messages);
+      if (lastMessage?.role === 'assistant') {
+        lastMessage.parts = [{ type: 'text', content: message }];
+        lastMessage.toolCallsById.clear();
+      }
+      renderMessages();
+      alert(`AI stream failed: ${message}`);
+    } finally {
+      aiLoading = false;
+      activeAiAbortController = null;
+      renderMessages();
+      renderInput();
+    }
+  }
+
+  const inputWrapper = h('div', { className: 'sdt-ai-input-wrapper' });
+  const input = h('input', {
+    type: 'text',
+    className: 'sdt-ai-input',
+    placeholder: 'Ask anything about Stack Auth...',
+    autocomplete: 'off',
+    autocorrect: 'off',
+    spellcheck: 'false',
+  }) as HTMLInputElement;
+  const sendBtn = h('button', { className: 'sdt-ai-send-btn', title: 'Send' });
+  setHtml(sendBtn, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><line x1="22" y1="2" x2="11" y2="13"/><polygon points="22 2 15 22 11 13 2 9 22 2"/></svg>');
+
+  function renderInput() {
+    input.disabled = false;
+    input.placeholder = messages.length === 0 ? 'Ask anything about Stack Auth...' : 'Ask a follow-up...';
+    if (aiLoading) {
+      sendBtn.classList.add('sdt-ai-send-btn-active');
+      sendBtn.classList.add('sdt-ai-stop-btn');
+      sendBtn.setAttribute('title', 'Stop');
+      setHtml(sendBtn, '<svg width="12" height="12" viewBox="0 0 24 24" fill="currentColor"><rect x="6" y="6" width="12" height="12" rx="2"/></svg>');
+    } else if (input.value.trim()) {
+      sendBtn.classList.add('sdt-ai-send-btn-active');
+      sendBtn.classList.remove('sdt-ai-stop-btn');
+      sendBtn.setAttribute('title', 'Send');
+      setHtml(sendBtn, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><line x1="22" y1="2" x2="11" y2="13"/><polygon points="22 2 15 22 11 13 2 9 22 2"/></svg>');
+    } else {
+      sendBtn.classList.remove('sdt-ai-send-btn-active');
+      sendBtn.classList.remove('sdt-ai-stop-btn');
+      sendBtn.setAttribute('title', 'Send');
+      setHtml(sendBtn, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><line x1="22" y1="2" x2="11" y2="13"/><polygon points="22 2 15 22 11 13 2 9 22 2"/></svg>');
+    }
+  }
+
+  input.addEventListener('input', renderInput);
+  input.addEventListener('keydown', (e) => {
+    if (e.key === 'Enter' && !e.shiftKey) {
+      e.preventDefault();
+      if (aiLoading) {
+        activeAiAbortController?.abort();
+      } else {
+        runAsynchronously(sendMessage(input.value));
+        input.value = '';
+      }
+      renderInput();
+    }
+  });
+  sendBtn.addEventListener('click', () => {
+    if (aiLoading) {
+      activeAiAbortController?.abort();
+    } else {
+      runAsynchronously(sendMessage(input.value));
+      input.value = '';
+    }
+    renderInput();
+  });
+
+  const newChatBtn = h('button', { className: 'sdt-ai-new-chat', title: 'New conversation', style: { display: 'none' } });
+  setHtml(newChatBtn, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><line x1="12" y1="5" x2="12" y2="19"/><line x1="5" y1="12" x2="19" y2="12"/></svg>');
+  newChatBtn.addEventListener('click', () => {
+    if (aiLoading) {
+      activeAiAbortController?.abort();
+    }
+    messages.length = 0;
+    input.value = '';
+    renderMessages();
+    renderInput();
+    newChatBtn.style.display = 'none';
+  });
+
+  inputWrapper.append(input, sendBtn);
+  inputArea.append(newChatBtn, inputWrapper);
+
+  container.append(messagesArea, inputArea);
+  renderMessages();
+  renderInput();
+
+  return container;
+}
+
+// ---------------------------------------------------------------------------
+// Docs tab
+// ---------------------------------------------------------------------------
+
+function createDocsTab(): HTMLElement {
+  return createIframeTab('https://docs.stack-auth.com', 'Stack Auth Documentation', 'Loading documentation\u2026', 'Unable to load documentation');
+}
+
+// ---------------------------------------------------------------------------
+// Dashboard tab
+// ---------------------------------------------------------------------------
+
+function createDashboardTab(app: StackClientApp<true>): HTMLElement {
+  const dashboardUrl = resolveDashboardUrl(app);
+  const isLocalEmulator = envVars.NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR === 'true';
+
+  if (!isLocalEmulator) {
+    const ctr = h('div', { className: 'sdt-iframe-container', style: { display: 'flex', alignItems: 'center', justifyContent: 'center' } });
+    const inner = h('div', { style: { textAlign: 'center', display: 'flex', flexDirection: 'column', gap: '12px', alignItems: 'center' } });
+    inner.appendChild(h('a', { href: dashboardUrl, target: '_blank', rel: 'noopener noreferrer', className: 'sdt-iframe-error-btn', style: { textDecoration: 'none' } }, 'Open Dashboard in New Tab'));
+    ctr.appendChild(inner);
+    return ctr;
+  }
+
+  return createIframeTab(dashboardUrl, 'Stack Auth Dashboard', 'Loading dashboard\u2026', 'Unable to load dashboard', 'The dashboard may require authentication or block framing');
+}
+
+// ---------------------------------------------------------------------------
+// Support tab
+// ---------------------------------------------------------------------------
+
+function createSupportTab(app: StackClientApp<true>): HTMLElement {
+  const container = h('div', { className: 'sdt-support-tab' });
+  const apiBaseUrl = resolveApiBaseUrl(app);
+
+  let subTab: SupportSubTab = 'feedback';
+  const contentArea = h('div', { className: 'sdt-support-content' });
+
+  const subTabBar = createTabBar(
+    [{ id: 'feedback', label: 'Feedback' }, { id: 'feature-requests', label: 'Feature Requests' }],
+    subTab,
+    (id) => {
+      subTab = id as SupportSubTab;
+      subTabBar.setActive(subTab);
+      renderSubTab();
+    },
+    { variant: 'pills' },
+  );
+  container.appendChild(subTabBar.el);
+  container.appendChild(contentArea);
+
+  let feedbackPane: HTMLElement | null = null;
+  let featurePane: HTMLElement | null = null;
+
+  function renderSubTab() {
+    contentArea.innerHTML = '';
+    if (subTab === 'feedback') {
+      if (!feedbackPane) {
+        feedbackPane = createFeedbackForm();
+      }
+      contentArea.appendChild(feedbackPane);
+    } else {
+      if (!featurePane) {
+        featurePane = h('div', { className: 'sdt-support-iframe-pane' });
+        featurePane.appendChild(createIframeTab('https://feedback.stack-auth.com', 'Stack Auth Feature Requests', 'Loading feature requests\u2026', 'Unable to load feature requests'));
+      }
+      contentArea.appendChild(featurePane);
+    }
+  }
+
+  function createFeedbackForm(): HTMLElement {
+    const pane = h('div', { className: 'sdt-support-feedback-pane' });
+    const form = h('form', { className: 'sdt-support-form' });
+
+    let feedbackType: 'feedback' | 'bug' = 'feedback';
+    let status: 'idle' | 'submitting' | 'success' | 'error' = 'idle';
+    let errorMessage = '';
+
+    const nameInput = h('input', { className: 'sdt-support-input', type: 'text', placeholder: 'Your name' }) as HTMLInputElement;
+    const emailInput = h('input', { className: 'sdt-support-input', type: 'email', placeholder: 'you@example.com', required: 'true' }) as HTMLInputElement;
+    const messageInput = h('textarea', { className: 'sdt-support-textarea', placeholder: "What's on your mind?", required: 'true', rows: '5' }) as HTMLTextAreaElement;
+
+    function render() {
+      form.innerHTML = '';
+
+      if (status === 'success') {
+        const successDiv = h('div', { className: 'sdt-support-status sdt-support-status-success' });
+        const icon = h('div', { className: 'sdt-support-status-icon' });
+        setHtml(icon, '<svg width="20" height="20" viewBox="0 0 20 20" fill="none"><path d="M6 10l3 3 5-6" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/></svg>');
+        successDiv.append(
+          icon,
+          h('div', { className: 'sdt-support-status-title' }, 'Feedback sent'),
+          h('div', { className: 'sdt-support-status-msg' }, "Thank you! We'll get back to you soon."),
+        );
+        const resetBtn = h('button', { className: 'sdt-support-submit', style: { marginTop: '12px', width: 'auto' } }, 'Send another');
+        resetBtn.addEventListener('click', () => {
+          status = 'idle';
+          render();
+        });
+        successDiv.appendChild(resetBtn);
+        form.appendChild(successDiv);
+        return;
+      }
+
+      if (status === 'error') {
+        const errDiv = h('div', { className: 'sdt-support-status sdt-support-status-error' });
+        const icon = h('div', { className: 'sdt-support-status-icon' });
+        setHtml(icon, '<svg width="20" height="20" viewBox="0 0 20 20" fill="none"><path d="M10 6v5m0 3h.01" stroke="currentColor" stroke-width="2" stroke-linecap="round"/></svg>');
+        errDiv.append(
+          icon,
+          h('div', { className: 'sdt-support-status-title' }, 'Failed to send'),
+          h('div', { className: 'sdt-support-status-msg' }, errorMessage || 'Please try again.'),
+        );
+        const retryBtn = h('button', { className: 'sdt-support-submit', style: { marginTop: '12px', width: 'auto' } }, 'Try again');
+        retryBtn.addEventListener('click', () => {
+          status = 'idle';
+          errorMessage = '';
+          render();
+        });
+        errDiv.appendChild(retryBtn);
+        form.appendChild(errDiv);
+        return;
+      }
+
+      const nameField = h('div', { className: 'sdt-support-field' });
+      const nameLabel = h('label', { className: 'sdt-support-label' }, 'Name ');
+      nameLabel.appendChild(h('span', { className: 'sdt-support-optional' }, 'optional'));
+      nameField.append(nameLabel, nameInput);
+      form.appendChild(nameField);
+
+      const emailField = h('div', { className: 'sdt-support-field' });
+      emailField.append(h('label', { className: 'sdt-support-label' }, 'Email'), emailInput);
+      form.appendChild(emailField);
+
+      const msgField = h('div', { className: 'sdt-support-field' });
+      msgField.append(h('label', { className: 'sdt-support-label' }, feedbackType === 'bug' ? 'Description' : 'Message'), messageInput);
+      messageInput.placeholder = feedbackType === 'bug' ? 'Steps to reproduce, expected vs. actual behavior\u2026' : "What's on your mind?";
+      form.appendChild(msgField);
+
+      const typeCards = h('div', { className: 'sdt-support-type-cards' });
+      const feedbackBtn = h('button', { type: 'button', className: `sdt-support-type-card ${feedbackType === 'feedback' ? 'sdt-support-type-card-active' : ''}` });
+      setHtml(feedbackBtn, '<svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M21 15a2 2 0 0 1-2 2H7l-4 4V5a2 2 0 0 1 2-2h14a2 2 0 0 1 2 2z"/></svg><span>Feedback</span>');
+      feedbackBtn.addEventListener('click', () => {
+        feedbackType = 'feedback';
+        render();
+      });
+      const bugBtn = h('button', { type: 'button', className: `sdt-support-type-card ${feedbackType === 'bug' ? 'sdt-support-type-card-active' : ''}` });
+      setHtml(bugBtn, '<svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M8 2l1.88 1.88M14.12 3.88L16 2M9 7.13v-1a3.003 3.003 0 1 1 6 0v1"/><path d="M12 20c-3.3 0-6-2.7-6-6v-3a4 4 0 0 1 4-4h4a4 4 0 0 1 4 4v3c0 3.3-2.7 6-6 6"/><path d="M12 20v-9M6.53 9C4.6 8.8 3 7.1 3 5M6 13H2M6 17H3M21 5c0 2.1-1.6 3.8-3.53 4M18 13h4M21 17h-3"/></svg><span>Bug Report</span>');
+      bugBtn.addEventListener('click', () => {
+        feedbackType = 'bug';
+        render();
+      });
+      typeCards.append(feedbackBtn, bugBtn);
+      form.appendChild(typeCards);
+
+      const submitBtn = h('button', { type: 'submit', className: 'sdt-support-submit' });
+      setHtml(submitBtn, '<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2.5" stroke-linecap="round" stroke-linejoin="round"><path d="M12 19V5m-7 7l7-7 7 7"/></svg> Submit');
+      submitBtn.disabled = status === 'submitting';
+      form.appendChild(submitBtn);
+
+      const channels = h('div', { className: 'sdt-support-channels' });
+      channels.innerHTML = `
+        <a href="https://discord.stack-auth.com" target="_blank" rel="noopener noreferrer" class="sdt-support-channel">
+          <svg width="16" height="16" viewBox="0 0 24 24" fill="currentColor"><path d="M20.317 4.37a19.791 19.791 0 0 0-4.885-1.515.074.074 0 0 0-.079.037c-.21.375-.444.864-.608 1.25a18.27 18.27 0 0 0-5.487 0 12.64 12.64 0 0 0-.617-1.25.077.077 0 0 0-.079-.037A19.736 19.736 0 0 0 3.677 4.37a.07.07 0 0 0-.032.027C.533 9.046-.32 13.58.099 18.057a.082.082 0 0 0 .031.057 19.9 19.9 0 0 0 5.993 3.03.078.078 0 0 0 .084-.028c.462-.63.874-1.295 1.226-1.994a.076.076 0 0 0-.041-.106 13.107 13.107 0 0 1-1.872-.892.077.077 0 0 1-.008-.128 10.2 10.2 0 0 0 .372-.292.074.074 0 0 1 .077-.01c3.928 1.793 8.18 1.793 12.062 0a.074.074 0 0 1 .078.01c.12.098.246.198.373.292a.077.077 0 0 1-.006.127 12.299 12.299 0 0 1-1.873.892.077.077 0 0 0-.041.107c.36.698.772 1.362 1.225 1.993a.076.076 0 0 0 .084.028 19.839 19.839 0 0 0 6.002-3.03.077.077 0 0 0 .032-.054c.5-5.177-.838-9.674-3.549-13.66a.061.061 0 0 0-.031-.03zM8.02 15.33c-1.183 0-2.157-1.085-2.157-2.419 0-1.333.956-2.419 2.157-2.419 1.21 0 2.176 1.095 2.157 2.42 0 1.333-.956 2.418-2.157 2.418zm7.975 0c-1.183 0-2.157-1.085-2.157-2.419 0-1.333.955-2.419 2.157-2.419 1.21 0 2.176 1.095 2.157 2.42 0 1.333-.946 2.418-2.157 2.418z"/></svg>
+          <span>Discord</span>
+        </a>
+        <a href="mailto:team@stack-auth.com" class="sdt-support-channel">
+          <svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="2" y="4" width="20" height="16" rx="2"/><path d="m22 7-8.97 5.7a1.94 1.94 0 0 1-2.06 0L2 7"/></svg>
+          <span>Email</span>
+        </a>
+        <a href="https://github.com/stack-auth/stack-auth" target="_blank" rel="noopener noreferrer" class="sdt-support-channel">
+          <svg width="16" height="16" viewBox="0 0 24 24" fill="currentColor"><path d="M12 0C5.374 0 0 5.373 0 12c0 5.302 3.438 9.8 8.207 11.387.599.111.793-.261.793-.577v-2.234c-3.338.726-4.033-1.416-4.033-1.416-.546-1.387-1.333-1.756-1.333-1.756-1.089-.745.083-.729.083-.729 1.205.084 1.839 1.237 1.839 1.237 1.07 1.834 2.807 1.304 3.492.997.107-.775.418-1.305.762-1.604-2.665-.305-5.467-1.334-5.467-5.931 0-1.311.469-2.381 1.236-3.221-.124-.303-.535-1.524.117-3.176 0 0 1.008-.322 3.301 1.23A11.509 11.509 0 0 1 12 5.803c1.02.005 2.047.138 3.006.404 2.291-1.552 3.297-1.23 3.297-1.23.653 1.653.242 2.874.118 3.176.77.84 1.235 1.911 1.235 3.221 0 4.609-2.807 5.624-5.479 5.921.43.372.823 1.102.823 2.222v3.293c0 .319.192.694.801.576C20.566 21.797 24 17.3 24 12c0-6.627-5.373-12-12-12z"/></svg>
+          <span>GitHub</span>
+        </a>`;
+      form.appendChild(channels);
+    }
+
+    form.addEventListener('submit', (e) => {
+      e.preventDefault();
+      if (!emailInput.value.trim() || !messageInput.value.trim()) return;
+      runAsynchronously(async () => {
+        status = 'submitting';
+        render();
+        try {
+          const response = await fetch(`${apiBaseUrl}/api/latest/internal/feedback`, {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json', 'Accept': 'application/json' },
+            body: JSON.stringify({
+              name: nameInput.value.trim() || undefined,
+              email: emailInput.value.trim(),
+              message: messageInput.value.trim(),
+              feedback_type: feedbackType,
+            }),
+          });
+          if (!response.ok) {
+            throw new Error(`Failed to send: ${response.status} ${response.statusText}`);
+          }
+          const result = await response.json();
+          if (!result.success) {
+            throw new Error(result.message || 'Failed to send feedback');
+          }
+          status = 'success';
+          messageInput.value = '';
+        } catch (err: any) {
+          status = 'error';
+          errorMessage = err.message || 'An unexpected error occurred';
+        }
+        render();
+      });
+    });
+
+    render();
+    pane.appendChild(form);
+    return pane;
+  }
+
+  renderSubTab();
+  return container;
+}
+
+// ---------------------------------------------------------------------------
+// Components tab
+// ---------------------------------------------------------------------------
+
+function createComponentsTab(app: StackClientApp<true>): HTMLElement {
+  const container = h('div', { className: 'sdt-pg-layout' });
+  const apiBaseUrl = resolveApiBaseUrl(app);
+  const urls = app.urls;
+  const urlOptions: HandlerUrlOptions = app[stackAppInternalsSymbol].getConstructorOptions().urls ?? {};
+
+  const PAGE_ENTRIES: { key: keyof HandlerUrls; label: string }[] = [
+    { key: 'signIn' as any, label: 'Sign-in' },
+    { key: 'signUp' as any, label: 'Sign-up' },
+    { key: 'forgotPassword' as any, label: 'Forgot password' },
+    { key: 'passwordReset' as any, label: 'Password reset' },
+    { key: 'emailVerification' as any, label: 'Email verification' },
+    { key: 'accountSettings' as any, label: 'Account settings' },
+    { key: 'teamInvitation' as any, label: 'Team invitation' },
+    { key: 'mfa' as any, label: 'MFA' },
+    { key: 'onboarding' as any, label: 'Onboarding' },
+    { key: 'error' as any, label: 'Error' },
+  ];
+
+  type PageClassification = 'handler-component' | 'hosted' | 'custom';
+
+  const classificationLabel: Record<PageClassification, string> = {
+    'handler-component': 'Handler',
+    'hosted': 'Hosted',
+    'custom': 'Custom',
+  };
+
+  const classificationBadgeClass: Record<PageClassification, string> = {
+    'handler-component': 'sdt-pg-badge-handler',
+    'hosted': 'sdt-pg-badge-hosted',
+    'custom': 'sdt-pg-badge-custom',
+  };
+
+  function classifyPage(key: keyof HandlerUrls): { classification: PageClassification; version: number | null } {
+    const target: HandlerUrlTarget = (urlOptions as any)[key] ?? (urlOptions as any).default ?? { type: 'handler-component' };
+    if (typeof target === 'string') {
+      return { classification: 'custom', version: null };
+    }
+    if ('type' in target) {
+      if (target.type === 'custom') {
+        return { classification: 'custom', version: (target as any).version ?? null };
+      }
+      return { classification: target.type as PageClassification, version: null };
+    }
+    return { classification: 'handler-component', version: null };
+  }
+
+  type PageInfo = {
+    key: keyof HandlerUrls;
+    label: string;
+    url: string;
+    classification: PageClassification;
+    version: number | null;
+    versionStatus: string;
+    versionChangelogs: { version: number; changelog: string }[];
+  };
+
+  let latestVersions: Map<string, { version: number; changelogs: Record<number, string> }> | null = null;
+  let selectedKey: string | null = null;
+
+  runAsynchronously(
+    fetch(`${apiBaseUrl}/api/latest/internal/component-versions`)
+      .then((r) => r.json())
+      .then((data) => {
+        latestVersions = new Map(Object.entries(data.versions ?? {}));
+        renderSidebar();
+      })
+      .catch(() => {})
+  );
+
+  function buildPages(): PageInfo[] {
+    return PAGE_ENTRIES.map((entry) => {
+      const { classification, version } = classifyPage(entry.key);
+      let versionStatus = 'current';
+      let versionChangelogs: { version: number; changelog: string }[] = [];
+
+      if (classification === 'custom' && version != null && latestVersions) {
+        const info = latestVersions.get(entry.key as string);
+        if (info && version < info.version) {
+          versionStatus = 'outdated';
+          versionChangelogs = Object.entries(info.changelogs)
+            .map(([v, cl]) => ({ version: Number(v), changelog: cl }))
+            .filter((e) => e.version > version)
+            .sort((a, b) => a.version - b.version);
+        }
+      }
+
+      return {
+        key: entry.key,
+        label: entry.label,
+        url: (urls as any)[entry.key] || '',
+        classification,
+        version,
+        versionStatus,
+        versionChangelogs,
+      };
+    });
+  }
+
+  const sidebar = h('div', { className: 'sdt-pg-sidebar' });
+  const mainArea = h('div', { className: 'sdt-pg-main' });
+
+  function renderSidebar() {
+    sidebar.innerHTML = '';
+    const pages = buildPages();
+    const outdatedCount = pages.filter((p) => p.versionStatus === 'outdated').length;
+
+    const head = h('div', { className: 'sdt-pg-sidebar-head' });
+    head.appendChild(h('span', { className: 'sdt-pg-sidebar-title' }, 'Pages'));
+    head.appendChild(h('span', { className: 'sdt-pg-sidebar-count' }, String(pages.length)));
+    if (outdatedCount > 0) {
+      head.appendChild(h('span', { className: 'sdt-pg-sidebar-warn' }, `${outdatedCount} outdated`));
+    }
+    sidebar.appendChild(head);
+
+    const list = h('div', { className: 'sdt-pg-list' });
+    for (const page of pages) {
+      const isOutdated = page.versionStatus === 'outdated';
+      const item = h('div', {
+        className: `sdt-pg-item ${isOutdated ? 'sdt-pg-item-warn' : ''}`,
+        'data-selected': String(selectedKey === page.key),
+      });
+      const dotClass = isOutdated
+        ? 'sdt-pg-item-dot-warn'
+        : page.classification === 'custom'
+          ? 'sdt-pg-item-dot-custom'
+          : 'sdt-pg-item-dot-handler';
+      item.appendChild(h('span', { className: `sdt-pg-item-dot ${dotClass}` }));
+      item.appendChild(h('span', { className: 'sdt-pg-item-label' }, page.label));
+      if (isOutdated) {
+        item.appendChild(h('span', { className: 'sdt-pg-badge sdt-pg-badge-outdated' }, 'Outdated'));
+      } else {
+        item.appendChild(h('span', { className: `sdt-pg-badge ${classificationBadgeClass[page.classification]}` }, classificationLabel[page.classification]));
+      }
+      item.addEventListener('click', () => {
+        selectedKey = page.key as string;
+        renderSidebar();
+        renderDetail(page);
+      });
+      list.appendChild(item);
+    }
+    sidebar.appendChild(list);
+  }
+
+  function renderDetail(page: PageInfo) {
+    mainArea.innerHTML = '';
+    const detail = h('div', { className: 'sdt-pg-detail' });
+
+    const header = h('div', { className: 'sdt-pg-header' });
+    const headerTop = h('div', { className: 'sdt-pg-header-top' });
+    headerTop.appendChild(h('h3', { className: 'sdt-pg-title' }, `${page.label} Page`));
+    if (page.versionStatus === 'outdated') {
+      headerTop.appendChild(h('span', { className: 'sdt-pg-badge sdt-pg-badge-outdated' }, 'Outdated'));
+    }
+    headerTop.appendChild(h('span', { className: `sdt-pg-badge ${classificationBadgeClass[page.classification]}` }, classificationLabel[page.classification]));
+    header.appendChild(headerTop);
+
+    const redirectMethod = `stackApp.redirectTo${(page.key as string).charAt(0).toUpperCase()}${(page.key as string).slice(1)}()`;
+    const codeRow = h('div', { className: 'sdt-pg-code-inline' });
+    codeRow.appendChild(h('code', { className: 'sdt-pg-code' }, redirectMethod));
+    const viewBtn = h('button', { className: 'sdt-pg-copy-btn' }, 'View');
+    viewBtn.addEventListener('click', () => {
+      const resolved = new URL(page.url, window.location.origin);
+      if (resolved.origin === window.location.origin) {
+        window.location.href = resolved.toString();
+      } else {
+        window.open(resolved.toString(), '_blank', 'noopener,noreferrer');
+      }
+    });
+    codeRow.appendChild(viewBtn);
+    header.appendChild(codeRow);
+    detail.appendChild(header);
+
+    const prompt = getPagePrompt(page.key as string, page.version ?? undefined);
+    if (prompt) {
+      const isOutdated = page.versionStatus === 'outdated';
+      const showPrompt = page.classification === 'handler-component' || page.classification === 'hosted' || isOutdated;
+      if (showPrompt) {
+        let promptText: string;
+        if (isOutdated && prompt.upgradePrompt) {
+          promptText = prompt.upgradePrompt;
+        } else if (prompt.fullPrompt) {
+          promptText = prompt.fullPrompt;
+        } else {
+          promptText = '';
+        }
+
+        if (promptText) {
+          const section = h('div', { className: 'sdt-pg-section' });
+          section.appendChild(h('div', { className: 'sdt-pg-section-label' }, isOutdated ? 'Use this prompt to upgrade your component:' : 'Customization prompt:'));
+          section.appendChild(h('pre', { className: 'sdt-pg-pre' }, promptText));
+          const footer = h('div', { className: 'sdt-pg-section-footer' });
+          const copyBtn = h('button', { className: 'sdt-pg-copy-btn' }, 'Copy prompt');
+          copyBtn.addEventListener('click', () => {
+            runAsynchronously(navigator.clipboard.writeText(promptText).then(() => {
+              copyBtn.textContent = '\u2713 Copied';
+              setTimeout(() => {
+                copyBtn.textContent = 'Copy prompt';
+              }, 1500);
+            }));
+          });
+          footer.appendChild(copyBtn);
+          section.appendChild(footer);
+          detail.appendChild(section);
+        }
+      }
+    }
+
+    const urlRow = h('div', { className: 'sdt-pg-url-row' });
+    urlRow.appendChild(h('span', { className: 'sdt-pg-url-label' }, 'URL'));
+    urlRow.appendChild(h('a', { href: page.url, target: '_blank', rel: 'noopener noreferrer', className: 'sdt-pg-url' }, page.url));
+    detail.appendChild(urlRow);
+
+    mainArea.appendChild(detail);
+  }
+
+  function renderEmptyMain() {
+    mainArea.innerHTML = '';
+    const empty = h('div', { className: 'sdt-pg-empty' });
+    const icon = h('div', { className: 'sdt-pg-empty-icon' });
+    setHtml(icon, '<svg width="32" height="32" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="1.5" stroke-linecap="round" stroke-linejoin="round"><rect x="3" y="3" width="7" height="7" rx="1"/><rect x="14" y="3" width="7" height="7" rx="1"/><rect x="3" y="14" width="7" height="7" rx="1"/><rect x="14" y="14" width="7" height="7" rx="1"/></svg>');
+    empty.appendChild(icon);
+    empty.appendChild(h('div', { className: 'sdt-pg-empty-text' }, 'Select a page to inspect'));
+    empty.appendChild(h('div', { className: 'sdt-pg-empty-sub' }, 'View configuration, preview, and upgrade prompts'));
+    mainArea.appendChild(empty);
+  }
+
+  renderSidebar();
+  renderEmptyMain();
+
+  container.append(sidebar, mainArea);
+  return container;
+}
+
+// ---------------------------------------------------------------------------
+// Panel (main shell with tab bar and content area)
+// ---------------------------------------------------------------------------
+
+function createPanel(
+  app: StackClientApp<true>,
+  state: ReturnType<typeof createStateStore>,
+  logStore: LogStore,
+  onClose: () => void,
+): { element: HTMLElement, cleanup: () => void } {
+  const panel = h('div', { className: 'sdt-panel' });
+  panel.style.width = state.get().panelWidth + 'px';
+  panel.style.height = state.get().panelHeight + 'px';
+
+  const inner = h('div', { className: 'sdt-panel-inner' });
+
+  const closeBtn = h('button', { className: 'sdt-close-btn', 'aria-label': 'Close' });
+  setHtml(closeBtn, '<svg width="14" height="14" viewBox="0 0 14 14" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round"><line x1="3" y1="3" x2="11" y2="11"/><line x1="11" y1="3" x2="3" y2="11"/></svg>');
+  closeBtn.addEventListener('click', onClose);
+
+  const tabBar = createTabBar(TABS, state.get().activeTab, (id) => {
+    state.update({ activeTab: id as TabId });
+    showTab(id as TabId);
+  }, { trailing: closeBtn });
+  inner.appendChild(tabBar.el);
+
+  const content = h('div', { className: 'sdt-content' });
+  const layers = h('div', { className: 'sdt-tab-layers' });
+  content.appendChild(layers);
+  inner.appendChild(content);
+
+  const mountedPanes = new Map<TabId, HTMLElement>();
+  const cleanups: Array<() => void> = [];
+
+  function mountTab(pane: HTMLElement, result: TabResult | HTMLElement) {
+    if ('element' in result) {
+      pane.appendChild(result.element);
+      if (result.cleanup) {
+        cleanups.push(result.cleanup);
+      }
+    } else {
+      pane.appendChild(result);
+    }
+  }
+
+  function getOrCreatePane(tabId: TabId): HTMLElement {
+    if (mountedPanes.has(tabId)) {
+      return mountedPanes.get(tabId)!;
+    }
+    const pane = h('div', { className: 'sdt-tab-pane' });
+    switch (tabId) {
+      case 'overview': {
+        mountTab(pane, createOverviewTab(app));
+        break;
+      }
+      case 'components': {
+        mountTab(pane, createComponentsTab(app));
+        break;
+      }
+      case 'ai': {
+        mountTab(pane, createAITab(app));
+        break;
+      }
+      case 'console': {
+        mountTab(pane, createConsoleTab(app, logStore, state));
+        break;
+      }
+      case 'docs': {
+        mountTab(pane, createDocsTab());
+        break;
+      }
+      case 'dashboard': {
+        mountTab(pane, createDashboardTab(app));
+        break;
+      }
+      case 'support': {
+        mountTab(pane, createSupportTab(app));
+        break;
+      }
+    }
+    mountedPanes.set(tabId, pane);
+    layers.appendChild(pane);
+    return pane;
+  }
+
+  function showTab(tabId: TabId) {
+    const pane = getOrCreatePane(tabId);
+    tabBar.setActive(tabId);
+    for (const [, p] of mountedPanes) {
+      p.classList.remove('sdt-tab-pane-active');
+    }
+    pane.classList.add('sdt-tab-pane-active');
+  }
+
+  showTab(state.get().activeTab);
+
+  function addResizeHandle(edge: 'top' | 'left' | 'top-left') {
+    const handle = h('div', { className: `sdt-resize-handle sdt-resize-${edge}` });
+    let startX = 0;
+    let startY = 0;
+    let startW = 0;
+    let startH = 0;
+
+    handle.addEventListener('pointerdown', (e) => {
+      e.preventDefault();
+      handle.setPointerCapture(e.pointerId);
+      startX = e.clientX;
+      startY = e.clientY;
+      startW = panel.offsetWidth;
+      startH = panel.offsetHeight;
+    });
+
+    handle.addEventListener('pointermove', (e) => {
+      if (!handle.hasPointerCapture(e.pointerId)) return;
+      const dx = startX - e.clientX;
+      const dy = startY - e.clientY;
+      if (edge === 'left' || edge === 'top-left') {
+        const newW = Math.max(400, Math.min(startW + dx, window.innerWidth - 32));
+        panel.style.width = newW + 'px';
+      }
+      if (edge === 'top' || edge === 'top-left') {
+        const newH = Math.max(300, Math.min(startH + dy, window.innerHeight - 80));
+        panel.style.height = newH + 'px';
+      }
+    });
+
+    handle.addEventListener('pointerup', (e) => {
+      handle.releasePointerCapture(e.pointerId);
+      state.update({ panelWidth: panel.offsetWidth, panelHeight: panel.offsetHeight });
+    });
+
+    panel.appendChild(handle);
+  }
+
+  addResizeHandle('top');
+  addResizeHandle('left');
+  addResizeHandle('top-left');
+
+  panel.appendChild(inner);
+  return {
+    element: panel,
+    cleanup: () => {
+      for (const fn of cleanups) fn();
+    },
+  };
+}
+
+// ===========================================================================================
+// Main entry point
+// ===========================================================================================
+
+export function createDevTool(app: StackClientApp<true>): () => void {
+  if (typeof document === 'undefined' || typeof document.createElement !== 'function') {
+    return () => {};
+  }
+  const body = Reflect.get(document, 'body');
+  if (!hasAppendChild(body)) return () => {};
+
+  const root = document.createElement('div');
+  root.id = '__stack-dev-tool-root';
+  body.appendChild(root);
+
+  const wrapper = h('div', { className: 'stack-devtool' });
+  root.appendChild(wrapper);
+
+  const style = document.createElement('style');
+  style.textContent = devToolCSS;
+  wrapper.appendChild(style);
+
+  const state = createStateStore();
+  const logStore = getGlobalLogStore();
+
+  let panel: { element: HTMLElement, cleanup: () => void } | null = null;
+
+  function openPanel() {
+    if (panel) return;
+    panel = createPanel(app, state, logStore, closePanel);
+    wrapper.appendChild(panel.element);
+  }
+
+  function closePanel() {
+    if (!panel) return;
+    const closing = panel;
+    panel = null;
+    closing.cleanup();
+    closing.element.classList.add('sdt-panel-exiting');
+    setTimeout(() => {
+      if (wrapper.contains(closing.element)) {
+        wrapper.removeChild(closing.element);
+      }
+    }, 150);
+  }
+
+  function togglePanel() {
+    if (state.get().isOpen) {
+      state.update({ isOpen: false });
+      closePanel();
+    } else {
+      state.update({ isOpen: true });
+      openPanel();
+    }
+  }
+
+  const trigger = createTrigger(togglePanel);
+  wrapper.appendChild(trigger);
+
+  if (state.get().isOpen) {
+    openPanel();
+  }
+
+  const removeRequestListener = app[stackAppInternalsSymbol].addRequestListener((entry: RequestLogEntry) => {
+    const timestamp = Date.now();
+    logStore.addApiLog({
+      id: nextId(),
+      timestamp,
+      method: entry.method,
+      url: entry.path,
+      status: entry.status,
+      duration: entry.duration,
+      error: entry.error,
+    });
+    if (entry.error) {
+      logStore.addEventLog({ id: nextId(), timestamp, type: 'error', message: `Network error on ${entry.method} ${entry.path}: ${entry.error}` });
+    } else if (entry.status && entry.status >= 400) {
+      logStore.addEventLog({ id: nextId(), timestamp, type: 'error', message: `API error ${entry.status} on ${entry.method} ${entry.path}` });
+    }
+  });
+
+  return () => {
+    removeRequestListener();
+    panel?.cleanup();
+    if (root.parentNode) {
+      root.parentNode.removeChild(root);
+    }
+  };
+}
+
+// END_PLATFORM
diff --git a/packages/template/src/dev-tool/dev-tool-styles.ts b/packages/template/src/dev-tool/dev-tool-styles.ts
new file mode 100644
index 0000000000..39064588f4
--- /dev/null
+++ b/packages/template/src/dev-tool/dev-tool-styles.ts
@@ -0,0 +1,2821 @@
+// Theme-aware CSS for the dev tool indicator
+// Respects Stack theme (data-stack-theme attribute) and system prefers-color-scheme
+// Uses .stack-devtool scope to avoid conflicts with host app styles
+
+export const devToolCSS = `
+  .stack-devtool {
+    --sdt-bg: #0a0a0b;
+    --sdt-bg-elevated: #141416;
+    --sdt-bg-hover: #1c1c1f;
+    --sdt-bg-active: #232326;
+    --sdt-bg-subtle: #111113;
+    --sdt-border: #2a2a2e;
+    --sdt-border-subtle: #1e1e22;
+    --sdt-text: #ececef;
+    --sdt-text-secondary: #8b8b93;
+    --sdt-text-tertiary: #5c5c66;
+    --sdt-accent: #6366f1;
+    --sdt-accent-hover: #818cf8;
+    --sdt-accent-muted: rgba(99, 102, 241, 0.15);
+    --sdt-success: #22c55e;
+    --sdt-success-muted: rgba(34, 197, 94, 0.15);
+    --sdt-warning: #eab308;
+    --sdt-warning-muted: rgba(234, 179, 8, 0.15);
+    --sdt-error: #ef4444;
+    --sdt-error-muted: rgba(239, 68, 68, 0.15);
+    --sdt-info: #3b82f6;
+    --sdt-info-muted: rgba(59, 130, 246, 0.15);
+    --sdt-radius: 8px;
+    --sdt-radius-sm: 4px;
+    --sdt-radius-lg: 12px;
+    --sdt-font: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
+    --sdt-font-mono: 'SF Mono', SFMono-Regular, ui-monospace, 'DejaVu Sans Mono', Menlo, Consolas, monospace;
+    --sdt-shadow: 0 25px 50px -12px rgba(0, 0, 0, 0.5), 0 0 0 1px rgba(255, 255, 255, 0.05);
+    --sdt-trigger-shadow: 0 4px 12px rgba(0, 0, 0, 0.4), 0 0 0 1px rgba(255, 255, 255, 0.08);
+
+    all: initial;
+    font-family: var(--sdt-font);
+    color: var(--sdt-text);
+    font-size: 13px;
+    line-height: 1.5;
+    -webkit-font-smoothing: antialiased;
+    -moz-osx-font-smoothing: grayscale;
+    box-sizing: border-box;
+  }
+
+  .stack-devtool *, .stack-devtool *::before, .stack-devtool *::after {
+    box-sizing: border-box;
+  }
+
+  /* Trigger pill */
+  .stack-devtool .sdt-trigger {
+    position: fixed;
+    z-index: 99999;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+    height: 36px;
+    padding: 0 12px 0 8px;
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border);
+    border-radius: 20px;
+    cursor: grab;
+    box-shadow: var(--sdt-trigger-shadow);
+    transition: background 0.2s ease, border-color 0.2s ease, box-shadow 0.2s ease;
+    user-select: none;
+    touch-action: none;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 600;
+    color: var(--sdt-text);
+    letter-spacing: 0.5px;
+  }
+
+  .stack-devtool .sdt-trigger:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-accent);
+    box-shadow: var(--sdt-trigger-shadow), 0 0 0 1px var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-trigger:active {
+    cursor: grabbing;
+  }
+
+  .stack-devtool .sdt-trigger-logo {
+    width: 20px;
+    height: 20px;
+    border-radius: 50%;
+    background: var(--sdt-accent);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    color: white;
+    line-height: 0;
+  }
+
+  .stack-devtool .sdt-trigger-text {
+    font-size: 11px;
+    font-weight: 700;
+    letter-spacing: 1.5px;
+    text-transform: uppercase;
+    color: var(--sdt-text-secondary);
+  }
+
+  /* Panel overlay */
+  .stack-devtool .sdt-panel {
+    position: fixed;
+    bottom: 60px;
+    right: 16px;
+    z-index: 99998;
+    width: 800px;
+    max-width: calc(100vw - 32px);
+    height: 520px;
+    max-height: calc(100vh - 80px);
+    background: var(--sdt-bg);
+    border: 1px solid var(--sdt-border);
+    border-radius: var(--sdt-radius-lg);
+    box-shadow: var(--sdt-shadow);
+    display: flex;
+    flex-direction: column;
+    overflow: visible;
+  }
+
+  .stack-devtool .sdt-panel-inner {
+    display: flex;
+    flex-direction: column;
+    width: 100%;
+    height: 100%;
+    overflow: hidden;
+    border-radius: var(--sdt-radius-lg);
+    animation: sdt-panel-enter 0.2s ease-out;
+  }
+
+  @keyframes sdt-panel-enter {
+    from {
+      opacity: 0;
+      transform: scale(0.95) translateY(8px);
+    }
+    to {
+      opacity: 1;
+      transform: scale(1) translateY(0);
+    }
+  }
+
+  .stack-devtool .sdt-panel-exiting {
+    animation: sdt-panel-exit 0.15s ease-in forwards;
+  }
+
+  @keyframes sdt-panel-exit {
+    from {
+      opacity: 1;
+      transform: scale(1) translateY(0);
+    }
+    to {
+      opacity: 0;
+      transform: scale(0.95) translateY(8px);
+    }
+  }
+
+  /* Tab bar */
+  .stack-devtool .sdt-tabbar {
+    position: relative;
+    display: flex;
+    align-items: center;
+    height: 44px;
+    padding: 0 8px;
+    background: var(--sdt-bg-subtle);
+    border-bottom: 1px solid var(--sdt-border);
+    flex-shrink: 0;
+    gap: 2px;
+    overflow-x: auto;
+  }
+
+  .stack-devtool .sdt-tab-indicator {
+    position: absolute;
+    top: 6px;
+    left: 0;
+    height: 32px;
+    background: var(--sdt-bg-active);
+    border-radius: var(--sdt-radius);
+    transition: transform 0.2s cubic-bezier(0.25, 0.46, 0.45, 0.94),
+                width 0.2s cubic-bezier(0.25, 0.46, 0.45, 0.94);
+    pointer-events: none;
+    z-index: 0;
+  }
+
+  .stack-devtool .sdt-tab {
+    position: relative;
+    z-index: 1;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+    height: 32px;
+    padding: 0 12px;
+    background: transparent;
+    border: none;
+    border-radius: var(--sdt-radius);
+    cursor: pointer;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 500;
+    color: var(--sdt-text-secondary);
+    transition: color 0.15s ease;
+    white-space: nowrap;
+    outline: none;
+  }
+
+  .stack-devtool .sdt-tab:hover {
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-tab[data-active="true"] {
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-tab-icon {
+    width: 14px;
+    height: 14px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-tabbar-spacer {
+    flex: 1;
+  }
+
+  .stack-devtool .sdt-close-btn {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    width: 28px;
+    height: 28px;
+    background: transparent;
+    border: none;
+    border-radius: var(--sdt-radius-sm);
+    cursor: pointer;
+    color: var(--sdt-text-tertiary);
+    transition: all 0.15s ease;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-close-btn:hover {
+    color: var(--sdt-text);
+    background: var(--sdt-bg-hover);
+  }
+
+  /* Tab content area */
+  .stack-devtool .sdt-content {
+    flex: 1;
+    position: relative;
+    overflow: hidden;
+    min-height: 0;
+  }
+
+  .stack-devtool .sdt-tab-layers {
+    position: absolute;
+    inset: 0;
+  }
+
+  .stack-devtool .sdt-tab-pane {
+    position: absolute;
+    inset: 0;
+    overflow-y: auto;
+    overflow-x: hidden;
+    padding: 16px;
+    visibility: hidden;
+    pointer-events: none;
+  }
+
+  .stack-devtool .sdt-tab-pane-active {
+    visibility: visible;
+    pointer-events: auto;
+    animation: sdt-tab-fade-in 0.15s ease-out;
+  }
+
+  @keyframes sdt-tab-fade-in {
+    from {
+      opacity: 0;
+      transform: translateY(6px);
+    }
+    to {
+      opacity: 1;
+      transform: translateY(0);
+    }
+  }
+
+  .stack-devtool .sdt-tab-pane::-webkit-scrollbar {
+    width: 6px;
+  }
+
+  .stack-devtool .sdt-tab-pane::-webkit-scrollbar-track {
+    background: transparent;
+  }
+
+  .stack-devtool .sdt-tab-pane::-webkit-scrollbar-thumb {
+    background: var(--sdt-border);
+    border-radius: 3px;
+  }
+
+  /* ===== Overview tab — MSN bento grid ===== */
+
+  .stack-devtool .sdt-ov {
+    margin: -16px;
+    padding: 8px;
+    display: grid;
+    grid-template-columns: 2fr 1fr;
+    grid-template-rows: auto auto 1fr;
+    gap: 8px;
+    height: calc(100% + 32px);
+    overflow: hidden;
+  }
+
+  /* Card base */
+  .stack-devtool .sdt-ov-card {
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: 12px;
+    padding: 16px;
+    display: flex;
+    flex-direction: column;
+    transition: box-shadow 0.2s ease, border-color 0.2s ease;
+    overflow: hidden;
+    min-width: 0;
+  }
+
+  .stack-devtool .sdt-ov-card:hover {
+    border-color: var(--sdt-border);
+    box-shadow: 0 0 0 1px rgba(99,102,241,0.12);
+  }
+
+  .stack-devtool .sdt-ov-label {
+    font-size: 9px;
+    font-weight: 700;
+    text-transform: uppercase;
+    letter-spacing: 1.2px;
+    color: var(--sdt-text-tertiary);
+    margin-bottom: 10px;
+  }
+
+  /* --- User hero card (span 2 cols) --- */
+  .stack-devtool .sdt-ov-card-hero {
+    background: linear-gradient(135deg, rgba(99,102,241,0.04) 0%, transparent 50%), var(--sdt-bg-elevated);
+  }
+
+  .stack-devtool .sdt-ov-user-row {
+    display: flex;
+    align-items: center;
+    gap: 14px;
+    margin-bottom: 14px;
+  }
+
+  .stack-devtool .sdt-ov-avatar {
+    width: 52px;
+    height: 52px;
+    border-radius: 50%;
+    background: var(--sdt-bg-hover);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    font-size: 20px;
+    font-weight: 700;
+    color: var(--sdt-text-tertiary);
+    flex-shrink: 0;
+    border: 2px solid var(--sdt-border-subtle);
+    overflow: hidden;
+  }
+
+  .stack-devtool .sdt-ov-avatar-active {
+    background: var(--sdt-accent-muted);
+    color: var(--sdt-accent);
+    border-color: rgba(99,102,241,0.3);
+  }
+
+  .stack-devtool .sdt-ov-avatar img {
+    width: 100%;
+    height: 100%;
+    object-fit: cover;
+    border-radius: 50%;
+  }
+
+  .stack-devtool .sdt-ov-user-meta {
+    min-width: 0;
+    flex: 1;
+  }
+
+  .stack-devtool .sdt-ov-user-name {
+    font-size: 16px;
+    font-weight: 700;
+    color: var(--sdt-text);
+    line-height: 1.2;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  .stack-devtool .sdt-ov-user-email {
+    font-size: 12px;
+    font-family: var(--sdt-font-mono);
+    color: var(--sdt-text-secondary);
+    margin-top: 2px;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  .stack-devtool .sdt-ov-auth-indicator {
+    display: flex;
+    align-items: center;
+    gap: 5px;
+    margin-top: 5px;
+    font-size: 11px;
+    font-weight: 600;
+    color: var(--sdt-success);
+  }
+
+  .stack-devtool .sdt-ov-auth-indicator::before {
+    content: '';
+    width: 6px;
+    height: 6px;
+    border-radius: 50%;
+    background: var(--sdt-success);
+    box-shadow: 0 0 6px rgba(34,197,94,0.5);
+  }
+
+  /* Actions */
+  .stack-devtool .sdt-ov-actions {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 6px;
+    margin-top: auto;
+  }
+
+  .stack-devtool .sdt-ov-btn {
+    height: 30px;
+    padding: 0 12px;
+    border-radius: 6px;
+    border: none;
+    font-size: 12px;
+    font-weight: 600;
+    font-family: var(--sdt-font);
+    cursor: pointer;
+    transition: all 0.15s ease;
+    white-space: nowrap;
+  }
+  .stack-devtool .sdt-ov-btn:disabled { opacity: 0.4; cursor: not-allowed; }
+
+  .stack-devtool .sdt-ov-btn-primary {
+    background: var(--sdt-accent);
+    color: #fff;
+  }
+  .stack-devtool .sdt-ov-btn-primary:hover { background: var(--sdt-accent-hover); }
+
+  .stack-devtool .sdt-ov-btn-secondary {
+    background: var(--sdt-bg-hover);
+    color: var(--sdt-text);
+  }
+  .stack-devtool .sdt-ov-btn-secondary:hover { background: var(--sdt-bg-active); }
+
+  .stack-devtool .sdt-ov-btn-danger {
+    background: var(--sdt-error-muted);
+    color: var(--sdt-error);
+    border: 1px solid rgba(239, 68, 68, 0.15);
+  }
+  .stack-devtool .sdt-ov-btn-danger:hover { background: rgba(239, 68, 68, 0.2); }
+
+  .stack-devtool .sdt-ov-btn-wide { flex: 1; }
+
+  .stack-devtool .sdt-ov-email-input {
+    display: flex;
+    flex: 1 1 180px;
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: 6px;
+    overflow: hidden;
+    background: var(--sdt-bg);
+    transition: border-color 0.15s ease;
+  }
+  .stack-devtool .sdt-ov-email-input:focus-within {
+    border-color: var(--sdt-accent);
+    box-shadow: 0 0 0 2px var(--sdt-accent-muted);
+  }
+  .stack-devtool .sdt-ov-email-input input {
+    flex: 1;
+    height: 28px;
+    padding: 0 8px;
+    background: transparent;
+    border: none;
+    color: var(--sdt-text);
+    font-size: 11px;
+    font-family: var(--sdt-font);
+    outline: none;
+    min-width: 0;
+  }
+  .stack-devtool .sdt-ov-email-input input::placeholder { color: var(--sdt-text-tertiary); }
+  .stack-devtool .sdt-ov-email-input button {
+    width: 28px;
+    height: 28px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    border: none;
+    border-left: 1px solid var(--sdt-border-subtle);
+    background: transparent;
+    color: var(--sdt-accent);
+    cursor: pointer;
+    flex-shrink: 0;
+    font-family: var(--sdt-font);
+  }
+  .stack-devtool .sdt-ov-email-input button:hover { background: var(--sdt-accent-muted); }
+  .stack-devtool .sdt-ov-email-input button:disabled { opacity: 0.3; cursor: not-allowed; }
+
+  .stack-devtool .sdt-ov-toast {
+    font-size: 11px;
+    padding: 5px 10px;
+    border-radius: 6px;
+    margin-top: 8px;
+    line-height: 1.4;
+  }
+  .stack-devtool .sdt-ov-toast-success { background: var(--sdt-success-muted); color: var(--sdt-success); }
+  .stack-devtool .sdt-ov-toast-error { background: var(--sdt-error-muted); color: var(--sdt-error); }
+
+  /* --- Project info card (stacked key-value rows) --- */
+  .stack-devtool .sdt-ov-card-project {
+  }
+
+  .stack-devtool .sdt-ov-project-rows {
+    display: flex;
+    flex-direction: column;
+    gap: 0;
+    flex: 1;
+  }
+
+  .stack-devtool .sdt-ov-project-row {
+    display: flex;
+    align-items: baseline;
+    justify-content: space-between;
+    gap: 8px;
+    padding: 8px 0;
+    border-bottom: 1px solid var(--sdt-border-subtle);
+  }
+
+  .stack-devtool .sdt-ov-project-row:last-child { border-bottom: none; }
+
+  .stack-devtool .sdt-ov-project-key {
+    font-size: 11px;
+    font-weight: 600;
+    color: var(--sdt-text-tertiary);
+    flex-shrink: 0;
+    text-transform: uppercase;
+    letter-spacing: 0.3px;
+  }
+
+  .stack-devtool .sdt-ov-project-val {
+    font-size: 13px;
+    font-weight: 600;
+    color: var(--sdt-text);
+    text-align: right;
+    min-width: 0;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-ov-project-val-mono {
+    font-family: var(--sdt-font-mono);
+    font-size: 12px;
+  }
+
+  .stack-devtool .sdt-ov-sdk-badge {
+    font-size: 9px;
+    font-weight: 700;
+    padding: 1px 5px;
+    border-radius: 4px;
+    background: var(--sdt-warning-muted);
+    color: var(--sdt-warning);
+    text-transform: uppercase;
+    letter-spacing: 0.3px;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-ov-sdk-badge-error {
+    background: var(--sdt-error-muted);
+    color: var(--sdt-error);
+  }
+
+  .stack-devtool .sdt-ov-env-val {
+    display: inline-flex;
+    align-items: center;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-ov-pulse-dot {
+    width: 7px;
+    height: 7px;
+    border-radius: 50%;
+    background: var(--sdt-success);
+    flex-shrink: 0;
+    display: inline-block;
+    animation: sdt-ov-pulse 2s ease-in-out infinite;
+  }
+
+  @keyframes sdt-ov-pulse {
+    0%, 100% { box-shadow: 0 0 0 0 rgba(34,197,94,0.5); }
+    50% { box-shadow: 0 0 0 5px rgba(34,197,94,0); }
+  }
+
+  /* --- Setup checklist card --- */
+  .stack-devtool .sdt-ov-card-checks {
+    padding: 12px 14px;
+  }
+
+  .stack-devtool .sdt-ov-card-checks-ok {
+    border-color: rgba(34, 197, 94, 0.15);
+  }
+
+  .stack-devtool .sdt-ov-checks-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 8px;
+    margin-bottom: 8px;
+  }
+
+  .stack-devtool .sdt-ov-checks-badge {
+    font-size: 10px;
+    font-weight: 700;
+    padding: 1px 6px;
+    border-radius: 4px;
+  }
+
+  .stack-devtool .sdt-ov-checks-badge-ok {
+    background: var(--sdt-success-muted);
+    color: var(--sdt-success);
+  }
+
+  .stack-devtool .sdt-ov-checks-badge-warn {
+    background: var(--sdt-warning-muted);
+    color: var(--sdt-warning);
+  }
+
+  .stack-devtool .sdt-ov-checks-bar {
+    height: 3px;
+    border-radius: 2px;
+    background: var(--sdt-border-subtle);
+    margin-bottom: 10px;
+    overflow: hidden;
+  }
+
+  .stack-devtool .sdt-ov-checks-bar-fill {
+    height: 100%;
+    border-radius: 2px;
+    background: var(--sdt-success);
+    transition: width 0.4s ease;
+  }
+
+  .stack-devtool .sdt-ov-checks {
+    display: flex;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-ov-check {
+    display: flex;
+    align-items: center;
+    gap: 4px;
+    font-size: 11px;
+    font-weight: 600;
+  }
+
+  .stack-devtool .sdt-ov-check-icon {
+    width: 16px;
+    height: 16px;
+    border-radius: 50%;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    font-size: 9px;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-ov-check-ok .sdt-ov-check-icon {
+    background: var(--sdt-success-muted);
+    color: var(--sdt-success);
+  }
+
+  .stack-devtool .sdt-ov-check-warn .sdt-ov-check-icon {
+    background: var(--sdt-warning-muted);
+    color: var(--sdt-warning);
+  }
+
+  .stack-devtool .sdt-ov-check-ok .sdt-ov-check-label { color: var(--sdt-text); }
+  .stack-devtool .sdt-ov-check-warn .sdt-ov-check-label { color: var(--sdt-text-secondary); }
+
+  /* --- Auth methods card --- */
+  .stack-devtool .sdt-ov-card-auth {
+    padding: 12px 14px;
+  }
+
+  .stack-devtool .sdt-ov-auth-grid {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 4px;
+  }
+
+  .stack-devtool .sdt-ov-method {
+    display: flex;
+    align-items: center;
+    gap: 5px;
+    padding: 4px 8px;
+    border-radius: 6px;
+    font-size: 11px;
+    font-weight: 600;
+    border: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg);
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-ov-method-on {
+    color: var(--sdt-text);
+    background: var(--sdt-success-muted);
+    border-color: rgba(34, 197, 94, 0.12);
+  }
+
+  .stack-devtool .sdt-ov-method-off {
+    color: var(--sdt-text-tertiary);
+    opacity: 0.5;
+    border-style: dashed;
+  }
+
+  .stack-devtool .sdt-ov-method-oauth {
+    text-transform: capitalize;
+  }
+
+  .stack-devtool .sdt-ov-method-warn {
+    color: var(--sdt-warning);
+    border-color: rgba(234, 179, 8, 0.2);
+  }
+
+  .stack-devtool .sdt-ov-skeleton-pill {
+    width: 64px;
+    height: 26px;
+    border-radius: 6px;
+    background: var(--sdt-bg-hover);
+    border: 1px solid var(--sdt-border-subtle);
+    animation: sdt-ov-shimmer 1.5s ease-in-out infinite;
+  }
+
+  @keyframes sdt-ov-shimmer {
+    0%, 100% { opacity: 0.4; }
+    50% { opacity: 0.7; }
+  }
+
+  /* --- Changelog card (span 2 cols) --- */
+  .stack-devtool .sdt-ov-card-changelog {
+    grid-column: span 2;
+  }
+
+  .stack-devtool .sdt-ov-changelog-content {
+    flex: 1;
+    min-height: 0;
+    overflow-y: auto;
+  }
+
+  .stack-devtool .sdt-ov-changelog-content::-webkit-scrollbar {
+    width: 6px;
+  }
+
+  .stack-devtool .sdt-ov-changelog-content::-webkit-scrollbar-track {
+    background: transparent;
+  }
+
+  .stack-devtool .sdt-ov-changelog-content::-webkit-scrollbar-thumb {
+    background: var(--sdt-border);
+    border-radius: 3px;
+  }
+
+  .stack-devtool .sdt-ov-changelog {
+    display: flex;
+    flex-direction: column;
+    gap: 0;
+    overflow-y: auto;
+    flex: 1;
+    min-height: 0;
+    padding-right: 4px;
+  }
+
+  .stack-devtool .sdt-ov-release + .sdt-ov-release {
+    margin-top: 10px;
+    padding-top: 10px;
+    border-top: 1px dotted var(--sdt-border-subtle);
+  }
+
+  .stack-devtool .sdt-ov-release-head {
+    font-size: 13px;
+    font-weight: 700;
+    color: var(--sdt-text);
+    margin-bottom: 5px;
+    display: flex;
+    align-items: center;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-ov-release-date {
+    font-size: 11px;
+    font-weight: 400;
+    color: var(--sdt-text-tertiary);
+  }
+
+  .stack-devtool .sdt-ov-release-line {
+    display: flex;
+    align-items: flex-start;
+    gap: 6px;
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    line-height: 1.5;
+    padding: 1px 0;
+  }
+
+  .stack-devtool .sdt-ov-release-text {
+    min-width: 0;
+  }
+
+  .stack-devtool .sdt-ov-release-image-figure {
+    margin: 10px 0 6px;
+    display: flex;
+    flex-direction: column;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-ov-release-image-link {
+    display: block;
+    width: 45%;
+    max-width: 100%;
+    overflow: hidden;
+    border-radius: 10px;
+    border: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg-subtle);
+  }
+
+  .stack-devtool .sdt-ov-release-image {
+    display: block;
+    width: 100%;
+    max-width: 100%;
+    height: auto;
+  }
+
+  .stack-devtool .sdt-ov-release-image-caption {
+    font-size: 11px;
+    color: var(--sdt-text-tertiary);
+    line-height: 1.4;
+  }
+
+  .stack-devtool .sdt-ov-tag {
+    font-size: 9px;
+    font-weight: 700;
+    flex-shrink: 0;
+    text-transform: uppercase;
+    letter-spacing: 0.3px;
+    padding: 1px 5px;
+    border-radius: 3px;
+    margin-top: 2px;
+  }
+  .stack-devtool .sdt-ov-tag-feature { background: var(--sdt-accent-muted); color: var(--sdt-accent-hover); }
+  .stack-devtool .sdt-ov-tag-fix { background: var(--sdt-error-muted); color: var(--sdt-error); }
+  .stack-devtool .sdt-ov-tag-breaking { background: var(--sdt-error-muted); color: var(--sdt-error); }
+  .stack-devtool .sdt-ov-tag-improvement { background: var(--sdt-success-muted); color: var(--sdt-success); }
+
+  .stack-devtool .sdt-ov-all-releases {
+    display: inline-flex;
+    align-items: center;
+    gap: 4px;
+    margin-top: 10px;
+    font-size: 11px;
+    font-weight: 600;
+    color: var(--sdt-text-tertiary);
+    text-decoration: none;
+    font-family: var(--sdt-font);
+    transition: color 0.15s ease;
+  }
+  .stack-devtool .sdt-ov-all-releases:hover { color: var(--sdt-accent); }
+
+  /* Status badges (shared across tabs) */
+  .stack-devtool .sdt-badge {
+    display: inline-flex;
+    align-items: center;
+    gap: 4px;
+    padding: 2px 8px;
+    border-radius: 10px;
+    font-size: 11px;
+    font-weight: 500;
+  }
+  .stack-devtool .sdt-badge-success { background: var(--sdt-success-muted); color: var(--sdt-success); }
+  .stack-devtool .sdt-badge-warning { background: var(--sdt-warning-muted); color: var(--sdt-warning); }
+  .stack-devtool .sdt-badge-error { background: var(--sdt-error-muted); color: var(--sdt-error); }
+  .stack-devtool .sdt-badge-info { background: var(--sdt-info-muted); color: var(--sdt-info); }
+
+  /* ===== Components / Pages tab ===== */
+
+  .stack-devtool .sdt-pg-layout {
+    display: flex;
+    height: calc(100% + 32px);
+    margin: -16px;
+  }
+
+  /* --- Sidebar --- */
+  .stack-devtool .sdt-pg-sidebar {
+    width: 250px;
+    flex-shrink: 0;
+    border-right: 1px solid var(--sdt-border);
+    display: flex;
+    flex-direction: column;
+    overflow: hidden;
+  }
+
+  .stack-devtool .sdt-pg-sidebar-head {
+    display: flex;
+    align-items: center;
+    gap: 6px;
+    padding: 12px 14px 8px;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-pg-sidebar-title {
+    font-size: 10px;
+    font-weight: 700;
+    letter-spacing: 1px;
+    text-transform: uppercase;
+    color: var(--sdt-text-tertiary);
+  }
+
+  .stack-devtool .sdt-pg-sidebar-count {
+    font-size: 10px;
+    font-weight: 700;
+    color: var(--sdt-text-tertiary);
+    background: var(--sdt-bg-active);
+    padding: 0 5px;
+    border-radius: 6px;
+    line-height: 18px;
+  }
+
+  .stack-devtool .sdt-pg-sidebar-warn {
+    margin-left: auto;
+    font-size: 10px;
+    font-weight: 700;
+    color: var(--sdt-warning);
+    background: var(--sdt-warning-muted);
+    padding: 0 6px;
+    border-radius: 6px;
+    line-height: 18px;
+  }
+
+  .stack-devtool .sdt-pg-list {
+    flex: 1;
+    overflow-y: auto;
+    padding: 0 6px 6px;
+  }
+
+  /* --- List item --- */
+  .stack-devtool .sdt-pg-item {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    padding: 7px 10px;
+    border-radius: 6px;
+    cursor: pointer;
+    transition: background 0.12s ease;
+    font-size: 13px;
+    color: var(--sdt-text);
+    position: relative;
+  }
+
+  .stack-devtool .sdt-pg-item:hover {
+    background: var(--sdt-bg-hover);
+  }
+
+  .stack-devtool .sdt-pg-item[data-selected="true"] {
+    background: var(--sdt-accent-muted);
+  }
+
+  .stack-devtool .sdt-pg-item[data-selected="true"] .sdt-pg-item-label {
+    color: var(--sdt-accent-hover);
+    font-weight: 600;
+  }
+
+  .stack-devtool .sdt-pg-item-dot {
+    width: 6px;
+    height: 6px;
+    border-radius: 50%;
+    flex-shrink: 0;
+  }
+  .stack-devtool .sdt-pg-item-dot-handler { background: var(--sdt-info); }
+  .stack-devtool .sdt-pg-item-dot-custom { background: var(--sdt-success); }
+  .stack-devtool .sdt-pg-item-dot-warn {
+    background: var(--sdt-warning);
+    box-shadow: 0 0 6px rgba(234, 179, 8, 0.4);
+  }
+
+  .stack-devtool .sdt-pg-item-label {
+    flex: 1;
+    min-width: 0;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  /* --- Badges --- */
+  .stack-devtool .sdt-pg-badge {
+    display: inline-flex;
+    align-items: center;
+    height: 20px;
+    padding: 0 7px;
+    border-radius: 10px;
+    font-size: 10px;
+    font-weight: 600;
+    letter-spacing: 0.2px;
+    flex-shrink: 0;
+    line-height: 1;
+  }
+
+  .stack-devtool .sdt-pg-badge-handler { background: var(--sdt-info-muted); color: var(--sdt-info); }
+  .stack-devtool .sdt-pg-badge-hosted { background: var(--sdt-info-muted); color: var(--sdt-info); }
+  .stack-devtool .sdt-pg-badge-custom { background: var(--sdt-success-muted); color: var(--sdt-success); }
+  .stack-devtool .sdt-pg-badge-outdated { background: var(--sdt-warning-muted); color: var(--sdt-warning); }
+
+  /* --- Empty state --- */
+  .stack-devtool .sdt-pg-empty {
+    flex: 1;
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    gap: 8px;
+    text-align: center;
+  }
+
+  .stack-devtool .sdt-pg-empty-icon {
+    color: var(--sdt-text-tertiary);
+    opacity: 0.35;
+    margin-bottom: 4px;
+  }
+
+  .stack-devtool .sdt-pg-empty-text {
+    font-size: 14px;
+    font-weight: 600;
+    color: var(--sdt-text-secondary);
+  }
+
+  .stack-devtool .sdt-pg-empty-sub {
+    font-size: 12px;
+    color: var(--sdt-text-tertiary);
+  }
+
+  /* --- Main panel --- */
+  .stack-devtool .sdt-pg-main {
+    flex: 1;
+    overflow-y: auto;
+    padding: 16px 18px;
+    display: flex;
+    flex-direction: column;
+  }
+
+  /* --- Detail view --- */
+  .stack-devtool .sdt-pg-detail {
+    display: flex;
+    flex-direction: column;
+    gap: 12px;
+  }
+
+  /* Header */
+  .stack-devtool .sdt-pg-header {
+    display: flex;
+    flex-direction: column;
+    gap: 4px;
+  }
+
+  .stack-devtool .sdt-pg-header-top {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-pg-title {
+    font-size: 15px;
+    font-weight: 700;
+    margin: 0;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-pg-subtitle {
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    line-height: 1.4;
+  }
+
+  .stack-devtool .sdt-pg-code-inline {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    margin-top: 4px;
+  }
+
+  .stack-devtool .sdt-pg-code {
+    font-family: var(--sdt-font-mono);
+    font-size: 12px;
+    color: var(--sdt-accent);
+    background: var(--sdt-bg-elevated);
+    border-radius: 6px;
+    padding: 6px 10px;
+    border: 1px solid var(--sdt-border-subtle);
+  }
+
+  .stack-devtool .sdt-pg-url-row {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-pg-url-label {
+    font-size: 10px;
+    font-weight: 700;
+    text-transform: uppercase;
+    letter-spacing: 0.6px;
+    color: var(--sdt-text-tertiary);
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-pg-url {
+    font-family: var(--sdt-font-mono);
+    font-size: 11px;
+    color: var(--sdt-text-tertiary);
+    text-decoration: none;
+    transition: color 0.12s ease;
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  .stack-devtool .sdt-pg-url:hover {
+    color: var(--sdt-accent);
+  }
+
+  /* --- Copy button --- */
+  .stack-devtool .sdt-pg-copy-btn {
+    height: 26px;
+    padding: 0 10px;
+    border-radius: 6px;
+    border: 1px solid var(--sdt-border);
+    background: var(--sdt-bg-active);
+    color: var(--sdt-text-secondary);
+    cursor: pointer;
+    font-size: 11px;
+    font-weight: 600;
+    font-family: var(--sdt-font);
+    transition: all 0.12s ease;
+    flex-shrink: 0;
+    white-space: nowrap;
+  }
+
+  .stack-devtool .sdt-pg-copy-btn:hover {
+    background: var(--sdt-bg-hover);
+    color: var(--sdt-text);
+    border-color: var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-pg-copy-btn-ok {
+    border-color: rgba(34, 197, 94, 0.3);
+    color: var(--sdt-success);
+    background: var(--sdt-success-muted);
+  }
+
+  /* --- Update banner --- */
+  .stack-devtool .sdt-pg-update-banner {
+    display: flex;
+    align-items: flex-start;
+    gap: 10px;
+    padding: 10px 14px;
+    background: rgba(234, 179, 8, 0.08);
+    border: 1px solid rgba(234, 179, 8, 0.3);
+    border-radius: 10px;
+  }
+
+  .stack-devtool .sdt-pg-update-banner-icon {
+    width: 22px;
+    height: 22px;
+    border-radius: 50%;
+    background: rgba(234, 179, 8, 0.2);
+    color: var(--sdt-warning);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    font-size: 12px;
+    font-weight: 800;
+    flex-shrink: 0;
+    margin-top: 1px;
+  }
+
+  .stack-devtool .sdt-pg-update-banner-body {
+    flex: 1;
+    min-width: 0;
+  }
+
+  .stack-devtool .sdt-pg-update-banner-title {
+    font-size: 13px;
+    font-weight: 700;
+    color: var(--sdt-warning);
+    margin-bottom: 2px;
+  }
+
+  .stack-devtool .sdt-pg-update-banner-text {
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    line-height: 1.5;
+  }
+
+  .stack-devtool .sdt-pg-update-banner-text strong {
+    color: var(--sdt-text);
+    font-weight: 600;
+  }
+
+  /* --- Sections (changelog, prompt) --- */
+  .stack-devtool .sdt-pg-section {
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: 10px;
+    padding: 12px 14px;
+    background: var(--sdt-bg-elevated);
+  }
+
+  .stack-devtool .sdt-pg-section-warn {
+    border-color: rgba(234, 179, 8, 0.25);
+    background: rgba(234, 179, 8, 0.03);
+  }
+
+  .stack-devtool .sdt-pg-section-label {
+    font-size: 10px;
+    font-weight: 700;
+    text-transform: uppercase;
+    letter-spacing: 0.8px;
+    color: var(--sdt-text-tertiary);
+    margin-bottom: 8px;
+  }
+
+  .stack-devtool .sdt-pg-section-warn .sdt-pg-section-label {
+    color: var(--sdt-warning);
+  }
+
+  .stack-devtool .sdt-pg-section-footer {
+    display: flex;
+    margin-top: 8px;
+  }
+
+  /* Changelog list */
+  .stack-devtool .sdt-pg-changelog-list {
+    list-style: none;
+    margin: 0;
+    padding: 0;
+    display: flex;
+    flex-direction: column;
+    gap: 4px;
+  }
+
+  .stack-devtool .sdt-pg-changelog-item {
+    display: flex;
+    align-items: flex-start;
+    gap: 8px;
+    font-size: 12px;
+    color: var(--sdt-text);
+    line-height: 1.5;
+  }
+
+  .stack-devtool .sdt-pg-changelog-bullet {
+    flex-shrink: 0;
+    font-size: 12px;
+    line-height: 1.5;
+  }
+
+  /* Pre block */
+  .stack-devtool .sdt-pg-pre {
+    font-family: var(--sdt-font-mono);
+    font-size: 11px;
+    line-height: 1.6;
+    color: var(--sdt-text);
+    background: var(--sdt-bg);
+    border-radius: 6px;
+    padding: 10px 12px;
+    margin: 0;
+    white-space: pre-wrap;
+    word-break: break-word;
+    max-height: 200px;
+    overflow-y: auto;
+    border: 1px solid var(--sdt-border-subtle);
+  }
+
+  .stack-devtool .sdt-preview-loading,
+  .stack-devtool .sdt-preview-unavailable {
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    line-height: 1.5;
+  }
+
+  .stack-devtool .sdt-preview-error {
+    font-size: 12px;
+    color: var(--sdt-error);
+    line-height: 1.5;
+  }
+
+  .stack-devtool .sdt-preview-code {
+    font-family: var(--sdt-font-mono);
+    font-size: 11px;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-props-table {
+    width: 100%;
+    border-collapse: collapse;
+    font-size: 12px;
+  }
+
+  .stack-devtool .sdt-props-table th {
+    text-align: left;
+    font-weight: 600;
+    color: var(--sdt-text-tertiary);
+    padding: 6px 8px;
+    border-bottom: 1px solid var(--sdt-border);
+    font-size: 11px;
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+  }
+
+  .stack-devtool .sdt-props-table td {
+    padding: 6px 8px;
+    border-bottom: 1px solid var(--sdt-border-subtle);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-props-table td:first-child {
+    font-family: var(--sdt-font-mono);
+    color: var(--sdt-accent-hover);
+  }
+
+  .stack-devtool .sdt-props-table td:last-child {
+    font-family: var(--sdt-font-mono);
+    color: var(--sdt-text-secondary);
+  }
+
+  /* Iframe tabs (Docs, Dashboard) */
+  .stack-devtool .sdt-iframe-container {
+    height: calc(100% + 32px);
+    margin: -16px;
+    display: flex;
+    flex-direction: column;
+  }
+
+  .stack-devtool .sdt-iframe-container iframe {
+    flex: 1;
+    width: 100%;
+    border: none;
+    background: white;
+    border-radius: 0 0 var(--sdt-radius-lg) var(--sdt-radius-lg);
+  }
+
+  .stack-devtool .sdt-iframe-loading {
+    flex: 1;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    color: var(--sdt-text-secondary);
+    font-size: 13px;
+  }
+
+  .stack-devtool .sdt-iframe-error {
+    flex: 1;
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    gap: 8px;
+    color: var(--sdt-text-secondary);
+    font-size: 13px;
+  }
+
+  .stack-devtool .sdt-iframe-error-btn {
+    padding: 6px 16px;
+    background: var(--sdt-accent);
+    color: white;
+    border: none;
+    border-radius: var(--sdt-radius);
+    cursor: pointer;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 500;
+    transition: background 0.15s ease;
+  }
+
+  .stack-devtool .sdt-iframe-error-btn:hover {
+    background: var(--sdt-accent-hover);
+  }
+
+  /* Shared content fade animation */
+  .stack-devtool .sdt-tab-content-fade {
+    animation: sdt-tab-fade-in 0.15s ease-out;
+  }
+
+  /* Console tab */
+  .stack-devtool .sdt-console-tabs {
+    position: relative;
+    display: flex;
+    flex: 1;
+    gap: 2px;
+    background: var(--sdt-bg-subtle);
+    border-radius: var(--sdt-radius);
+    padding: 2px;
+  }
+
+  .stack-devtool .sdt-console-tab-indicator {
+    position: absolute;
+    top: 2px;
+    left: 0;
+    background: var(--sdt-bg-active);
+    border-radius: var(--sdt-radius-sm);
+    transition: transform 0.2s cubic-bezier(0.25, 0.46, 0.45, 0.94),
+                width 0.2s cubic-bezier(0.25, 0.46, 0.45, 0.94);
+    pointer-events: none;
+    z-index: 0;
+  }
+
+  .stack-devtool .sdt-console-tab {
+    position: relative;
+    z-index: 1;
+    flex: 1;
+    padding: 6px 12px;
+    background: transparent;
+    border: none;
+    border-radius: var(--sdt-radius-sm);
+    cursor: pointer;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 500;
+    color: var(--sdt-text-secondary);
+    transition: color 0.15s ease;
+    text-align: center;
+  }
+
+  .stack-devtool .sdt-console-tab:hover {
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-console-tab[data-active="true"] {
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-log-list {
+    display: flex;
+    flex-direction: column;
+    gap: 4px;
+  }
+
+  .stack-devtool .sdt-log-item {
+    display: flex;
+    align-items: flex-start;
+    gap: 8px;
+    padding: 8px 10px;
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius-sm);
+    font-size: 12px;
+    font-family: var(--sdt-font-mono);
+  }
+
+  .stack-devtool .sdt-log-time {
+    color: var(--sdt-text-tertiary);
+    flex-shrink: 0;
+    font-size: 11px;
+  }
+
+  .stack-devtool .sdt-log-type {
+    padding: 1px 6px;
+    border-radius: 4px;
+    font-size: 10px;
+    font-weight: 600;
+    text-transform: uppercase;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-log-message {
+    flex: 1;
+    color: var(--sdt-text);
+    word-break: break-all;
+  }
+
+  .stack-devtool .sdt-log-method {
+    padding: 1px 6px;
+    border-radius: 4px;
+    font-size: 10px;
+    font-weight: 600;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-log-method-get {
+    background: var(--sdt-info-muted);
+    color: var(--sdt-info);
+  }
+
+  .stack-devtool .sdt-log-method-post {
+    background: var(--sdt-success-muted);
+    color: var(--sdt-success);
+  }
+
+  .stack-devtool .sdt-log-method-put, .stack-devtool .sdt-log-method-patch {
+    background: var(--sdt-warning-muted);
+    color: var(--sdt-warning);
+  }
+
+  .stack-devtool .sdt-log-method-delete {
+    background: var(--sdt-error-muted);
+    color: var(--sdt-error);
+  }
+
+  .stack-devtool .sdt-log-status {
+    font-size: 11px;
+    flex-shrink: 0;
+  }
+
+  .stack-devtool .sdt-log-status-ok {
+    color: var(--sdt-success);
+  }
+
+  .stack-devtool .sdt-log-status-err {
+    color: var(--sdt-error);
+  }
+
+  .stack-devtool .sdt-log-url {
+    flex: 1;
+    color: var(--sdt-text);
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  .stack-devtool .sdt-empty-state {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    flex: 1;
+    padding: 40px 20px;
+    color: var(--sdt-text-tertiary);
+    font-size: 13px;
+    text-align: center;
+    gap: 4px;
+  }
+
+  .stack-devtool .sdt-empty-state-icon {
+    font-size: 24px;
+    margin-bottom: 8px;
+    opacity: 0.5;
+  }
+
+  /* Config info table */
+  .stack-devtool .sdt-config-table {
+    width: 100%;
+    border-collapse: collapse;
+  }
+
+  .stack-devtool .sdt-config-table td {
+    padding: 8px 10px;
+    border-bottom: 1px solid var(--sdt-border-subtle);
+    font-size: 12px;
+  }
+
+  .stack-devtool .sdt-config-table td:first-child {
+    color: var(--sdt-text-secondary);
+    width: 160px;
+    font-weight: 500;
+  }
+
+  .stack-devtool .sdt-config-table td:last-child {
+    color: var(--sdt-text);
+    font-family: var(--sdt-font-mono);
+    word-break: break-all;
+  }
+
+  .stack-devtool .sdt-config-table td .sdt-config-link {
+    font-family: inherit;
+    color: var(--sdt-accent);
+    text-decoration: underline;
+    text-underline-offset: 2px;
+  }
+
+  .stack-devtool .sdt-config-table td .sdt-config-link:hover {
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-config-muted {
+    color: var(--sdt-text-tertiary);
+    font-style: italic;
+  }
+
+  /* Resize handle */
+  .stack-devtool .sdt-resize-handle {
+    position: absolute;
+    top: 0;
+    left: -4px;
+    width: 8px;
+    height: 100%;
+    cursor: ew-resize;
+    z-index: 10;
+  }
+
+  .stack-devtool .sdt-resize-handle::after {
+    content: '';
+    position: absolute;
+    top: 50%;
+    left: 3px;
+    width: 2px;
+    height: 32px;
+    transform: translateY(-50%);
+    background: transparent;
+    border-radius: 1px;
+    transition: background 0.15s ease;
+  }
+
+  .stack-devtool .sdt-resize-handle:hover::after,
+  .stack-devtool .sdt-resize-handle:active::after {
+    background: var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-resize-handle-top {
+    position: absolute;
+    top: -4px;
+    left: 0;
+    width: 100%;
+    height: 8px;
+    cursor: ns-resize;
+    z-index: 10;
+  }
+
+  .stack-devtool .sdt-resize-handle-top::after {
+    content: '';
+    position: absolute;
+    left: 50%;
+    top: 3px;
+    height: 2px;
+    width: 32px;
+    transform: translateX(-50%);
+    background: transparent;
+    border-radius: 1px;
+    transition: background 0.15s ease;
+  }
+
+  .stack-devtool .sdt-resize-handle-top:hover::after,
+  .stack-devtool .sdt-resize-handle-top:active::after {
+    background: var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-resize-handle-corner {
+    position: absolute;
+    top: -6px;
+    left: -6px;
+    width: 14px;
+    height: 14px;
+    cursor: nwse-resize;
+    z-index: 11;
+  }
+
+  .stack-devtool .sdt-resize-handle-corner::after {
+    content: '';
+    position: absolute;
+    bottom: 4px;
+    right: 4px;
+    width: 5px;
+    height: 5px;
+    background: transparent;
+    border-radius: 50%;
+    transition: background 0.15s ease;
+  }
+
+  .stack-devtool .sdt-resize-handle-corner:hover::after,
+  .stack-devtool .sdt-resize-handle-corner:active::after {
+    background: var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-no-components {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    height: 100%;
+    color: var(--sdt-text-tertiary);
+    font-size: 13px;
+    text-align: center;
+    padding: 20px;
+  }
+
+  /* Support tab */
+  .stack-devtool .sdt-support-tab {
+    display: flex;
+    flex-direction: column;
+    height: calc(100% + 32px);
+    margin: -16px;
+  }
+
+  .stack-devtool .sdt-support-tab > .sdt-console-tabs {
+    margin: 12px 12px 0;
+    flex: none;
+  }
+
+  .stack-devtool .sdt-support-content {
+    flex: 1;
+    min-height: 0;
+    position: relative;
+  }
+
+  .stack-devtool .sdt-support-pane {
+    position: absolute;
+    inset: 0;
+    visibility: hidden;
+    pointer-events: none;
+  }
+
+  .stack-devtool .sdt-tab-pane-active .sdt-support-pane-active {
+    visibility: visible;
+    pointer-events: auto;
+    animation: sdt-tab-fade-in 0.15s ease-out;
+  }
+
+  .stack-devtool .sdt-support-feedback-pane {
+    padding: 20px;
+    height: 100%;
+    overflow-y: auto;
+  }
+
+  .stack-devtool .sdt-support-iframe-pane {
+    height: 100%;
+  }
+
+  .stack-devtool .sdt-support-iframe-pane .sdt-iframe-container {
+    height: 100%;
+    margin: 0;
+  }
+
+  /* Form layout */
+  .stack-devtool .sdt-support-form {
+    display: flex;
+    flex-direction: column;
+    gap: 14px;
+  }
+
+  /* Type cards */
+  .stack-devtool .sdt-support-type-cards {
+    display: flex;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-support-type-card {
+    flex: 1;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    gap: 6px;
+    padding: 8px 10px;
+    background: var(--sdt-bg);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius);
+    cursor: pointer;
+    font-family: var(--sdt-font);
+    font-size: 11px;
+    font-weight: 500;
+    color: var(--sdt-text-secondary);
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-support-type-card svg {
+    flex-shrink: 0;
+    opacity: 0.6;
+    transition: opacity 0.15s ease;
+  }
+
+  .stack-devtool .sdt-support-type-card:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-border);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-support-type-card:hover svg {
+    opacity: 1;
+  }
+
+  .stack-devtool .sdt-support-type-card-active {
+    border-color: var(--sdt-accent);
+    background: var(--sdt-accent-muted);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-support-type-card-active svg {
+    opacity: 1;
+    color: var(--sdt-accent);
+  }
+
+  /* Field group */
+  .stack-devtool .sdt-support-field {
+    display: flex;
+    flex-direction: column;
+    gap: 5px;
+  }
+
+  .stack-devtool .sdt-support-label {
+    font-size: 11px;
+    font-weight: 600;
+    color: var(--sdt-text-secondary);
+    letter-spacing: 0.3px;
+    text-transform: uppercase;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-support-optional {
+    font-size: 10px;
+    font-weight: 400;
+    color: var(--sdt-text-tertiary);
+    text-transform: none;
+    letter-spacing: 0;
+  }
+
+  /* Inputs */
+  .stack-devtool .sdt-support-input,
+  .stack-devtool .sdt-support-textarea {
+    width: 100%;
+    padding: 9px 12px;
+    background: var(--sdt-bg);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius-sm);
+    color: var(--sdt-text);
+    font-family: var(--sdt-font);
+    font-size: 13px;
+    outline: none;
+    transition: border-color 0.15s ease, box-shadow 0.15s ease;
+  }
+
+  .stack-devtool .sdt-support-input::placeholder,
+  .stack-devtool .sdt-support-textarea::placeholder {
+    color: var(--sdt-text-tertiary);
+  }
+
+  .stack-devtool .sdt-support-input:focus,
+  .stack-devtool .sdt-support-textarea:focus {
+    border-color: var(--sdt-accent);
+    box-shadow: 0 0 0 3px var(--sdt-accent-muted);
+  }
+
+  .stack-devtool .sdt-support-textarea {
+    resize: vertical;
+    min-height: 100px;
+    line-height: 1.6;
+  }
+
+  /* Submit button */
+  .stack-devtool .sdt-support-submit {
+    width: 100%;
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    gap: 6px;
+    padding: 9px 20px;
+    background: var(--sdt-accent);
+    color: white;
+    border: none;
+    border-radius: var(--sdt-radius);
+    cursor: pointer;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 600;
+    letter-spacing: 0.2px;
+    transition: all 0.2s cubic-bezier(0.4, 0, 0.2, 1);
+    box-shadow: 0 1px 3px rgba(99, 102, 241, 0.3);
+  }
+
+  .stack-devtool .sdt-support-submit:hover:not(:disabled) {
+    background: var(--sdt-accent-hover);
+    box-shadow: 0 2px 8px rgba(99, 102, 241, 0.4);
+    transform: translateY(-1px);
+  }
+
+  .stack-devtool .sdt-support-submit:active:not(:disabled) {
+    transform: translateY(0);
+    box-shadow: 0 1px 2px rgba(99, 102, 241, 0.2);
+  }
+
+  .stack-devtool .sdt-support-submit:disabled {
+    opacity: 0.4;
+    cursor: not-allowed;
+    box-shadow: none;
+  }
+
+  .stack-devtool .sdt-support-submit svg {
+    flex-shrink: 0;
+  }
+
+  @keyframes sdt-spin {
+    to { transform: rotate(360deg); }
+  }
+
+  .stack-devtool .sdt-support-spinner {
+    animation: sdt-spin 1s linear infinite;
+  }
+
+  /* Status screens (success / error) */
+  .stack-devtool .sdt-support-status {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    padding: 32px 20px;
+    border-radius: var(--sdt-radius-lg);
+    text-align: center;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-support-status-success {
+    background: linear-gradient(180deg, var(--sdt-success-muted), transparent 80%);
+    border: 1px solid rgba(34, 197, 94, 0.15);
+  }
+
+  .stack-devtool .sdt-support-status-error {
+    background: linear-gradient(180deg, var(--sdt-error-muted), transparent 80%);
+    border: 1px solid rgba(239, 68, 68, 0.15);
+  }
+
+  .stack-devtool .sdt-support-status-icon {
+    width: 40px;
+    height: 40px;
+    border-radius: 50%;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    margin-bottom: 6px;
+  }
+
+  .stack-devtool .sdt-support-status-success .sdt-support-status-icon {
+    background: rgba(34, 197, 94, 0.15);
+    color: var(--sdt-success);
+    box-shadow: 0 0 20px rgba(34, 197, 94, 0.1);
+  }
+
+  .stack-devtool .sdt-support-status-error .sdt-support-status-icon {
+    background: rgba(239, 68, 68, 0.15);
+    color: var(--sdt-error);
+    box-shadow: 0 0 20px rgba(239, 68, 68, 0.1);
+  }
+
+  .stack-devtool .sdt-support-status-title {
+    font-size: 14px;
+    font-weight: 600;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-support-status-msg {
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    line-height: 1.5;
+    max-width: 260px;
+  }
+
+  /* Support channels */
+  .stack-devtool .sdt-support-channels {
+    display: flex;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-support-channel {
+    flex: 1;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    gap: 6px;
+    padding: 8px 10px;
+    background: var(--sdt-bg);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius);
+    color: var(--sdt-text-secondary);
+    text-decoration: none;
+    font-size: 11px;
+    font-weight: 500;
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-support-channel:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-border);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-support-channel svg {
+    flex-shrink: 0;
+    opacity: 0.6;
+    transition: opacity 0.15s ease;
+  }
+
+  .stack-devtool .sdt-support-channel:hover svg {
+    opacity: 1;
+  }
+
+  /* --- Light theme: system preference fallback --- */
+  @media (prefers-color-scheme: light) {
+    .stack-devtool {
+      --sdt-bg: #ffffff;
+      --sdt-bg-elevated: #f8f8fa;
+      --sdt-bg-hover: #f0f0f3;
+      --sdt-bg-active: #e8e8ec;
+      --sdt-bg-subtle: #fafafa;
+      --sdt-border: #e0e0e5;
+      --sdt-border-subtle: #eaeaef;
+      --sdt-text: #111113;
+      --sdt-text-secondary: #6b6b73;
+      --sdt-text-tertiary: #9b9ba3;
+      --sdt-accent: #6366f1;
+      --sdt-accent-hover: #4f46e5;
+      --sdt-accent-muted: rgba(99, 102, 241, 0.1);
+      --sdt-success: #16a34a;
+      --sdt-success-muted: rgba(22, 163, 74, 0.1);
+      --sdt-warning: #ca8a04;
+      --sdt-warning-muted: rgba(202, 138, 4, 0.1);
+      --sdt-error: #dc2626;
+      --sdt-error-muted: rgba(220, 38, 38, 0.1);
+      --sdt-info: #2563eb;
+      --sdt-info-muted: rgba(37, 99, 235, 0.1);
+      --sdt-shadow: 0 25px 50px -12px rgba(0, 0, 0, 0.12), 0 0 0 1px rgba(0, 0, 0, 0.06);
+      --sdt-trigger-shadow: 0 4px 12px rgba(0, 0, 0, 0.08), 0 0 0 1px rgba(0, 0, 0, 0.06);
+    }
+  }
+
+  /* Export dialog — positioned inside the dev tool panel */
+  .stack-devtool .sdt-share-overlay {
+    position: absolute;
+    inset: 0;
+    z-index: 20;
+    background: rgba(0, 0, 0, 0.4);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    animation: sdt-tab-fade-in 0.15s ease-out;
+    border-radius: var(--sdt-radius-lg);
+  }
+
+  .stack-devtool .sdt-share-dialog {
+    width: 380px;
+    max-width: calc(100% - 32px);
+    background: var(--sdt-bg);
+    border: 1px solid var(--sdt-border);
+    border-radius: var(--sdt-radius-lg);
+    box-shadow: var(--sdt-shadow);
+    padding: 20px;
+    display: flex;
+    flex-direction: column;
+    gap: 16px;
+  }
+
+  .stack-devtool .sdt-share-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+  }
+
+  .stack-devtool .sdt-share-title {
+    font-size: 14px;
+    font-weight: 600;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-share-status {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    gap: 10px;
+    padding: 20px;
+    color: var(--sdt-text-secondary);
+    font-size: 13px;
+  }
+
+  .stack-devtool .sdt-share-url-row {
+    display: flex;
+    gap: 6px;
+    align-items: center;
+  }
+
+  .stack-devtool .sdt-share-url-row .sdt-support-input {
+    flex: 1;
+    font-family: var(--sdt-font-mono);
+    font-size: 12px;
+  }
+
+  .stack-devtool .sdt-share-copy-btn {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    width: 36px;
+    height: 36px;
+    flex-shrink: 0;
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius-sm);
+    color: var(--sdt-text-secondary);
+    cursor: pointer;
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-share-copy-btn:hover {
+    background: var(--sdt-bg-hover);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-share-actions {
+    display: flex;
+    gap: 8px;
+  }
+
+  .stack-devtool .sdt-share-action-btn {
+    flex: 1;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    gap: 6px;
+    padding: 10px 12px;
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius);
+    color: var(--sdt-text-secondary);
+    text-decoration: none;
+    font-family: var(--sdt-font);
+    font-size: 12px;
+    font-weight: 500;
+    cursor: pointer;
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-share-action-btn:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-border);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-share-action-btn svg {
+    flex-shrink: 0;
+    opacity: 0.7;
+  }
+
+  .stack-devtool .sdt-share-action-btn:hover svg {
+    opacity: 1;
+  }
+
+  .stack-devtool .sdt-share-action-btn-accent {
+    background: var(--sdt-accent);
+    border-color: var(--sdt-accent);
+    color: white;
+  }
+
+  .stack-devtool .sdt-share-action-btn-accent:hover {
+    background: var(--sdt-accent-hover);
+    border-color: var(--sdt-accent-hover);
+    color: white;
+  }
+
+  .stack-devtool .sdt-share-action-btn-accent svg {
+    opacity: 1;
+  }
+
+  /* --- AI Chat tab --- */
+
+  .stack-devtool .sdt-ai-container {
+    display: flex;
+    flex-direction: column;
+    height: 100%;
+    overflow: hidden;
+  }
+
+  .stack-devtool .sdt-ai-messages {
+    flex: 1;
+    overflow-y: auto;
+    overflow-x: hidden;
+    padding: 16px;
+    scroll-behavior: smooth;
+  }
+
+  .stack-devtool .sdt-ai-message-list {
+    display: flex;
+    flex-direction: column;
+    gap: 16px;
+  }
+
+  /* --- Empty state --- */
+
+  .stack-devtool .sdt-ai-empty {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    height: 100%;
+    gap: 12px;
+    padding: 24px;
+    text-align: center;
+  }
+
+  .stack-devtool .sdt-ai-empty-icon {
+    width: 48px;
+    height: 48px;
+    border-radius: 50%;
+    background: var(--sdt-accent-muted);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    color: var(--sdt-accent);
+    margin-bottom: 4px;
+  }
+
+  .stack-devtool .sdt-ai-empty-title {
+    font-size: 16px;
+    font-weight: 600;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-empty-desc {
+    font-size: 12px;
+    color: var(--sdt-text-secondary);
+    max-width: 320px;
+    line-height: 1.5;
+  }
+
+  .stack-devtool .sdt-ai-suggestions {
+    display: flex;
+    flex-direction: column;
+    gap: 6px;
+    margin-top: 8px;
+    width: 100%;
+    max-width: 340px;
+  }
+
+  .stack-devtool .sdt-ai-suggestion {
+    display: flex;
+    align-items: center;
+    gap: 10px;
+    padding: 10px 14px;
+    border-radius: var(--sdt-radius);
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    color: var(--sdt-text-secondary);
+    font-size: 12px;
+    cursor: pointer;
+    text-align: left;
+    transition: all 0.15s ease;
+    font-family: var(--sdt-font);
+    line-height: 1.4;
+  }
+
+  .stack-devtool .sdt-ai-suggestion:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-border);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-suggestion-icon {
+    font-size: 14px;
+    flex-shrink: 0;
+  }
+
+  /* --- Messages --- */
+
+  .stack-devtool .sdt-ai-msg {
+    display: flex;
+    gap: 10px;
+    align-items: flex-start;
+  }
+
+  .stack-devtool .sdt-ai-msg-user {
+    justify-content: flex-end;
+  }
+
+  .stack-devtool .sdt-ai-msg-assistant {
+    justify-content: flex-start;
+  }
+
+  .stack-devtool .sdt-ai-avatar {
+    width: 26px;
+    height: 26px;
+    border-radius: 50%;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    flex-shrink: 0;
+    margin-top: 2px;
+  }
+
+  .stack-devtool .sdt-ai-avatar-user {
+    background: var(--sdt-info-muted);
+    color: var(--sdt-info);
+    order: 2;
+  }
+
+  .stack-devtool .sdt-ai-avatar-assistant {
+    background: var(--sdt-accent-muted);
+    color: var(--sdt-accent);
+  }
+
+  .stack-devtool .sdt-ai-bubble {
+    min-width: 0;
+    max-width: 85%;
+    border-radius: var(--sdt-radius-lg);
+    padding: 10px 14px;
+  }
+
+  .stack-devtool .sdt-ai-bubble-user {
+    background: var(--sdt-info-muted);
+    border: 1px solid rgba(59, 130, 246, 0.1);
+  }
+
+  .stack-devtool .sdt-ai-bubble-user p {
+    font-size: 13px;
+    line-height: 1.55;
+    color: var(--sdt-text);
+    margin: 0;
+    word-break: break-word;
+  }
+
+  .stack-devtool .sdt-ai-bubble-assistant {
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+  }
+
+  /* --- Thinking dots --- */
+
+  .stack-devtool .sdt-ai-thinking {
+    display: flex;
+    align-items: center;
+    gap: 4px;
+    padding: 4px 0;
+  }
+
+  .stack-devtool .sdt-ai-thinking-dot {
+    width: 5px;
+    height: 5px;
+    border-radius: 50%;
+    background: var(--sdt-accent);
+    opacity: 0.5;
+    animation: sdt-ai-pulse 1.2s ease-in-out infinite;
+  }
+
+  .stack-devtool .sdt-ai-thinking-dot:nth-child(2) { animation-delay: 0.15s; }
+  .stack-devtool .sdt-ai-thinking-dot:nth-child(3) { animation-delay: 0.3s; }
+
+  @keyframes sdt-ai-pulse {
+    0%, 80%, 100% { opacity: 0.3; transform: scale(0.85); }
+    40% { opacity: 1; transform: scale(1.1); }
+  }
+
+  .stack-devtool .sdt-ai-streaming-indicator {
+    display: flex;
+    align-items: center;
+    gap: 3px;
+    margin-top: 6px;
+  }
+
+  /* --- Markdown content inside assistant bubble --- */
+
+  .stack-devtool .sdt-ai-paragraph {
+    font-size: 13px;
+    line-height: 1.6;
+    color: var(--sdt-text);
+    margin: 0 0 10px;
+    word-break: break-word;
+  }
+
+  .stack-devtool .sdt-ai-paragraph:last-child { margin-bottom: 0; }
+
+  .stack-devtool .sdt-ai-bold {
+    font-weight: 600;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-inline-code {
+    display: inline;
+    padding: 1.5px 5px;
+    border-radius: 4px;
+    font-family: var(--sdt-font-mono);
+    font-size: 11.5px;
+    background: var(--sdt-bg-hover);
+    color: var(--sdt-text);
+    border: 1px solid var(--sdt-border-subtle);
+  }
+
+  .stack-devtool .sdt-ai-link {
+    color: var(--sdt-info);
+    text-decoration: none;
+    transition: color 0.1s;
+  }
+
+  .stack-devtool .sdt-ai-link:hover {
+    color: var(--sdt-accent-hover);
+    text-decoration: underline;
+    text-underline-offset: 2px;
+  }
+
+  .stack-devtool .sdt-ai-heading {
+    font-weight: 600;
+    color: var(--sdt-text);
+    margin: 12px 0 6px;
+    line-height: 1.35;
+  }
+
+  .stack-devtool .sdt-ai-heading:first-child { margin-top: 0; }
+
+  .stack-devtool .sdt-ai-bubble-assistant h1.sdt-ai-heading { font-size: 15px; }
+  .stack-devtool .sdt-ai-bubble-assistant h2.sdt-ai-heading { font-size: 13.5px; }
+  .stack-devtool .sdt-ai-bubble-assistant h3.sdt-ai-heading { font-size: 13px; }
+
+  .stack-devtool .sdt-ai-list {
+    font-size: 13px;
+    line-height: 1.6;
+    color: var(--sdt-text);
+    margin: 0 0 10px;
+    padding-left: 20px;
+  }
+
+  .stack-devtool .sdt-ai-list:last-child { margin-bottom: 0; }
+
+  .stack-devtool .sdt-ai-list li {
+    margin-bottom: 3px;
+    padding-left: 2px;
+  }
+
+  .stack-devtool .sdt-ai-list li::marker {
+    color: var(--sdt-text-tertiary);
+  }
+
+  .stack-devtool .sdt-ai-list-ordered {
+    list-style-type: decimal;
+  }
+
+  .stack-devtool .sdt-ai-tools {
+    display: flex;
+    flex-direction: column;
+    gap: 6px;
+    margin: 6px 0;
+  }
+
+  .stack-devtool .sdt-ai-part-text {
+    margin: 6px 0;
+  }
+
+  .stack-devtool .sdt-ai-tool-card {
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius);
+    background: var(--sdt-bg-subtle);
+    overflow: hidden;
+  }
+
+  .stack-devtool .sdt-ai-tool-header {
+    width: 100%;
+    border: none;
+    background: transparent;
+    color: inherit;
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    padding: 8px 10px;
+    cursor: pointer;
+    text-align: left;
+    font-family: var(--sdt-font);
+  }
+
+  .stack-devtool .sdt-ai-tool-header:hover {
+    background: var(--sdt-bg-hover);
+  }
+
+  .stack-devtool .sdt-ai-tool-name {
+    font-size: 12px;
+    font-weight: 600;
+    color: var(--sdt-text);
+    flex: 1;
+  }
+
+  .stack-devtool .sdt-ai-tool-status {
+    font-size: 10px;
+    text-transform: uppercase;
+    letter-spacing: 0.4px;
+    font-weight: 600;
+  }
+
+  .stack-devtool .sdt-ai-tool-status-running { color: var(--sdt-warning); }
+  .stack-devtool .sdt-ai-tool-status-success { color: var(--sdt-success); }
+  .stack-devtool .sdt-ai-tool-status-error { color: var(--sdt-error); }
+
+  .stack-devtool .sdt-ai-tool-chevron {
+    color: var(--sdt-text-tertiary);
+    font-size: 10px;
+    transition: transform 0.15s ease;
+  }
+
+  .stack-devtool .sdt-ai-tool-chevron-open {
+    transform: rotate(180deg);
+  }
+
+  .stack-devtool .sdt-ai-tool-body {
+    border-top: 1px solid var(--sdt-border-subtle);
+    padding: 8px 10px;
+    display: flex;
+    flex-direction: column;
+    gap: 6px;
+  }
+
+  .stack-devtool .sdt-ai-tool-label {
+    font-size: 10px;
+    text-transform: uppercase;
+    letter-spacing: 0.4px;
+    color: var(--sdt-text-tertiary);
+    font-weight: 600;
+  }
+
+  .stack-devtool .sdt-ai-tool-pre {
+    margin: 0;
+    padding: 8px;
+    border: 1px solid var(--sdt-border-subtle);
+    border-radius: var(--sdt-radius-sm);
+    background: var(--sdt-bg);
+    font-family: var(--sdt-font-mono);
+    font-size: 11px;
+    line-height: 1.5;
+    color: var(--sdt-text-secondary);
+    overflow-x: auto;
+    white-space: pre-wrap;
+    word-break: break-word;
+  }
+
+  .stack-devtool .sdt-ai-tool-running {
+    font-size: 11px;
+    color: var(--sdt-text-secondary);
+  }
+
+  .stack-devtool .sdt-ai-blockquote {
+    border-left: 3px solid var(--sdt-accent);
+    padding-left: 12px;
+    margin: 8px 0;
+    font-size: 13px;
+    color: var(--sdt-text-secondary);
+    font-style: italic;
+  }
+
+  .stack-devtool .sdt-ai-hr {
+    border: none;
+    border-top: 1px solid var(--sdt-border-subtle);
+    margin: 12px 0;
+  }
+
+  /* --- Code blocks --- */
+
+  .stack-devtool .sdt-ai-code-block {
+    border-radius: var(--sdt-radius);
+    overflow: hidden;
+    margin: 8px 0;
+    border: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg-subtle);
+  }
+
+  .stack-devtool .sdt-ai-code-block:last-child { margin-bottom: 0; }
+
+  .stack-devtool .sdt-ai-code-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    padding: 5px 10px;
+    border-bottom: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg);
+  }
+
+  .stack-devtool .sdt-ai-code-lang {
+    font-size: 9px;
+    font-weight: 600;
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+    color: var(--sdt-text-tertiary);
+    font-family: var(--sdt-font);
+  }
+
+  .stack-devtool .sdt-ai-copy-btn {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    width: 22px;
+    height: 22px;
+    border-radius: var(--sdt-radius-sm);
+    border: none;
+    background: transparent;
+    color: var(--sdt-text-tertiary);
+    cursor: pointer;
+    font-size: 12px;
+    font-family: var(--sdt-font);
+    transition: all 0.15s ease;
+  }
+
+  .stack-devtool .sdt-ai-copy-btn:hover {
+    background: var(--sdt-bg-hover);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-copy-btn-copied {
+    color: var(--sdt-success) !important;
+  }
+
+  .stack-devtool .sdt-ai-code-pre {
+    margin: 0;
+    padding: 10px 12px;
+    overflow-x: auto;
+    font-family: var(--sdt-font-mono);
+    font-size: 11.5px;
+    line-height: 1.6;
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-code-pre code {
+    font-family: inherit;
+    background: none;
+    border: none;
+    padding: 0;
+  }
+
+  /* --- Error --- */
+
+  .stack-devtool .sdt-ai-error {
+    display: flex;
+    align-items: flex-start;
+    gap: 8px;
+    padding: 10px 14px;
+    margin: 8px 16px;
+    border-radius: var(--sdt-radius);
+    background: var(--sdt-error-muted);
+    border: 1px solid rgba(239, 68, 68, 0.2);
+    font-size: 12px;
+    color: var(--sdt-error);
+    line-height: 1.4;
+  }
+
+  /* --- Input area --- */
+
+  .stack-devtool .sdt-ai-input-area {
+    flex-shrink: 0;
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    padding: 10px 14px;
+    border-top: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg);
+  }
+
+  .stack-devtool .sdt-ai-new-chat {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    width: 32px;
+    height: 32px;
+    border-radius: var(--sdt-radius);
+    border: 1px solid var(--sdt-border-subtle);
+    background: var(--sdt-bg-elevated);
+    color: var(--sdt-text-secondary);
+    cursor: pointer;
+    flex-shrink: 0;
+    transition: all 0.15s ease;
+    font-family: var(--sdt-font);
+  }
+
+  .stack-devtool .sdt-ai-new-chat:hover {
+    background: var(--sdt-bg-hover);
+    border-color: var(--sdt-border);
+    color: var(--sdt-text);
+  }
+
+  .stack-devtool .sdt-ai-input-wrapper {
+    flex: 1;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+    border-radius: var(--sdt-radius);
+    background: var(--sdt-bg-elevated);
+    border: 1px solid var(--sdt-border-subtle);
+    padding: 0 4px 0 12px;
+    transition: border-color 0.15s ease;
+  }
+
+  .stack-devtool .sdt-ai-input-wrapper:focus-within {
+    border-color: var(--sdt-accent);
+    box-shadow: 0 0 0 2px var(--sdt-accent-muted);
+  }
+
+  .stack-devtool .sdt-ai-input {
+    flex: 1;
+    background: transparent;
+    border: none;
+    outline: none;
+    color: var(--sdt-text);
+    font-size: 13px;
+    font-family: var(--sdt-font);
+    padding: 8px 0;
+    min-width: 0;
+  }
+
+  .stack-devtool .sdt-ai-input::placeholder {
+    color: var(--sdt-text-tertiary);
+  }
+
+  .stack-devtool .sdt-ai-input:disabled {
+    opacity: 0.5;
+  }
+
+  .stack-devtool .sdt-ai-send-btn {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    width: 30px;
+    height: 30px;
+    border-radius: 6px;
+    border: none;
+    background: transparent;
+    color: var(--sdt-text-tertiary);
+    cursor: not-allowed;
+    flex-shrink: 0;
+    transition: all 0.15s ease;
+    font-family: var(--sdt-font);
+  }
+
+  .stack-devtool .sdt-ai-send-btn-active {
+    background: var(--sdt-accent);
+    color: white;
+    cursor: pointer;
+  }
+
+  .stack-devtool .sdt-ai-send-btn-active:hover {
+    background: var(--sdt-accent-hover);
+  }
+
+  .stack-devtool .sdt-ai-stop-btn,
+  .stack-devtool .sdt-ai-stop-btn:hover {
+    background: var(--sdt-error);
+    color: white;
+  }
+
+  /* Accessible focus indicator for keyboard navigation */
+  .stack-devtool .sdt-tab:focus-visible {
+    outline: 2px solid var(--sdt-accent);
+    outline-offset: -2px;
+    border-radius: var(--sdt-radius);
+  }
+
+  /* Reduced motion: disable animations for users who prefer it */
+  @media (prefers-reduced-motion: reduce) {
+    .stack-devtool .sdt-panel-inner,
+    .stack-devtool .sdt-panel-exiting,
+    .stack-devtool .sdt-tab-content,
+    .stack-devtool .sdt-ov-pulse-dot,
+    .stack-devtool .sdt-ov-skeleton-pill,
+    .stack-devtool .sdt-support-spinner,
+    .stack-devtool .sdt-ai-thinking-dot {
+      animation: none !important;
+    }
+
+    .stack-devtool .sdt-tab-indicator,
+    .stack-devtool .sdt-tab {
+      transition: none !important;
+    }
+  }
+
+  /* --- Stack theme explicit overrides (take priority over system preference) --- */
+  html:has(head > [data-stack-theme="light"]) .stack-devtool {
+    --sdt-bg: #ffffff;
+    --sdt-bg-elevated: #f8f8fa;
+    --sdt-bg-hover: #f0f0f3;
+    --sdt-bg-active: #e8e8ec;
+    --sdt-bg-subtle: #fafafa;
+    --sdt-border: #e0e0e5;
+    --sdt-border-subtle: #eaeaef;
+    --sdt-text: #111113;
+    --sdt-text-secondary: #6b6b73;
+    --sdt-text-tertiary: #9b9ba3;
+    --sdt-accent: #6366f1;
+    --sdt-accent-hover: #4f46e5;
+    --sdt-accent-muted: rgba(99, 102, 241, 0.1);
+    --sdt-success: #16a34a;
+    --sdt-success-muted: rgba(22, 163, 74, 0.1);
+    --sdt-warning: #ca8a04;
+    --sdt-warning-muted: rgba(202, 138, 4, 0.1);
+    --sdt-error: #dc2626;
+    --sdt-error-muted: rgba(220, 38, 38, 0.1);
+    --sdt-info: #2563eb;
+    --sdt-info-muted: rgba(37, 99, 235, 0.1);
+    --sdt-shadow: 0 25px 50px -12px rgba(0, 0, 0, 0.12), 0 0 0 1px rgba(0, 0, 0, 0.06);
+    --sdt-trigger-shadow: 0 4px 12px rgba(0, 0, 0, 0.08), 0 0 0 1px rgba(0, 0, 0, 0.06);
+  }
+
+  html:has(head > [data-stack-theme="dark"]) .stack-devtool {
+    --sdt-bg: #0a0a0b;
+    --sdt-bg-elevated: #141416;
+    --sdt-bg-hover: #1c1c1f;
+    --sdt-bg-active: #232326;
+    --sdt-bg-subtle: #111113;
+    --sdt-border: #2a2a2e;
+    --sdt-border-subtle: #1e1e22;
+    --sdt-text: #ececef;
+    --sdt-text-secondary: #8b8b93;
+    --sdt-text-tertiary: #5c5c66;
+    --sdt-accent: #6366f1;
+    --sdt-accent-hover: #818cf8;
+    --sdt-accent-muted: rgba(99, 102, 241, 0.15);
+    --sdt-success: #22c55e;
+    --sdt-success-muted: rgba(34, 197, 94, 0.15);
+    --sdt-warning: #eab308;
+    --sdt-warning-muted: rgba(234, 179, 8, 0.15);
+    --sdt-error: #ef4444;
+    --sdt-error-muted: rgba(239, 68, 68, 0.15);
+    --sdt-info: #3b82f6;
+    --sdt-info-muted: rgba(59, 130, 246, 0.15);
+    --sdt-shadow: 0 25px 50px -12px rgba(0, 0, 0, 0.5), 0 0 0 1px rgba(255, 255, 255, 0.05);
+    --sdt-trigger-shadow: 0 4px 12px rgba(0, 0, 0, 0.4), 0 0 0 1px rgba(255, 255, 255, 0.08);
+  }
+`;
diff --git a/packages/template/src/dev-tool/dev-tool-trigger-position.test.ts b/packages/template/src/dev-tool/dev-tool-trigger-position.test.ts
new file mode 100644
index 0000000000..8487d82e82
--- /dev/null
+++ b/packages/template/src/dev-tool/dev-tool-trigger-position.test.ts
@@ -0,0 +1,36 @@
+import { describe, expect, it } from "vitest";
+import { getSnappedTriggerPlacement, resolveTriggerPosition } from "./dev-tool-trigger-position";
+
+const triggerSize = { width: 76, height: 36 };
+const viewport = { width: 1000, height: 700 };
+
+describe("dev tool trigger snapping", () => {
+  it("snaps to the nearest vertical side", () => {
+    const placement = getSnappedTriggerPlacement({ left: 940, top: 250 }, triggerSize, viewport);
+
+    expect(placement).toEqual({ side: "right", offset: 250 });
+    expect(resolveTriggerPosition(placement, triggerSize, viewport)).toEqual({ left: 908, top: 250 });
+  });
+
+  it("snaps to the nearest horizontal side", () => {
+    const placement = getSnappedTriggerPlacement({ left: 320, top: 10 }, triggerSize, viewport);
+
+    expect(placement).toEqual({ side: "top", offset: 320 });
+    expect(resolveTriggerPosition(placement, triggerSize, viewport)).toEqual({ left: 320, top: 16 });
+  });
+
+  it("prefers a side over corner docking when the position lands in a corner", () => {
+    const placement = getSnappedTriggerPlacement({ left: 924, top: 664 }, triggerSize, viewport);
+
+    expect(placement).toEqual({ side: "right", offset: 664 });
+  });
+
+  it("keeps the trigger attached to the same side across viewport changes", () => {
+    const placement = { side: "right", offset: 664 } as const;
+
+    expect(resolveTriggerPosition(placement, triggerSize, { width: 800, height: 500 })).toEqual({
+      left: 708,
+      top: 464,
+    });
+  });
+});
diff --git a/packages/template/src/dev-tool/dev-tool-trigger-position.ts b/packages/template/src/dev-tool/dev-tool-trigger-position.ts
new file mode 100644
index 0000000000..72fec7ab46
--- /dev/null
+++ b/packages/template/src/dev-tool/dev-tool-trigger-position.ts
@@ -0,0 +1,142 @@
+export type TriggerSide = 'left' | 'right' | 'top' | 'bottom';
+
+export type TriggerPosition = {
+  left: number;
+  top: number;
+};
+
+export type TriggerPlacement = {
+  side: TriggerSide;
+  offset: number;
+};
+
+export type TriggerSize = {
+  width: number;
+  height: number;
+};
+
+export type TriggerViewport = {
+  width: number;
+  height: number;
+};
+
+export const TRIGGER_EDGE_MARGIN = 16;
+
+function clamp(value: number, min: number, max: number) {
+  return Math.max(min, Math.min(value, max));
+}
+
+function getBounds(
+  triggerSize: TriggerSize,
+  viewport: TriggerViewport,
+  edgeMargin: number,
+) {
+  const maxLeft = Math.max(0, viewport.width - triggerSize.width);
+  const maxTop = Math.max(0, viewport.height - triggerSize.height);
+  const minSnapLeft = Math.min(edgeMargin, maxLeft);
+  const maxSnapLeft = Math.max(minSnapLeft, maxLeft - edgeMargin);
+  const minSnapTop = Math.min(edgeMargin, maxTop);
+  const maxSnapTop = Math.max(minSnapTop, maxTop - edgeMargin);
+
+  return {
+    maxLeft,
+    maxTop,
+    minSnapLeft,
+    maxSnapLeft,
+    minSnapTop,
+    maxSnapTop,
+  };
+}
+
+export function clampTriggerPosition(
+  position: TriggerPosition,
+  triggerSize: TriggerSize,
+  viewport: TriggerViewport,
+): TriggerPosition {
+  const { maxLeft, maxTop } = getBounds(triggerSize, viewport, TRIGGER_EDGE_MARGIN);
+
+  return {
+    left: clamp(position.left, 0, maxLeft),
+    top: clamp(position.top, 0, maxTop),
+  };
+}
+
+export function getSnappedTriggerPlacement(
+  position: TriggerPosition,
+  triggerSize: TriggerSize,
+  viewport: TriggerViewport,
+): TriggerPlacement {
+  const clamped = clampTriggerPosition(position, triggerSize, viewport);
+  const bounds = getBounds(triggerSize, viewport, TRIGGER_EDGE_MARGIN);
+
+  const candidates: TriggerPlacement[] = [
+    { side: 'left', offset: clamped.top },
+    { side: 'right', offset: clamped.top },
+    { side: 'top', offset: clamped.left },
+    { side: 'bottom', offset: clamped.left },
+  ];
+
+  function getDistance(placement: TriggerPlacement) {
+    switch (placement.side) {
+      case 'left': {
+        return Math.abs(clamped.left - bounds.minSnapLeft);
+      }
+      case 'right': {
+        return Math.abs(clamped.left - bounds.maxSnapLeft);
+      }
+      case 'top': {
+        return Math.abs(clamped.top - bounds.minSnapTop);
+      }
+      case 'bottom': {
+        return Math.abs(clamped.top - bounds.maxSnapTop);
+      }
+    }
+  }
+
+  let nearest = candidates[0];
+  let nearestDistance = getDistance(nearest);
+  for (const candidate of candidates.slice(1)) {
+    const distance = getDistance(candidate);
+    if (distance < nearestDistance) {
+      nearest = candidate;
+      nearestDistance = distance;
+    }
+  }
+
+  return nearest;
+}
+
+export function resolveTriggerPosition(
+  placement: TriggerPlacement,
+  triggerSize: TriggerSize,
+  viewport: TriggerViewport,
+): TriggerPosition {
+  const bounds = getBounds(triggerSize, viewport, TRIGGER_EDGE_MARGIN);
+
+  switch (placement.side) {
+    case 'left': {
+      return {
+        left: bounds.minSnapLeft,
+        top: clamp(placement.offset, 0, bounds.maxTop),
+      };
+    }
+    case 'right': {
+      return {
+        left: bounds.maxSnapLeft,
+        top: clamp(placement.offset, 0, bounds.maxTop),
+      };
+    }
+    case 'top': {
+      return {
+        left: clamp(placement.offset, 0, bounds.maxLeft),
+        top: bounds.minSnapTop,
+      };
+    }
+    case 'bottom': {
+      return {
+        left: clamp(placement.offset, 0, bounds.maxLeft),
+        top: bounds.maxSnapTop,
+      };
+    }
+  }
+}
diff --git a/packages/template/src/dev-tool/index.ts b/packages/template/src/dev-tool/index.ts
new file mode 100644
index 0000000000..ad3d97bdca
--- /dev/null
+++ b/packages/template/src/dev-tool/index.ts
@@ -0,0 +1,114 @@
+// IF_PLATFORM js-like
+
+import type { StackClientApp } from "../lib/stack-app";
+import { isLocalhost } from "@stackframe/stack-shared/dist/utils/urls";
+import { createDevTool } from "./dev-tool-core";
+
+const OVERRIDE_KEY = '__stack-dev-tool-override';
+
+function hasAppendChild(value: unknown): value is { appendChild(node: Node): void } {
+  return typeof value === 'object' && value !== null && typeof Reflect.get(value, 'appendChild') === 'function';
+}
+
+function canMountIntoDom(): boolean {
+  if (typeof window === 'undefined' || typeof document === 'undefined') {
+    return false;
+  }
+  if (typeof document.createElement !== 'function') {
+    return false;
+  }
+  return hasAppendChild(Reflect.get(document, 'body'));
+}
+
+function getOverride(): boolean | null {
+  try {
+    const val = localStorage.getItem(OVERRIDE_KEY);
+    if (val === 'true') return true;
+    if (val === 'false') return false;
+  } catch {}
+  return null;
+}
+
+function shouldShow(): boolean {
+  const override = getOverride();
+  if (override !== null) return override;
+  if (!canMountIntoDom()) return false;
+  return isLocalhost(window.location.href);
+}
+
+let activeCleanup: (() => void) | null = null;
+let activeApp: StackClientApp<true> | null = null;
+
+function tryMount() {
+  if (activeCleanup) {
+    activeCleanup();
+    activeCleanup = null;
+  }
+
+  if (!shouldShow() || !activeApp || !canMountIntoDom()) return;
+
+  const app = activeApp;
+  activeCleanup = createDevTool(app);
+}
+
+/**
+ * Mounts the Stack Auth dev tool on the page.
+ *
+ * - Only renders on localhost (or when overridden via console)
+ * - Lazily loads the dev tool UI via dynamic import
+ * - Returns a cleanup function to unmount
+ *
+ * Console commands (also work in production):
+ *   StackDevTool.enable()  — force-show the dev tool
+ *   StackDevTool.disable() — force-hide the dev tool
+ *   StackDevTool.reset()   — revert to default (localhost-only)
+ */
+export function mountDevTool(app: StackClientApp<true>): () => void {
+  activeApp = app;
+  tryMount();
+
+  return () => {
+    activeApp = null;
+    if (activeCleanup) {
+      activeCleanup();
+      activeCleanup = null;
+    }
+  };
+}
+
+// Expose console commands: StackDevTool.enable() / .disable() / .reset()
+if (typeof window !== 'undefined') {
+  (window as any).StackDevTool = {
+    enable() {
+      try {
+        localStorage.setItem(OVERRIDE_KEY, 'true');
+      } catch {}
+      tryMount();
+      console.log('[Stack DevTool] Enabled. Refresh if the panel does not appear.');
+    },
+    disable() {
+      try {
+        localStorage.setItem(OVERRIDE_KEY, 'false');
+      } catch {}
+      if (activeCleanup) {
+        activeCleanup();
+        activeCleanup = null;
+      }
+      console.log('[Stack DevTool] Disabled.');
+    },
+    reset() {
+      try {
+        localStorage.removeItem(OVERRIDE_KEY);
+      } catch {}
+      if (shouldShow()) {
+        tryMount();
+      } else if (activeCleanup) {
+        activeCleanup();
+        activeCleanup = null;
+      }
+      console.log('[Stack DevTool] Reset to default (visible on localhost only).');
+    },
+  };
+}
+
+// END_PLATFORM
diff --git a/packages/template/src/lib/env.ts b/packages/template/src/lib/env.ts
index e876adaa8b..7ba80bf0bb 100644
--- a/packages/template/src/lib/env.ts
+++ b/packages/template/src/lib/env.ts
@@ -77,4 +77,7 @@ export const envVars = {
   get NODE_ENV() {
     return (typeof process !== "undefined" ? process.env.NODE_ENV : undefined) ?? undefined;
   },
+  get NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR() {
+    return (typeof process !== "undefined" ? process.env.NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR : undefined) ?? undefined;
+  },
 };
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
index 12386ae464..9e6b3e20d6 100644
--- a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
@@ -1,5 +1,6 @@
 import { WebAuthnError, startAuthentication, startRegistration } from "@simplewebauthn/browser";
 import { KnownErrors, StackClientInterface } from "@stackframe/stack-shared";
+import type { RequestListener } from "@stackframe/stack-shared/dist/interface/client-interface";
 import { ContactChannelsCrud } from "@stackframe/stack-shared/dist/interface/crud/contact-channels";
 import { CurrentUserCrud } from "@stackframe/stack-shared/dist/interface/crud/current-user";
 import type { CustomerInvoicesListResponse } from "@stackframe/stack-shared/dist/interface/crud/invoices";
@@ -65,6 +66,9 @@ import { AnalyticsOptions, SessionRecorder, analyticsOptionsFromJson, analyticsO
 // IF_PLATFORM react-like
 import { useAsyncCache } from "./common";
 // END_PLATFORM
+// IF_PLATFORM js-like
+import { mountDevTool } from "../../../../dev-tool";
+// END_PLATFORM
 
 let isReactServer = false;
 // IF_PLATFORM next
@@ -574,6 +578,12 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
       });
       this._eventTracker.start();
     }
+
+    // IF_PLATFORM js-like
+    if (isBrowserLike()) {
+      mountDevTool(this as any);
+    }
+    // END_PLATFORM
   }
 
   protected _initUniqueIdentifier() {
@@ -3443,6 +3453,9 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
       sendAnalyticsEventBatch: async (body: string, options: { keepalive: boolean }) => {
         return await this._interface.sendAnalyticsEventBatch(body, await this._getSession(), options);
       },
+      addRequestListener: (listener: RequestListener) => {
+        return this._interface.addRequestListener(listener);
+      },
       sendRequest: async (
         path: string,
         requestOptions: RequestInit,
diff --git a/packages/template/src/lib/stack-app/apps/interfaces/client-app.ts b/packages/template/src/lib/stack-app/apps/interfaces/client-app.ts
index 462fcf354e..de2b0bd16d 100644
--- a/packages/template/src/lib/stack-app/apps/interfaces/client-app.ts
+++ b/packages/template/src/lib/stack-app/apps/interfaces/client-app.ts
@@ -2,6 +2,7 @@ import { KnownErrors } from "@stackframe/stack-shared";
 import { CurrentUserCrud } from "@stackframe/stack-shared/dist/interface/crud/current-user";
 import { Result } from "@stackframe/stack-shared/dist/utils/results";
 import { AsyncStoreProperty, AuthLike, GetCurrentPartialUserOptions, GetCurrentUserOptions, HandlerUrlOptions, HandlerUrls, OAuthScopesOnSignIn, RedirectMethod, RedirectToOptions, ResolvedHandlerUrls, stackAppInternalsSymbol, TokenStoreInit } from "../../common";
+import type { RequestListener } from "@stackframe/stack-shared/dist/interface/client-interface";
 import { CustomerInvoicesList, CustomerInvoicesRequestOptions, CustomerProductsList, CustomerProductsRequestOptions, Item } from "../../customers";
 import { Project } from "../../projects";
 import { ProjectCurrentUser, SyncedPartialUser, TokenPartialUser } from "../../users";
@@ -115,6 +116,7 @@ export type StackClientApp<HasTokenStore extends boolean = boolean, ProjectId ex
       getConstructorOptions(): StackClientAppConstructorOptions<HasTokenStore, ProjectId> & { inheritsFrom?: undefined },
       sendSessionReplayBatch(body: string, options: { keepalive: boolean }): Promise<Result<Response, Error>>,
       sendAnalyticsEventBatch(body: string, options: { keepalive: boolean }): Promise<Result<Response, Error>>,
+      addRequestListener(listener: RequestListener): () => void,
     },
   }
   & AsyncStoreProperty<"project", [], Project, false>
diff --git a/packages/template/src/lib/stack-app/common.ts b/packages/template/src/lib/stack-app/common.ts
index 331db26ef6..841c481b1b 100644
--- a/packages/template/src/lib/stack-app/common.ts
+++ b/packages/template/src/lib/stack-app/common.ts
@@ -1,5 +1,14 @@
 import { ProviderType } from "@stackframe/stack-shared/dist/utils/oauth";
 import type { GenericQueryCtx, UserIdentity } from "convex/server";
+export type {
+  DefaultHandlerUrlTarget,
+  HandlerPageUrls,
+  HandlerRedirectUrls,
+  HandlerUrlOptions,
+  HandlerUrlTarget,
+  HandlerUrls,
+  ResolvedHandlerUrls,
+} from "@stackframe/stack-shared/dist/interface/handler-urls";
 
 export type RedirectToOptions = {
   replace?: boolean,
@@ -85,38 +94,6 @@ export type TokenStoreInit<HasTokenStore extends boolean = boolean> =
   : HasTokenStore extends false ? null
   : TokenStoreInit<true> | TokenStoreInit<false>;
 
-export type HandlerPageUrls = Record<
-  | "handler"
-  | "signIn"
-  | "signUp"
-  | "signOut"
-  | "emailVerification"
-  | "passwordReset"
-  | "forgotPassword"
-  | "oauthCallback"
-  | "magicLinkCallback"
-  | "accountSettings"
-  | "teamInvitation"
-  | "mfa"
-  | "error"
-  | "onboarding",
-  string | { type: "custom", url: string, version: number } | { type: "hosted" | "handler-component" }
->;
-export type HandlerRedirectUrls = Record<
-  | "afterSignIn"
-  | "afterSignUp"
-  | "afterSignOut"
-  | "home",
-  string
->;
-export type HandlerUrls = HandlerPageUrls & HandlerRedirectUrls;
-export type HandlerUrlTarget = HandlerUrls[keyof HandlerUrls];
-export type DefaultHandlerUrlTarget = string | { type: "hosted" | "handler-component" };
-export type HandlerUrlOptions = Partial<HandlerUrls> & { default?: DefaultHandlerUrlTarget };
-export type ResolvedHandlerUrls = {
-  [K in keyof HandlerUrls]: string;
-};
-
 export type OAuthScopesOnSignIn = {
   [key in ProviderType]: string[];
 };
diff --git a/packages/template/src/lib/stack-app/index.ts b/packages/template/src/lib/stack-app/index.ts
index f3aa76251e..0167740088 100644
--- a/packages/template/src/lib/stack-app/index.ts
+++ b/packages/template/src/lib/stack-app/index.ts
@@ -33,6 +33,9 @@ export type {
 export {
   stackAppInternalsSymbol
 } from "./common";
+export {
+  getPagePrompt,
+} from "./url-targets";
 export type {
   GetCurrentUserOptions,
   /** @deprecated Use GetCurrentUserOptions instead */
diff --git a/packages/template/src/lib/stack-app/url-targets.test.ts b/packages/template/src/lib/stack-app/url-targets.test.ts
index b327da3bce..34161b3a31 100644
--- a/packages/template/src/lib/stack-app/url-targets.test.ts
+++ b/packages/template/src/lib/stack-app/url-targets.test.ts
@@ -1,5 +1,5 @@
 import { afterEach, describe, expect, it, vi } from "vitest";
-import { isLocalHandlerUrlTarget, resolveHandlerUrls, resolveUnknownHandlerPathFallbackUrl } from "./url-targets";
+import { getPagePrompt, isLocalHandlerUrlTarget, resolveHandlerUrls, resolveUnknownHandlerPathFallbackUrl } from "./url-targets";
 
 describe("handler URL targets", () => {
   afterEach(() => {
@@ -41,11 +41,32 @@ describe("handler URL targets", () => {
     })).toThrowError(/cannot be a custom page/);
   });
 
-  it("throws on unsupported non-zero custom target versions", () => {
+  it("supports the latest documented custom target version", () => {
+    const signInPrompt = getPagePrompt("signIn");
+    if (signInPrompt == null) {
+      throw new Error("Expected signIn prompt metadata to exist");
+    }
+
+    const urls = resolveHandlerUrls({
+      projectId: "project-id",
+      urls: {
+        signIn: { type: "custom", url: "/custom-sign-in", version: signInPrompt.latestVersion },
+      },
+    });
+
+    expect(urls.signIn).toBe("/custom-sign-in");
+  });
+
+  it("throws on custom target versions newer than the latest supported version", () => {
+    const signInPrompt = getPagePrompt("signIn");
+    if (signInPrompt == null) {
+      throw new Error("Expected signIn prompt metadata to exist");
+    }
+
     expect(() => resolveHandlerUrls({
       projectId: "project-id",
       urls: {
-        signIn: { type: "custom", url: "/custom-sign-in", version: 1 },
+        signIn: { type: "custom", url: "/custom-sign-in", version: signInPrompt.latestVersion + 1 },
       },
     })).toThrowError(/Unsupported custom page version/);
   });
diff --git a/packages/template/src/lib/stack-app/url-targets.ts b/packages/template/src/lib/stack-app/url-targets.ts
index a758fa7cf3..a5dffb8741 100644
--- a/packages/template/src/lib/stack-app/url-targets.ts
+++ b/packages/template/src/lib/stack-app/url-targets.ts
@@ -1,5 +1,5 @@
+import { getCustomPagePrompts, type CustomPagePrompt } from "@stackframe/stack-shared/dist/interface/handler-urls";
 import { StackAssertionError } from "@stackframe/stack-shared/dist/utils/errors";
-import { deindent } from "@stackframe/stack-shared/dist/utils/strings";
 import { envVars } from "../env";
 import { DefaultHandlerUrlTarget, HandlerPageUrls, HandlerUrlOptions, HandlerUrlTarget, HandlerUrls, ResolvedHandlerUrls } from "./common";
 
@@ -9,82 +9,7 @@ const hostedHandlerPathPlaceholder = "{hostedPath}";
 const localUrlPlaceholderOrigin = "http://example.com";
 const schemePrefixRegex = /^[a-zA-Z][a-zA-Z\d+\-.]*:/;
 
-type CustomPagePrompt = {
-  title: string,
-  fullPrompt: string,
-  versions: Record<number, {
-    minSdkVersion: `${number}.${number}.${number}`,
-    upgradePrompt: string,
-  }>,
-};
-
-const customPagePrompts: Record<keyof Omit<HandlerPageUrls, "handler">, CustomPagePrompt> = {
-  signIn: {
-    title: "Sign In",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  signUp: {
-    title: "Sign Up",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  signOut: {
-    title: "Sign Out",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  emailVerification: {
-    title: "Email Verification",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  passwordReset: {
-    title: "Password Reset",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  forgotPassword: {
-    title: "Forgot Password",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  oauthCallback: {
-    title: "OAuth Callback",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  magicLinkCallback: {
-    title: "Magic Link Callback",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  accountSettings: {
-    title: "Account Settings",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  teamInvitation: {
-    title: "Team Invitation",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  mfa: {
-    title: "MFA",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  error: {
-    title: "Error",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-  onboarding: {
-    title: "Onboarding",
-    fullPrompt: deindent``,
-    versions: {},
-  },
-};
+const customPagePrompts: Record<keyof Omit<HandlerPageUrls, "handler">, CustomPagePrompt> = getCustomPagePrompts();
 
 const replaceStackPortPrefix = <T extends string | undefined>(input: T): T => {
   if (!input) return input;
@@ -425,6 +350,29 @@ export const resolveUnknownHandlerPathFallbackUrl = (options: {
   }
 };
 
+export function getPagePrompt(pageName: string, currentVersion?: number): { title: string; fullPrompt: string; upgradePrompt: string | null; latestVersion: number } | null {
+  if (!(pageName in customPagePrompts)) return null;
+  const prompt = customPagePrompts[pageName as keyof typeof customPagePrompts];
+  const versionKeys = Object.keys(prompt.versions).map(Number);
+  const latestVersion = versionKeys.length > 0 ? Math.max(...versionKeys) : 0;
+
+  let upgradePrompt: string | null = null;
+  if (currentVersion != null) {
+    const relevantVersions = versionKeys
+      .filter(v => v > currentVersion)
+      .sort((a, b) => a - b);
+    const prompts = relevantVersions
+      .map(v => prompt.versions[v].upgradePrompt)
+      .filter(p => p.length > 0);
+    upgradePrompt = prompts.length > 0 ? prompts.join("\n\n") : null;
+  } else {
+    const upgradeEntry = latestVersion > 0 ? prompt.versions[latestVersion] : undefined;
+    upgradePrompt = upgradeEntry?.upgradePrompt ?? null;
+  }
+
+  return { title: prompt.title, fullPrompt: prompt.fullPrompt, upgradePrompt, latestVersion };
+}
+
 export const isHostedHandlerUrlForProject = (options: { url: string, projectId: string }): boolean => {
   let parsedUrl: URL;
   try {
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index b3adb2d53c..5dd52f0d85 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -1064,6 +1064,12 @@ importers:
       '@emotion/styled':
         specifier: ^11.13.0
         version: 11.13.0(@emotion/react@11.13.3(@types/react@18.3.12)(react@19.0.1))(@types/react@18.3.12)(react@19.0.1)
+      '@stackframe/js':
+        specifier: workspace:*
+        version: link:../../packages/js
+      '@stackframe/react':
+        specifier: workspace:*
+        version: link:../../packages/react
       '@stackframe/stack':
         specifier: workspace:*
         version: link:../../packages/stack
@@ -1719,6 +1725,9 @@ importers:
 
   packages/react:
     dependencies:
+      '@ai-sdk/react':
+        specifier: ^3.0.72
+        version: 3.0.143(react@19.2.1)(zod@4.3.6)
       '@hookform/resolvers':
         specifier: ^5.2.2
         version: 5.2.2(react-hook-form@7.70.0(react@19.2.1))
@@ -1746,6 +1755,9 @@ importers:
       '@types/react':
         specifier: ^18.2.0
         version: 18.3.12
+      ai:
+        specifier: ^6.0.0
+        version: 6.0.141(zod@4.3.6)
       browser-image-compression:
         specifier: ^2.0.2
         version: 2.0.2
@@ -1852,6 +1864,9 @@ importers:
 
   packages/stack:
     dependencies:
+      '@ai-sdk/react':
+        specifier: ^3.0.72
+        version: 3.0.143(react@19.2.1)(zod@4.3.6)
       '@hookform/resolvers':
         specifier: ^5.2.2
         version: 5.2.2(react-hook-form@7.70.0(react@19.2.1))
@@ -1882,6 +1897,9 @@ importers:
       '@types/react':
         specifier: ^18.2.0
         version: 18.3.12
+      ai:
+        specifier: ^6.0.0
+        version: 6.0.141(zod@4.3.6)
       browser-image-compression:
         specifier: ^2.0.2
         version: 2.0.2
@@ -2304,6 +2322,9 @@ importers:
 
   packages/template:
     dependencies:
+      '@ai-sdk/react':
+        specifier: ^3.0.72
+        version: 3.0.143(react@19.2.1)(zod@4.3.6)
       '@hookform/resolvers':
         specifier: ^5.2.2
         version: 5.2.2(react-hook-form@7.70.0(react@19.2.1))
@@ -2334,6 +2355,9 @@ importers:
       '@types/react':
         specifier: ^18.2.0
         version: 18.3.12
+      ai:
+        specifier: ^6.0.0
+        version: 6.0.141(zod@4.3.6)
       browser-image-compression:
         specifier: ^2.0.2
         version: 2.0.2
@@ -2456,6 +2480,12 @@ packages:
     peerDependencies:
       zod: ^3.25.76 || ^4.1.8
 
+  '@ai-sdk/gateway@3.0.83':
+    resolution: {integrity: sha512-LvlWujbSdEkTBXBLFtF7GS6riXdHhH0O+DpDrCaNQvXeHmSF2jKsOg7JWXiCgygAHM5cWFAO3JYmZp83DjiuBQ==}
+    engines: {node: '>=18'}
+    peerDependencies:
+      zod: ^3.25.76 || ^4.1.8
+
   '@ai-sdk/mcp@1.0.21':
     resolution: {integrity: sha512-dRX2X6GDadZNpiylNnw0HP7zJC8ggVOOJV/JtxuF6CgtP8CKnc7a/wEzpUw1m/4AGdD3mTDhKnKFwC4y10a8FQ==}
     engines: {node: '>=18'}
@@ -2486,6 +2516,12 @@ packages:
     peerDependencies:
       zod: ^3.25.76 || ^4.1.8
 
+  '@ai-sdk/provider-utils@4.0.21':
+    resolution: {integrity: sha512-MtFUYI1/8mgDvRmaBDjbLJPFFrMG777AvSgyIFQtZHIMzm88R/12vYBBpnk7pfiWLFE1DSZzY4WDYzGbKAcmiw==}
+    engines: {node: '>=18'}
+    peerDependencies:
+      zod: ^3.25.76 || ^4.1.8
+
   '@ai-sdk/provider@1.1.3':
     resolution: {integrity: sha512-qZMxYJ0qqX/RfnuIaab+zp8UAeJn/ygXXAffR5I4N0n1IrvA6qBsjc8hXLmBiMV2zoXlifkacF7sEFnYnjBcqg==}
     engines: {node: '>=18'}
@@ -2494,6 +2530,12 @@ packages:
     resolution: {integrity: sha512-oGMAgGoQdBXbZqNG0Ze56CHjDZ1IDYOwGYxYjO5KLSlz5HiNQ9udIXsPZ61VWaHGZ5XW/jyjmr6t2xz2jGVwbQ==}
     engines: {node: '>=18'}
 
+  '@ai-sdk/react@3.0.143':
+    resolution: {integrity: sha512-yYXrrscpF3MiCycGizgw1rukbhXBnoYpisC9vt12UU4i0tkyBMBCtBrsqLTJFrItax6ZR9TjTcGdNTqKqJhyow==}
+    engines: {node: '>=18'}
+    peerDependencies:
+      react: ^18 || ~19.0.1 || ~19.1.2 || ^19.2.1
+
   '@ai-sdk/react@3.0.83':
     resolution: {integrity: sha512-UsHr+/N0pqGY90BwPFFpWXhY5eVYjNgcWCvSeDMRrzfPvtcd2yqHXlwR7/bveRryVB4NmJ2z6sjyLyOgOHRQdw==}
     engines: {node: '>=18'}
@@ -10636,6 +10678,12 @@ packages:
     resolution: {integrity: sha512-0poP0T7el6Vq3rstR8Mn4V/IQrpBLO6POkUSrN7RhyY+GF/InCFShQzsQ39T25gkHhLgSLByyAz+Kjb+c2L98w==}
     engines: {node: '>=12'}
 
+  ai@6.0.141:
+    resolution: {integrity: sha512-+GomGQWaId3xN0wcugUW/H7xMMaFkID2PiS7K/Wugj45G3efv0BXhQ3psRZoQVoRbOpdNoUqcK/KTB+FR4h6qg==}
+    engines: {node: '>=18'}
+    peerDependencies:
+      zod: ^3.25.76 || ^4.1.8
+
   ai@6.0.81:
     resolution: {integrity: sha512-F9EEhjl2dn1VGS5tbU64ldLbqRemV9X1WHghVblpJlPCWuyYj1xpPQsj+G0TRs/SyAGnbpG1yYpl9mkwfr1H8w==}
     engines: {node: '>=18'}
@@ -10951,6 +10999,23 @@ packages:
   bare-events@2.4.2:
     resolution: {integrity: sha512-qMKFd2qG/36aA4GwvKq8MxnPgCQAmBWmSyLWsJcbn8v03wvIPQ/hG1Ms8bPzndZxMDoHpxez5VOS+gC9Yi24/Q==}
 
+  bare-events@2.8.2:
+    resolution: {integrity: sha512-riJjyv1/mHLIPX4RwiK+oW9/4c3TEUeORHKefKAKnZ5kyslbN+HXowtbaVEqt4IMUB7OXlfixcs6gsFeo/jhiQ==}
+    peerDependencies:
+      bare-abort-controller: '*'
+    peerDependenciesMeta:
+      bare-abort-controller:
+        optional: true
+
+  bare-fs@4.6.0:
+    resolution: {integrity: sha512-2YkS7NuiJceSEbyEOdSNLE9tsGd+f4+f7C+Nik/MCk27SYdwIMPT/yRKvg++FZhQXgk0KWJKJyXX9RhVV0RGqA==}
+    engines: {bare: '>=1.16.0'}
+    peerDependencies:
+      bare-buffer: '*'
+    peerDependenciesMeta:
+      bare-buffer:
+        optional: true
+
   bare-os@3.8.7:
     resolution: {integrity: sha512-G4Gr1UsGeEy2qtDTZwL7JFLo2wapUarz7iTMcYcMFdS89AIQuBoyjgXZz0Utv7uHs3xA9LckhVbeBi8lEQrC+w==}
     engines: {bare: '>=1.14.0'}
@@ -10958,6 +11023,23 @@ packages:
   bare-path@3.0.0:
     resolution: {integrity: sha512-tyfW2cQcB5NN8Saijrhqn0Zh7AnFNsnczRcuWODH0eYAXBsJ5gVxAUuNr7tsHSC6IZ77cA0SitzT+s47kot8Mw==}
 
+  bare-stream@2.12.0:
+    resolution: {integrity: sha512-w28i8lkBgREV3rPXGbgK+BO66q+ZpKqRWrZLiCdmmUlLPrQ45CzkvRhN+7lnv00Gpi2zy5naRxnUFAxCECDm9g==}
+    peerDependencies:
+      bare-abort-controller: '*'
+      bare-buffer: '*'
+      bare-events: '*'
+    peerDependenciesMeta:
+      bare-abort-controller:
+        optional: true
+      bare-buffer:
+        optional: true
+      bare-events:
+        optional: true
+
+  bare-url@2.4.0:
+    resolution: {integrity: sha512-NSTU5WN+fy/L0DDenfE8SXQna4voXuW0FHM7wH8i3/q9khUSchfPbPezO4zSFMnDGIf9YE+mt/RWhZgNRKRIXA==}
+
   base64-arraybuffer@1.0.2:
     resolution: {integrity: sha512-I3yl4r9QB5ZRY3XuJVEPfc2XhZO6YweFPI+UovAzn+8/hb3oJ6lnysaFcjVpkCPfVWFUDvoZ8kmVDP7WyRtYtQ==}
     engines: {node: '>= 0.6.0'}
@@ -12823,6 +12905,9 @@ packages:
   eventemitter3@4.0.7:
     resolution: {integrity: sha512-8guHBZCwKnFhYdHr2ysuRWErTwhoN2X8XELRlrRwpmfeY2jjuUN4taQMsULKUVo1K4DvZl+0pgfyoysHxvmvEw==}
 
+  events-universal@1.0.1:
+    resolution: {integrity: sha512-LUd5euvbMLpwOF8m6ivPCbhQeSiYVNb8Vs0fQ8QjXo0JTkEHpz8pxdQf0gStltaPpw0Cca8b39KxvK9cfKRiAw==}
+
   events@3.3.0:
     resolution: {integrity: sha512-mQw+2fkQbALzQ7V0MY0IqdnXNOeTtP4r0lN9z7AAawCXgqea7bDii20AYrIBrFd/Hx0M2Ocz6S111CaFkUcb0Q==}
     engines: {node: '>=0.8.x'}
@@ -17340,6 +17425,9 @@ packages:
   streamx@2.18.0:
     resolution: {integrity: sha512-LLUC1TWdjVdn1weXGcSxyTR3T4+acB6tVGXT95y0nGbca4t4o/ng1wKAGTljm9VicuCVLvRlqFYXYy5GwgM7sQ==}
 
+  streamx@2.25.0:
+    resolution: {integrity: sha512-0nQuG6jf1w+wddNEEXCF4nTg3LtufWINB5eFEN+5TNZW7KWJp6x87+JFL43vaAUPyCfH1wID+mNVyW6OHtFamg==}
+
   string-width@3.1.0:
     resolution: {integrity: sha512-vafcv6KjVZKSgz06oM/H6GDBrAtz8vdhQakGjFIvNrHA6y3HCF1CInLy+QLq8dTJPQ1b+KDUqDFctkdRW44e1w==}
     engines: {node: '>=6'}
@@ -19017,6 +19105,20 @@ snapshots:
       '@vercel/oidc': 3.1.0
       zod: 4.1.12
 
+  '@ai-sdk/gateway@3.0.83(zod@3.25.76)':
+    dependencies:
+      '@ai-sdk/provider': 3.0.8
+      '@ai-sdk/provider-utils': 4.0.21(zod@3.25.76)
+      '@vercel/oidc': 3.1.0
+      zod: 3.25.76
+
+  '@ai-sdk/gateway@3.0.83(zod@4.3.6)':
+    dependencies:
+      '@ai-sdk/provider': 3.0.8
+      '@ai-sdk/provider-utils': 4.0.21(zod@4.3.6)
+      '@vercel/oidc': 3.1.0
+      zod: 4.3.6
+
   '@ai-sdk/mcp@1.0.21(zod@3.25.76)':
     dependencies:
       '@ai-sdk/provider': 3.0.8
@@ -19058,6 +19160,20 @@ snapshots:
       eventsource-parser: 3.0.6
       zod: 3.25.76
 
+  '@ai-sdk/provider-utils@4.0.21(zod@3.25.76)':
+    dependencies:
+      '@ai-sdk/provider': 3.0.8
+      '@standard-schema/spec': 1.1.0
+      eventsource-parser: 3.0.6
+      zod: 3.25.76
+
+  '@ai-sdk/provider-utils@4.0.21(zod@4.3.6)':
+    dependencies:
+      '@ai-sdk/provider': 3.0.8
+      '@standard-schema/spec': 1.1.0
+      eventsource-parser: 3.0.6
+      zod: 4.3.6
+
   '@ai-sdk/provider@1.1.3':
     dependencies:
       json-schema: 0.4.0
@@ -19066,26 +19182,36 @@ snapshots:
     dependencies:
       json-schema: 0.4.0
 
-  '@ai-sdk/react@3.0.83(react@18.3.1)(zod@3.25.76)':
+  '@ai-sdk/react@3.0.143(react@19.2.1)(zod@4.3.6)':
     dependencies:
-      '@ai-sdk/provider-utils': 4.0.14(zod@3.25.76)
-      ai: 6.0.81(zod@3.25.76)
-      react: 18.3.1
-      swr: 2.3.4(react@18.3.1)
+      '@ai-sdk/provider-utils': 4.0.21(zod@4.3.6)
+      ai: 6.0.141(zod@4.3.6)
+      react: 19.2.1
+      swr: 2.3.4(react@19.2.1)
       throttleit: 2.1.0
     transitivePeerDependencies:
       - zod
 
-  '@ai-sdk/react@3.0.83(react@19.2.3)(zod@3.25.76)':
+  '@ai-sdk/react@3.0.143(react@19.2.3)(zod@3.25.76)':
     dependencies:
-      '@ai-sdk/provider-utils': 4.0.14(zod@3.25.76)
-      ai: 6.0.81(zod@3.25.76)
+      '@ai-sdk/provider-utils': 4.0.21(zod@3.25.76)
+      ai: 6.0.141(zod@3.25.76)
       react: 19.2.3
       swr: 2.3.4(react@19.2.3)
       throttleit: 2.1.0
     transitivePeerDependencies:
       - zod
 
+  '@ai-sdk/react@3.0.83(react@18.3.1)(zod@3.25.76)':
+    dependencies:
+      '@ai-sdk/provider-utils': 4.0.14(zod@3.25.76)
+      ai: 6.0.81(zod@3.25.76)
+      react: 18.3.1
+      swr: 2.3.4(react@18.3.1)
+      throttleit: 2.1.0
+    transitivePeerDependencies:
+      - zod
+
   '@ai-sdk/react@3.0.83(react@19.2.3)(zod@4.1.12)':
     dependencies:
       '@ai-sdk/provider-utils': 4.0.14(zod@4.1.12)
@@ -19150,7 +19276,7 @@ snapshots:
 
   '@assistant-ui/react-ai-sdk@0.10.14(@assistant-ui/react@0.10.24(@types/react-dom@18.3.1)(@types/react@18.3.12)(immer@9.0.21)(react-dom@19.2.3(react@19.2.3))(react@19.2.3)(use-sync-external-store@1.6.0(react@19.2.3)))(@types/react-dom@18.3.1)(@types/react@18.3.12)(immer@9.0.21)(react-dom@19.2.3(react@19.2.3))(react@19.2.3)(use-sync-external-store@1.6.0(react@19.2.3))':
     dependencies:
-      '@ai-sdk/react': 3.0.83(react@19.2.3)(zod@3.25.76)
+      '@ai-sdk/react': 3.0.143(react@19.2.3)(zod@3.25.76)
       '@ai-sdk/ui-utils': 1.2.11(zod@3.25.76)
       '@assistant-ui/react': 0.10.24(@types/react-dom@18.3.1)(@types/react@18.3.12)(immer@9.0.21)(react-dom@19.2.3(react@19.2.3))(react@19.2.3)(use-sync-external-store@1.6.0(react@19.2.3))
       '@assistant-ui/react-edge': 0.2.12(@assistant-ui/react@0.10.24(@types/react-dom@18.3.1)(@types/react@18.3.12)(immer@9.0.21)(react-dom@19.2.3(react@19.2.3))(react@19.2.3)(use-sync-external-store@1.6.0(react@19.2.3)))(@types/react-dom@18.3.1)(@types/react@18.3.12)(react-dom@19.2.3(react@19.2.3))(react@19.2.3)
@@ -22448,6 +22574,8 @@ snapshots:
       - '@radix-ui/react-popover'
       - '@types/node'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -22596,6 +22724,8 @@ snapshots:
     transitivePeerDependencies:
       - '@radix-ui/react-popover'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -22677,6 +22807,8 @@ snapshots:
     transitivePeerDependencies:
       - '@radix-ui/react-popover'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -22714,6 +22846,8 @@ snapshots:
     transitivePeerDependencies:
       - '@radix-ui/react-popover'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -22747,6 +22881,8 @@ snapshots:
     transitivePeerDependencies:
       - '@radix-ui/react-popover'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -22779,6 +22915,8 @@ snapshots:
     transitivePeerDependencies:
       - '@radix-ui/react-popover'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -24444,6 +24582,8 @@ snapshots:
       unbzip2-stream: 1.4.3
       yargs: 17.7.2
     transitivePeerDependencies:
+      - bare-abort-controller
+      - bare-buffer
       - supports-color
 
   '@quansync/fs@1.0.0':
@@ -30179,6 +30319,22 @@ snapshots:
       clean-stack: 4.2.0
       indent-string: 5.0.0
 
+  ai@6.0.141(zod@3.25.76):
+    dependencies:
+      '@ai-sdk/gateway': 3.0.83(zod@3.25.76)
+      '@ai-sdk/provider': 3.0.8
+      '@ai-sdk/provider-utils': 4.0.21(zod@3.25.76)
+      '@opentelemetry/api': 1.9.0
+      zod: 3.25.76
+
+  ai@6.0.141(zod@4.3.6):
+    dependencies:
+      '@ai-sdk/gateway': 3.0.83(zod@4.3.6)
+      '@ai-sdk/provider': 3.0.8
+      '@ai-sdk/provider-utils': 4.0.21(zod@4.3.6)
+      '@opentelemetry/api': 1.9.0
+      zod: 4.3.6
+
   ai@6.0.81(zod@3.25.76):
     dependencies:
       '@ai-sdk/gateway': 3.0.41(zod@3.25.76)
@@ -30572,6 +30728,20 @@ snapshots:
   bare-events@2.4.2:
     optional: true
 
+  bare-events@2.8.2:
+    optional: true
+
+  bare-fs@4.6.0:
+    dependencies:
+      bare-events: 2.8.2
+      bare-path: 3.0.0
+      bare-stream: 2.12.0(bare-events@2.8.2)
+      bare-url: 2.4.0
+      fast-fifo: 1.3.2
+    transitivePeerDependencies:
+      - bare-abort-controller
+    optional: true
+
   bare-os@3.8.7:
     optional: true
 
@@ -30580,6 +30750,19 @@ snapshots:
       bare-os: 3.8.7
     optional: true
 
+  bare-stream@2.12.0(bare-events@2.8.2):
+    dependencies:
+      streamx: 2.25.0
+      teex: 1.0.1
+    optionalDependencies:
+      bare-events: 2.8.2
+    optional: true
+
+  bare-url@2.4.0:
+    dependencies:
+      bare-path: 3.0.0
+    optional: true
+
   base64-arraybuffer@1.0.2: {}
 
   base64-js@1.5.1: {}
@@ -33104,6 +33287,13 @@ snapshots:
 
   eventemitter3@4.0.7: {}
 
+  events-universal@1.0.1:
+    dependencies:
+      bare-events: 2.8.2
+    transitivePeerDependencies:
+      - bare-abort-controller
+    optional: true
+
   events@3.3.0: {}
 
   eventsource-parser@3.0.3: {}
@@ -36127,6 +36317,8 @@ snapshots:
       - '@radix-ui/react-popover'
       - '@types/node'
       - '@types/react'
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - debug
       - encoding
@@ -37554,6 +37746,8 @@ snapshots:
       devtools-protocol: 0.0.1312386
       ws: 8.18.3
     transitivePeerDependencies:
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - supports-color
       - utf-8-validate
@@ -37565,6 +37759,8 @@ snapshots:
       devtools-protocol: 0.0.1312386
       puppeteer-core: 22.14.0
     transitivePeerDependencies:
+      - bare-abort-controller
+      - bare-buffer
       - bufferutil
       - supports-color
       - typescript
@@ -39272,6 +39468,15 @@ snapshots:
     optionalDependencies:
       bare-events: 2.4.2
 
+  streamx@2.25.0:
+    dependencies:
+      events-universal: 1.0.1
+      fast-fifo: 1.3.2
+      text-decoder: 1.1.0
+    transitivePeerDependencies:
+      - bare-abort-controller
+    optional: true
+
   string-width@3.1.0:
     dependencies:
       emoji-regex: 7.0.3
@@ -39553,6 +39758,12 @@ snapshots:
       react: 18.3.1
       use-sync-external-store: 1.6.0(react@18.3.1)
 
+  swr@2.3.4(react@19.2.1):
+    dependencies:
+      dequal: 2.0.3
+      react: 19.2.1
+      use-sync-external-store: 1.6.0(react@19.2.1)
+
   swr@2.3.4(react@19.2.3):
     dependencies:
       dequal: 2.0.3
@@ -39716,7 +39927,11 @@ snapshots:
       pump: 3.0.4
       tar-stream: 3.1.7
     optionalDependencies:
+      bare-fs: 4.6.0
       bare-path: 3.0.0
+    transitivePeerDependencies:
+      - bare-abort-controller
+      - bare-buffer
 
   tar-stream@2.2.0:
     dependencies: