From 076a19205781c5cb3fbf5952db31b342e5a71a13 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:08:23 +0100
Subject: [PATCH 01/13] feat: add campaign metrics CSV/JSON export endpoint
 (#463)

---
 backend/src/routes/campaignExport.js | 172 +++++++++++++++++++++++++++
 1 file changed, 172 insertions(+)
 create mode 100644 backend/src/routes/campaignExport.js

diff --git a/backend/src/routes/campaignExport.js b/backend/src/routes/campaignExport.js
new file mode 100644
index 00000000..6846eaa4
--- /dev/null
+++ b/backend/src/routes/campaignExport.js
@@ -0,0 +1,172 @@
+// @ts-check
+import { Router } from 'express';
+import { Readable } from 'node:stream';
+import { pipeline } from 'node:stream/promises';
+
+const EXPORT_RATE_LIMIT_WINDOW_MS = 60 * 60 * 1000;
+const EXPORT_RATE_LIMIT_MAX = 5;
+
+/** @type {Map<string, { count: number, resetAt: number }>} */
+const _exportBuckets = new Map();
+
+function checkExportRateLimit(campaignId, actorKey) {
+  const key = `${campaignId}:${actorKey}`;
+  const now = Date.now();
+  const bucket = _exportBuckets.get(key);
+
+  if (!bucket || bucket.resetAt <= now) {
+    _exportBuckets.set(key, { count: 1, resetAt: now + EXPORT_RATE_LIMIT_WINDOW_MS });
+    return { allowed: true, remaining: EXPORT_RATE_LIMIT_MAX - 1, resetAt: now + EXPORT_RATE_LIMIT_WINDOW_MS };
+  }
+  if (bucket.count >= EXPORT_RATE_LIMIT_MAX) {
+    return { allowed: false, remaining: 0, resetAt: bucket.resetAt };
+  }
+  bucket.count += 1;
+  return { allowed: true, remaining: EXPORT_RATE_LIMIT_MAX - bucket.count, resetAt: bucket.resetAt };
+}
+
+/**
+ * RFC 4180-compliant CSV serializer.
+ * @param {string[]} columns
+ * @param {Record<string, unknown>[]} rows
+ */
+function buildCsv(columns, rows) {
+  const escape = (v) => {
+    const s = v === null || v === undefined ? '' : String(v);
+    return s.includes(',') || s.includes('"') || s.includes('\n') || s.includes('\r')
+      ? '"' + s.replace(/"/g, '""') + '"'
+      : s;
+  };
+  const lines = [columns.join(',')];
+  for (const row of rows) lines.push(columns.map((c) => escape(row[c])).join(','));
+  return lines.join('\n') + '\n';
+}
+
+/**
+ * @param {{
+ *   db: import('better-sqlite3').Database,
+ *   campaignRepository: import('../dal/campaignRepository.js').CampaignRepository,
+ *   auditLogRepository: import('../dal/auditLogRepository.js').AuditLogRepository,
+ *   requireApiKey: import('express').RequestHandler,
+ * }} options
+ */
+export function createCampaignExportRoute({ db, campaignRepository, auditLogRepository, requireApiKey }) {
+  const router = Router();
+
+  router.get('/campaigns/:id/export', requireApiKey, async (req, res) => {
+    const { id } = req.params;
+    const format = String(req.query.format ?? 'csv').toLowerCase();
+    const fromDate = typeof req.query.from === 'string' ? req.query.from : null;
+    const toDate = typeof req.query.to === 'string' ? req.query.to : null;
+
+    if (format !== 'csv' && format !== 'json') {
+      return res.status(400).json({ error: 'Invalid format. Use ?format=csv or ?format=json', code: 'INVALID_FORMAT' });
+    }
+
+    const campaign = campaignRepository.getById(id);
+    if (!campaign) {
+      return res.status(404).json({ error: 'Campaign not found', code: 'NOT_FOUND' });
+    }
+
+    const actorKey = String(req.headers['x-api-key'] ?? req.query.api_key ?? req.ip ?? 'anon');
+    const { allowed, remaining, resetAt } = checkExportRateLimit(id, actorKey);
+    res.setHeader('X-RateLimit-Limit', String(EXPORT_RATE_LIMIT_MAX));
+    res.setHeader('X-RateLimit-Remaining', String(remaining));
+
+    if (!allowed) {
+      res.setHeader('Retry-After', String(Math.ceil((resetAt - Date.now()) / 1000)));
+      return res.status(429).json({
+        error: 'Export rate limit exceeded. Max 5 exports per campaign per hour.',
+        code: 'EXPORT_RATE_LIMIT_EXCEEDED',
+      });
+    }
+
+    const hasCreditEvents = db.prepare("SELECT name FROM sqlite_master WHERE type='table' AND name='credit_events'").get();
+    const hasClaimEvents = db.prepare("SELECT name FROM sqlite_master WHERE type='table' AND name='claim_events'").get();
+
+    let participants = [];
+
+    if (hasCreditEvents) {
+      const dateFilters = [];
+      const vals = [String(id)];
+      if (fromDate) { dateFilters.push("r.created_at >= ?"); vals.push(fromDate); }
+      if (toDate) { dateFilters.push("r.created_at <= ?"); vals.push(toDate); }
+      const dateWhere = dateFilters.length ? `AND ${dateFilters.join(' AND ')}` : '';
+
+      participants = db.prepare(`
+        WITH participants AS (
+          SELECT DISTINCT user FROM credit_events
+        ),
+        credited AS (
+          SELECT user, SUM(CAST(amount AS INTEGER)) AS total FROM credit_events GROUP BY user
+        ),
+        claimed AS (
+          SELECT user, SUM(CAST(amount AS INTEGER)) AS total FROM claim_events GROUP BY user
+        )
+        SELECT
+          p.user                                       AS participantAddress,
+          r.created_at                                 AS registeredAt,
+          COALESCE(cr.total, 0)                        AS pointsCredited,
+          COALESCE(cl.total, 0)                        AS pointsClaimed,
+          COALESCE(cr.total, 0) - COALESCE(cl.total, 0) AS netPoints,
+          ref.referrer_address                         AS referredBy
+        FROM participants p
+        LEFT JOIN referrals r
+          ON r.referee_address = p.user AND r.campaign_id = ? ${dateWhere}
+        LEFT JOIN credited cr ON cr.user = p.user
+        LEFT JOIN ${hasClaimEvents ? 'claimed' : '(SELECT NULL AS user, 0 AS total) dummy_cl'} cl ON cl.user = p.user
+        LEFT JOIN referrals ref
+          ON ref.referee_address = p.user AND ref.campaign_id = ?
+      `).all(...vals, String(id));
+    } else {
+      // Fall back to referrals-only when event tables haven't been created yet
+      const dateFilters = [];
+      const vals = [String(id)];
+      if (fromDate) { dateFilters.push("created_at >= ?"); vals.push(fromDate); }
+      if (toDate) { dateFilters.push("created_at <= ?"); vals.push(toDate); }
+      const dateWhere = dateFilters.length ? `AND ${dateFilters.join(' AND ')}` : '';
+
+      const rows = db.prepare(`
+        SELECT referee_address, referrer_address, created_at
+        FROM referrals
+        WHERE campaign_id = ? ${dateWhere}
+        ORDER BY created_at ASC
+      `).all(...vals);
+
+      participants = rows.map((row) => ({
+        participantAddress: row.referee_address,
+        registeredAt: row.created_at,
+        pointsCredited: 0,
+        pointsClaimed: 0,
+        netPoints: 0,
+        referredBy: row.referrer_address ?? null,
+      }));
+    }
+
+    try {
+      auditLogRepository.create({
+        actor: actorKey,
+        action: 'campaign.export',
+        entity: 'campaign',
+        entityId: id,
+        diff: { format, fromDate, toDate, rowCount: participants.length },
+      });
+    } catch (_err) { /* non-fatal */ }
+
+    const filename = `campaign-${id}-export.${format}`;
+
+    if (format === 'csv') {
+      const columns = ['participantAddress', 'registeredAt', 'pointsCredited', 'pointsClaimed', 'netPoints', 'referredBy'];
+      res.setHeader('Content-Type', 'text/csv; charset=utf-8');
+      res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+      await pipeline(Readable.from([buildCsv(columns, participants)]), res);
+    } else {
+      const payload = JSON.stringify({ campaign: { id: campaign.id, name: campaign.name }, participants }, null, 2);
+      res.setHeader('Content-Type', 'application/json; charset=utf-8');
+      res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+      await pipeline(Readable.from([payload]), res);
+    }
+  });
+
+  return router;
+}

From b233cb9c4f2ad7440d0c0aff2d5b0dc47521aa6a Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:08:26 +0100
Subject: [PATCH 02/13] feat: add API deprecation registry (#466)

---
 backend/src/deprecations.js | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 backend/src/deprecations.js

diff --git a/backend/src/deprecations.js b/backend/src/deprecations.js
new file mode 100644
index 00000000..b89de675
--- /dev/null
+++ b/backend/src/deprecations.js
@@ -0,0 +1,17 @@
+// @ts-check
+
+/**
+ * Deprecation registry — maps route patterns to lifecycle metadata.
+ * Add entries here before removing or replacing any endpoint.
+ *
+ * @type {Record<string, { deprecatedAt: string, removedAt: string, replacement: string, message: string }>}
+ */
+export const DEPRECATION_REGISTRY = {
+  // Example — uncomment when real deprecations land:
+  // 'GET /api/v1/campaigns/:id/stats': {
+  //   deprecatedAt: '2024-09-01',
+  //   removedAt: '2024-12-01',
+  //   replacement: '/api/v1/campaigns/:id/analytics',
+  //   message: 'Use the /analytics endpoint for richer campaign stats.',
+  // },
+};

From ba852de29afd0fdb7e667d2ee4fa7eada2b38336 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:08:28 +0100
Subject: [PATCH 03/13] feat: add deprecation notice middleware with RFC 8594
 headers (#466)

---
 backend/src/middleware/deprecationNotice.js | 66 +++++++++++++++++++++
 1 file changed, 66 insertions(+)
 create mode 100644 backend/src/middleware/deprecationNotice.js

diff --git a/backend/src/middleware/deprecationNotice.js b/backend/src/middleware/deprecationNotice.js
new file mode 100644
index 00000000..c933f9db
--- /dev/null
+++ b/backend/src/middleware/deprecationNotice.js
@@ -0,0 +1,66 @@
+// @ts-check
+import { DEPRECATION_REGISTRY } from '../deprecations.js';
+
+/**
+ * Match a request path+method against the deprecation registry.
+ * Registry keys are like "GET /api/v1/campaigns/:id/stats"; path segments
+ * starting with ":" are treated as wildcards.
+ *
+ * @param {string} method  e.g. "GET"
+ * @param {string} path    e.g. "/api/v1/campaigns/42/stats"
+ * @returns {import('../deprecations.js').DeprecationEntry | null}
+ */
+function matchDeprecation(method, path) {
+  for (const [pattern, entry] of Object.entries(DEPRECATION_REGISTRY)) {
+    const [patternMethod, ...rest] = pattern.split(' ');
+    const patternPath = rest.join(' ');
+
+    if (patternMethod.toUpperCase() !== method.toUpperCase()) continue;
+
+    const patternParts = patternPath.split('/');
+    const pathParts = path.split('/');
+
+    if (patternParts.length !== pathParts.length) continue;
+
+    const matched = patternParts.every(
+      (seg, i) => seg.startsWith(':') || seg === pathParts[i],
+    );
+
+    if (matched) return entry;
+  }
+  return null;
+}
+
+/**
+ * Express middleware that injects RFC 8594 deprecation headers for
+ * any route registered in the deprecation registry, and WARN-logs usage
+ * so operators know which deprecated endpoints are still being hit.
+ *
+ * @param {{ log?: { warn?: Function } }} [options]
+ * @returns {import('express').RequestHandler}
+ */
+export function createDeprecationMiddleware({ log = console } = {}) {
+  return function deprecationNotice(req, res, next) {
+    const entry = matchDeprecation(req.method, req.path);
+
+    if (entry) {
+      const deprecationDate = new Date(entry.deprecatedAt).toUTCString();
+      const sunsetDate = new Date(entry.removedAt).toUTCString();
+
+      res.setHeader('Deprecation', deprecationDate);
+      res.setHeader('Sunset', sunsetDate);
+      res.setHeader(
+        'Link',
+        `<${entry.replacement}>; rel="successor-version"`,
+      );
+
+      log.warn?.(
+        `deprecated_endpoint_hit method=${req.method} path=${req.path} ` +
+        `deprecated_at=${entry.deprecatedAt} removed_at=${entry.removedAt} ` +
+        `replacement=${entry.replacement}`,
+      );
+    }
+
+    next();
+  };
+}

From 2cd5ed94da424c65eb98f97730537cc433ed58b4 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:08:43 +0100
Subject: [PATCH 04/13] feat: wire export route and deprecation middleware into
 index.js (#463 #466)

---
 backend/src/index.js | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/backend/src/index.js b/backend/src/index.js
index 357d0e4f..adbe1a06 100644
--- a/backend/src/index.js
+++ b/backend/src/index.js
@@ -46,6 +46,9 @@ import {
   MAX_IMAGE_SIZE_BYTES,
 } from './services/imageUpload.js';
 import { buildCampaignStats } from './services/campaignStatsService.js';
+import { createCampaignExportRoute } from './routes/campaignExport.js';
+import { createDeprecationMiddleware } from './middleware/deprecationNotice.js';
+import { DEPRECATION_REGISTRY } from './deprecations.js';
 import { generateAllowlist } from './lib/allowlist/merkle.js';
 import { parseAllowlistCsv, validateGAddress, MAX_ALLOWLIST_ROWS } from './lib/allowlist/csv.js';
 import { createEmbedRoute } from './routes/embed.js';
@@ -496,6 +499,7 @@ export async function createApp(options = {}) {
   app.use(compression({ threshold: 1024 }));
   app.use(cors(createCorsOptions(allowedOrigins)));
   app.use(securityHeaders);
+  app.use(createDeprecationMiddleware({ log }));
   app.use(traceparentMiddleware());
   app.use(requestLogger);
   app.use(express.json({ limit: jsonBodyLimit }));
@@ -1760,6 +1764,8 @@ export async function createApp(options = {}) {
     app.get(`${prefix}/campaigns/by-slug/:slug`, rateLimiter, getCampaignBySlug);
     app.get(`${prefix}/campaigns/:id`, rateLimiter, getCampaignById);
     app.get(`${prefix}/campaigns/:id/stats`, rateLimiter, getCampaignStats);
+    app.use(prefix, createCampaignExportRoute({ db: dal.db, campaignRepository, auditLogRepository, requireApiKey }));
+    app.get(`${prefix}/deprecations`, rateLimiter, (_req, res) => res.json({ deprecations: DEPRECATION_REGISTRY }));
     app.get(`${prefix}/audit-logs`, rateLimiter, ...guard, listAuditLogs);
     app.get(`${prefix}/admin/audit/verify`, rateLimiter, requireMasterKey, verifyAuditChain);
     app.get(`${prefix}/indexer/cursor`, rateLimiter, getIndexerCursorState);

From a88ac9ee0d7d2c7318f4ec0f9061b7e58d37b0fd Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:08:53 +0100
Subject: [PATCH 05/13] feat: add user profile page with stats, activity, and
 share (#473)

---
 frontend/src/pages/UserProfile.jsx | 223 +++++++++++++++++++++++++++++
 1 file changed, 223 insertions(+)
 create mode 100644 frontend/src/pages/UserProfile.jsx

diff --git a/frontend/src/pages/UserProfile.jsx b/frontend/src/pages/UserProfile.jsx
new file mode 100644
index 00000000..8dd1e4ba
--- /dev/null
+++ b/frontend/src/pages/UserProfile.jsx
@@ -0,0 +1,223 @@
+import { useState, useEffect, useCallback } from 'react';
+import { useNavigate } from 'react-router-dom';
+import { apiUrl } from '../config';
+import PageMeta from '../components/PageMeta';
+import Header from '../components/Header';
+
+function truncateAddress(addr) {
+  if (!addr || addr.length <= 14) return addr ?? '';
+  return `${addr.slice(0, 6)}…${addr.slice(-4)}`;
+}
+
+function StatCard({ label, value }) {
+  return (
+    <div className="profile-stat-card">
+      <span className="profile-stat-value">{value}</span>
+      <span className="profile-stat-label">{label}</span>
+    </div>
+  );
+}
+
+function Skeleton({ width = '100%', height = '1.2em' }) {
+  return (
+    <span
+      style={{
+        display: 'inline-block',
+        width,
+        height,
+        background: 'var(--color-skeleton, #334155)',
+        borderRadius: '4px',
+        animation: 'pulse 1.5s ease-in-out infinite',
+      }}
+      aria-hidden="true"
+    />
+  );
+}
+
+/**
+ * Private profile page for the connected wallet.
+ * Redirects to wallet connect if no wallet is connected.
+ */
+export default function UserProfile({
+  theme,
+  onToggleTheme,
+  stellarNetwork,
+  onChangeStellarNetwork,
+  walletAddress,
+  walletBalance,
+  isWalletLoading,
+  isWalletBalanceLoading,
+  onConnectWallet,
+  onDisconnectWallet,
+}) {
+  const navigate = useNavigate();
+  const [profile, setProfile] = useState(null);
+  const [loading, setLoading] = useState(true);
+  const [error, setError] = useState('');
+  const [copied, setCopied] = useState(false);
+
+  useEffect(() => {
+    if (!walletAddress && !isWalletLoading) {
+      navigate('/', { replace: true });
+    }
+  }, [walletAddress, isWalletLoading, navigate]);
+
+  const fetchProfile = useCallback(async () => {
+    if (!walletAddress) return;
+    setLoading(true);
+    setError('');
+    try {
+      const res = await fetch(apiUrl(`/participants/${walletAddress}/profile`));
+      if (res.status === 404) {
+        setProfile({ empty: true });
+        return;
+      }
+      if (!res.ok) throw new Error(`HTTP ${res.status}`);
+      const data = await res.json();
+      setProfile(data);
+    } catch (err) {
+      setError('Failed to load profile. Please try again.');
+    } finally {
+      setLoading(false);
+    }
+  }, [walletAddress]);
+
+  useEffect(() => {
+    fetchProfile();
+  }, [fetchProfile]);
+
+  const copyPublicUrl = () => {
+    const url = `${window.location.origin}/u/${walletAddress}`;
+    navigator.clipboard.writeText(url).then(() => {
+      setCopied(true);
+      setTimeout(() => setCopied(false), 2000);
+    });
+  };
+
+  if (!walletAddress) return null;
+
+  return (
+    <>
+      <PageMeta path="/profile" />
+      <Header
+        theme={theme}
+        onToggleTheme={onToggleTheme}
+        stellarNetwork={stellarNetwork}
+        onChangeStellarNetwork={onChangeStellarNetwork}
+        walletAddress={walletAddress}
+        walletBalance={walletBalance}
+        isWalletLoading={isWalletLoading}
+        isWalletBalanceLoading={isWalletBalanceLoading}
+        onConnectWallet={onConnectWallet}
+        onDisconnectWallet={onDisconnectWallet}
+      />
+
+      <main className="profile-page" style={{ maxWidth: '800px', margin: '0 auto', padding: '2rem 1rem' }}>
+        <div style={{ display: 'flex', alignItems: 'center', justifyContent: 'space-between', marginBottom: '2rem', flexWrap: 'wrap', gap: '1rem' }}>
+          <div>
+            <h1 style={{ margin: 0, fontSize: '1.5rem' }}>My Profile</h1>
+            <div style={{ display: 'flex', alignItems: 'center', gap: '8px', marginTop: '6px' }}>
+              <code
+                title={walletAddress}
+                style={{ fontSize: '0.875rem', color: 'var(--color-text-secondary, #94a3b8)', cursor: 'pointer' }}
+                onClick={() => navigator.clipboard.writeText(walletAddress)}
+              >
+                {truncateAddress(walletAddress)}
+              </code>
+              <span style={{ fontSize: '0.75rem', color: 'var(--color-text-muted, #64748b)' }}>
+                (click to copy)
+              </span>
+            </div>
+          </div>
+          <button
+            type="button"
+            className="btn btn-secondary"
+            onClick={copyPublicUrl}
+            aria-label="Copy public profile link"
+          >
+            {copied ? 'Copied!' : 'Share Profile'}
+          </button>
+        </div>
+
+        {error && (
+          <p role="alert" style={{ color: 'var(--color-error, #ef4444)', marginBottom: '1.5rem' }}>
+            {error}
+          </p>
+        )}
+
+        <section aria-label="Stats" style={{ display: 'grid', gridTemplateColumns: 'repeat(auto-fit, minmax(150px, 1fr))', gap: '1rem', marginBottom: '2rem' }}>
+          {loading ? (
+            Array.from({ length: 4 }).map((_, i) => (
+              <div key={i} className="profile-stat-card">
+                <Skeleton width="60%" height="2rem" />
+                <Skeleton width="80%" height="1rem" />
+              </div>
+            ))
+          ) : (
+            <>
+              <StatCard label="Campaigns joined" value={profile?.campaignCount ?? 0} />
+              <StatCard label="Points earned" value={profile?.totalPointsEarned ?? 0} />
+              <StatCard label="Points claimed" value={profile?.totalPointsClaimed ?? 0} />
+              <StatCard label="Net balance" value={profile?.netPoints ?? 0} />
+            </>
+          )}
+        </section>
+
+        <section aria-label="Recent activity" style={{ marginBottom: '2rem' }}>
+          <h2 style={{ fontSize: '1.125rem', marginBottom: '1rem' }}>Recent Activity</h2>
+          {loading ? (
+            Array.from({ length: 3 }).map((_, i) => (
+              <div key={i} style={{ padding: '12px 0', borderBottom: '1px solid var(--color-border, #334155)' }}>
+                <Skeleton width="70%" />
+              </div>
+            ))
+          ) : !profile?.recentActivity?.length ? (
+            <p style={{ color: 'var(--color-text-secondary, #94a3b8)' }}>No activity yet.</p>
+          ) : (
+            <ul style={{ listStyle: 'none', padding: 0, margin: 0 }}>
+              {profile.recentActivity.map((event, i) => (
+                <li
+                  key={i}
+                  style={{ padding: '10px 0', borderBottom: '1px solid var(--color-border, #334155)', display: 'flex', justifyContent: 'space-between', gap: '1rem', flexWrap: 'wrap' }}
+                >
+                  <span>{event.description ?? event.action}</span>
+                  <time dateTime={event.timestamp} style={{ color: 'var(--color-text-secondary, #94a3b8)', fontSize: '0.875rem', whiteSpace: 'nowrap' }}>
+                    {new Date(event.timestamp).toLocaleDateString()}
+                  </time>
+                </li>
+              ))}
+            </ul>
+          )}
+        </section>
+
+        <section aria-label="Campaigns participated">
+          <h2 style={{ fontSize: '1.125rem', marginBottom: '1rem' }}>Campaigns</h2>
+          {loading ? (
+            <Skeleton width="100%" height="3rem" />
+          ) : !profile?.campaigns?.length ? (
+            <p style={{ color: 'var(--color-text-secondary, #94a3b8)' }}>No campaigns yet.</p>
+          ) : (
+            <ul style={{ listStyle: 'none', padding: 0, margin: 0, display: 'flex', flexDirection: 'column', gap: '8px' }}>
+              {profile.campaigns.map((c) => (
+                <li key={c.id}>
+                  <a href={`/campaign/${c.id}`} style={{ color: 'var(--color-primary, #38bdf8)' }}>
+                    {c.name}
+                  </a>
+                  <span style={{ marginLeft: '8px', fontSize: '0.875rem', color: 'var(--color-text-secondary, #94a3b8)' }}>
+                    {c.pointsEarned} pts
+                  </span>
+                </li>
+              ))}
+            </ul>
+          )}
+        </section>
+
+        {profile?.joinedDate && (
+          <p style={{ marginTop: '2rem', fontSize: '0.875rem', color: 'var(--color-text-muted, #64748b)' }}>
+            Member since {new Date(profile.joinedDate).toLocaleDateString()}
+          </p>
+        )}
+      </main>
+    </>
+  );
+}

From c32a4cf69931d5cba48b02505ceed6f2fe2a94d4 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:09:15 +0100
Subject: [PATCH 06/13] feat: add /profile route and UserProfile to App.jsx
 (#473)

---
 frontend/src/App.jsx | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/frontend/src/App.jsx b/frontend/src/App.jsx
index 402ae0d8..83865ec2 100644
--- a/frontend/src/App.jsx
+++ b/frontend/src/App.jsx
@@ -23,6 +23,7 @@ const About = lazy(() => import('./About'));
 const TransactionHistory = lazy(() => import('./TransactionHistory'));
 const EmbedCampaign = lazy(() => import('./pages/EmbedCampaign'));
 const PublicProfile = lazy(() => import('./pages/PublicProfile'));
+const UserProfile = lazy(() => import('./pages/UserProfile'));
 import { applyTheme, getPreferredTheme, THEME_STORAGE_KEY } from './theme';
 import { getRuntimeConfig, initializeRuntimeConfig, setRuntimeStellarNetwork } from './config';
 import {
@@ -350,6 +351,23 @@ export default function App() {
           />
           <Route path="/embed/campaign/:id" element={<EmbedCampaign />} />
           <Route path="/u/:address" element={<PublicProfile />} />
+          <Route
+            path="/profile"
+            element={
+              <UserProfile
+                theme={theme}
+                onToggleTheme={toggleTheme}
+                stellarNetwork={runtimeConfig.stellar.network}
+                onChangeStellarNetwork={handleChangeStellarNetwork}
+                walletAddress={walletAddress}
+                walletBalance={walletBalance}
+                isWalletLoading={isWalletLoading}
+                isWalletBalanceLoading={isWalletBalanceLoading}
+                onConnectWallet={openWalletModal}
+                onDisconnectWallet={disconnectWallet}
+              />
+            }
+          />
         </Routes>
       </Suspense>
       <WalletModal

From 5e2ba1d4b54b605fe89b09ff2435faecd00d3297 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:09:18 +0100
Subject: [PATCH 07/13] feat: add Profile nav link in Header when wallet
 connected (#473)

---
 frontend/src/components/Header.jsx | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/frontend/src/components/Header.jsx b/frontend/src/components/Header.jsx
index 3354b457..9eb64a0c 100644
--- a/frontend/src/components/Header.jsx
+++ b/frontend/src/components/Header.jsx
@@ -157,6 +157,16 @@ export default function Header({
                 {link.label}
               </a>
             ))}
+            {walletAddress && (
+              <a
+                href="/profile"
+                className={pathname === '/profile' ? 'nav-link-active' : undefined}
+                aria-current={pathname === '/profile' ? 'page' : undefined}
+                onClick={closeMenu}
+              >
+                Profile
+              </a>
+            )}
             {walletAddress && (
               <a
                 href="/history"

From fc628eb8f32e9e4ca089ac11a109a63c787d9b06 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:09:29 +0100
Subject: [PATCH 08/13] feat: add gitleaks secrets scanning CI workflow (#485)

---
 .github/workflows/secrets-scan.yml | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 .github/workflows/secrets-scan.yml

diff --git a/.github/workflows/secrets-scan.yml b/.github/workflows/secrets-scan.yml
new file mode 100644
index 00000000..0c68ff3e
--- /dev/null
+++ b/.github/workflows/secrets-scan.yml
@@ -0,0 +1,26 @@
+name: Secrets Scanning
+
+on:
+  push:
+    branches: ['**']
+  pull_request:
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  gitleaks:
+    name: Scan for secrets
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - uses: gitleaks/gitleaks-action@v2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITLEAKS_LICENSE: ${{ secrets.GITLEAKS_LICENSE }}
+        with:
+          config-path: .gitleaks.toml

From 6f787a479930ba1cc906ac562a8fcaa0a797cca6 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:09:31 +0100
Subject: [PATCH 09/13] feat: add .gitleaks.toml with Stellar and Trivela key
 rules (#485)

---
 .gitleaks.toml | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 .gitleaks.toml

diff --git a/.gitleaks.toml b/.gitleaks.toml
new file mode 100644
index 00000000..9cbac587
--- /dev/null
+++ b/.gitleaks.toml
@@ -0,0 +1,24 @@
+title = "Trivela Gitleaks Configuration"
+
+[extend]
+useDefault = true
+
+[[rules]]
+id = "stellar-secret-key"
+description = "Stellar secret key (S... 56-char base32)"
+regex = '''\bS[A-Z2-7]{55}\b'''
+tags = ["stellar", "secret-key"]
+
+[[rules]]
+id = "trivela-api-key"
+description = "Trivela API key pattern"
+regex = '''tvl_[a-zA-Z0-9]{32,}'''
+tags = ["trivela", "api-key"]
+
+[allowlist]
+description = "Safe paths — example files, test fixtures, docs"
+paths = [
+  '''.env\.example''',
+  '''test[s]?/fixtures/''',
+  '''docs/''',
+]

From 0309990d1b04b4f9ef2c6c67cd8cc67518f05d83 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:09:54 +0100
Subject: [PATCH 10/13] feat: add dev-setup.sh with git-secrets pre-commit hook
 (#485)

---
 scripts/dev-setup.sh | 39 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 39 insertions(+)
 create mode 100644 scripts/dev-setup.sh

diff --git a/scripts/dev-setup.sh b/scripts/dev-setup.sh
new file mode 100644
index 00000000..dd70e7f4
--- /dev/null
+++ b/scripts/dev-setup.sh
@@ -0,0 +1,39 @@
+#!/usr/bin/env bash
+# Trivela local dev setup script.
+# Run once after cloning to configure git hooks and tooling.
+
+set -euo pipefail
+
+echo "==> Setting up Trivela dev environment"
+
+# ── Node / npm ────────────────────────────────────────────────────────────────
+if ! command -v node &>/dev/null; then
+  echo "ERROR: Node.js is required. Install it from https://nodejs.org" >&2
+  exit 1
+fi
+
+echo "==> Installing npm dependencies"
+npm install
+
+# ── git-secrets pre-commit hook ───────────────────────────────────────────────
+# Scans staged files for secret patterns before each commit, mirroring the
+# gitleaks CI check locally. Requires git-secrets to be installed.
+# Install: https://github.com/awslabs/git-secrets#installing-git-secrets
+if command -v git-secrets &>/dev/null; then
+  echo "==> Configuring git-secrets"
+  git secrets --install --force
+  git secrets --register-aws
+  # Stellar secret key pattern: S[A-Z2-7]{55}
+  git secrets --add 'S[A-Z2-7]{55}'
+  # Trivela API key pattern
+  git secrets --add 'tvl_[a-zA-Z0-9]{32,}'
+  # Allow .env.example and fixture paths
+  git secrets --add-provider -- echo '.env.example test/fixtures docs/'
+  echo "  git-secrets configured. Staged secrets will be blocked pre-commit."
+else
+  echo "  WARN: git-secrets not found. Install it to enable local secret scanning."
+  echo "        https://github.com/awslabs/git-secrets#installing-git-secrets"
+fi
+
+echo ""
+echo "Dev setup complete. Start the backend with: npm run dev"

From 250a04274220cdd379dd3f9e394d2a589e7b34ad Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:11:37 +0100
Subject: [PATCH 11/13] docs: add secret rotation procedure to RUNBOOK.md
 (#485)

---
 docs/RUNBOOK.md | 56 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 56 insertions(+)

diff --git a/docs/RUNBOOK.md b/docs/RUNBOOK.md
index 4db30367..d934d8fd 100644
--- a/docs/RUNBOOK.md
+++ b/docs/RUNBOOK.md
@@ -261,3 +261,59 @@ Required secrets for the CronJob:
 - `trivela-secrets.DATABASE_URL` — PostgreSQL connection string
 - `trivela-secrets.S3_BACKUP_BUCKET` — S3 bucket (if using S3)
 - `trivela-secrets.BACKUP_ENCRYPTION_PUBKEY` — age public key (optional)
+# Trivela Runbook
+
+Operational procedures for the Trivela backend and infrastructure.
+
+---
+
+## Secret Rotation Procedure
+
+If a private key, API key, or other secret is accidentally committed to the repository, follow these steps immediately.
+
+### 1. Assess the exposure
+
+- Determine what was committed: Stellar secret key, Trivela API key, environment variable, or third-party credential.
+- Check if the commit reached GitHub (even briefly) — assume it did and treat it as compromised.
+
+### 2. Revoke / rotate the secret immediately
+
+| Secret type | Rotation action |
+|---|---|
+| Stellar secret key | Generate a new keypair. If the key held on-chain funds, sweep them to a new address first. |
+| Trivela API key | Call `DELETE /api/v1/admin/api-keys/:id` to revoke the old key, then create a new one. |
+| Third-party credential | Follow the provider's key rotation procedure. |
+
+Do **not** wait until the commit is removed before revoking — assume the secret is already exploited.
+
+### 3. Remove the secret from git history
+
+Use `git filter-repo` (preferred) or BFG Repo Cleaner to rewrite history:
+
+```bash
+# Install: pip install git-filter-repo
+git filter-repo --path-regex '.*' --replace-text <(echo 'COMPROMISED_VALUE==>REDACTED')
+```
+
+Then force-push all branches and tags. Coordinate with other contributors to re-clone.
+
+### 4. Request a GitHub secret scan review
+
+Open a GitHub support ticket to purge cached views of the exposed commit, and enable [GitHub's secret scanning alerts](https://docs.github.com/en/code-security/secret-scanning) if not already on.
+
+### 5. Post-incident
+
+- Add a custom rule to `.gitleaks.toml` for the leaked pattern if it is not already covered.
+- Update `scripts/dev-setup.sh` if a `git-secrets` pattern needs to be added locally.
+- Write a brief incident summary and share it with the team.
+
+---
+
+## Gitleaks CI Failures
+
+If the `Secrets Scanning` CI workflow fails on a PR:
+
+1. **Do not merge** until the finding is resolved.
+2. Read the workflow output to see which file/line triggered the rule (the secret value itself is not printed).
+3. If it is a **false positive**, add an `[allowlist]` entry in `.gitleaks.toml` for that path or pattern, and explain why in the PR.
+4. If it is a **real secret**, follow the rotation procedure above before amending the commit.

From c9ed91dfb3913c3ce46030915a51321570ce48ef Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:11:53 +0100
Subject: [PATCH 12/13] docs: add secrets scanning badge to README (#485)

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 5a9d0682..a4811ccd 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,7 @@
 # Trivela
 
+[![Secrets Scanning](https://github.com/FinesseStudioLab/Trivela/actions/workflows/secrets-scan.yml/badge.svg)](https://github.com/FinesseStudioLab/Trivela/actions/workflows/secrets-scan.yml)
+
 > **New contributor?** Check out the [📖 FAQ](docs/FAQ.md) for common setup, contract, and
 > contribution questions before getting started. 🔤 **[Glossary](docs/GLOSSARY.md)** — definitions
 > for Soroban, XDR, TTL, Freighter, Horizon, and all Trivela-specific terms.

From 76aad5edfb48a2d40afa0dee0c579a2ae8c0a462 Mon Sep 17 00:00:00 2001
From: Jaydbrown <jaiyeolawety705@gmail.com>
Date: Sun, 28 Jun 2026 11:11:56 +0100
Subject: [PATCH 13/13] docs: add API versioning and deprecation policy section
 (#466)

---
 backend/README.md | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/backend/README.md b/backend/README.md
index 1b744045..cec3eee5 100644
--- a/backend/README.md
+++ b/backend/README.md
@@ -678,3 +678,35 @@ Kubernetes, ECS) can use the resulting status:
 ```bash
 docker inspect --format '{{json .State.Health}}' <container-id>
 ```
+
+---
+
+## API Versioning & Deprecation Policy
+
+All stable endpoints are served under `/api/v1/`. The legacy `/api/` prefix is an alias kept for backwards-compatibility; it will be removed after a 90-day deprecation window.
+
+### Deprecation notices
+
+When an endpoint is deprecated:
+
+1. It is added to `backend/src/deprecations.js` with `deprecatedAt` and `removedAt` dates.
+2. Every response from that endpoint carries three headers (RFC 8594):
+   - `Deprecation: <RFC-7231 date>` — when it was deprecated
+   - `Sunset: <RFC-7231 date>` — when it will be removed (≥ 90 days after deprecation)
+   - `Link: <replacement_url>; rel="successor-version"` — the endpoint to migrate to
+3. A `WARN` log line is emitted for each hit, letting operators see real traffic before removal.
+4. The full registry is available at `GET /api/v1/deprecations` for programmatic checks.
+
+### 90-day notice minimum
+
+No endpoint may be removed until at least 90 days have passed since its `deprecatedAt` date. Operators watching the deprecation headers and the `/deprecations` endpoint will have ample time to migrate.
+
+### Content negotiation (v2 responses)
+
+Select endpoints support an early-access v2 response shape. Opt in with:
+
+```
+Accept: application/vnd.trivela.v2+json
+```
+
+Endpoints that honour this header document it in their section below. All others ignore it.