[#340] Make @forge/utils package

[alexanderpaolini]

Why

As discussed in #340, we have a bunch of utils that need to be consolidated into one package.

What

Resolves: #340

We are moving things to this package. Namely:

• Validators
• Utility functions (see @forge/api/src/utils.ts)
• [and more]

Test Plan

TBD

Checklist

TBD

• Database: No schema changes, OR I have contacted the Development Lead to run db:push before merging
• Environment Variables: No environment variables changed, OR I have contacted the Development Lead to modify them on Coolify BEFORE merging.

Summary by CodeRabbit

• Chores
  • Established centralized utilities package to improve code organization and maintainability across applications.
  • Enhanced logging infrastructure with consistent error reporting throughout the platform.
  • Updated Node.js runtime version.

[coderabbitai]

📝 Walkthrough

Walkthrough

This pull request consolidates utility functions scattered across multiple apps and packages into a centralized @forge/utils package, organized by domain (discord, forms, permissions, time, events, hackathons, trpc). All dependent files are updated to import from the new package, and local utils.ts files are removed. ESLint rules are tightened to disallow console usage.

Changes

Cohort / File(s)	Summary
@forge/utils Package Creation packages/utils/, packages/utils/src/discord.ts, packages/utils/src/forms.ts, packages/utils/src/permissions.ts, packages/utils/src/permissions.server.ts, packages/utils/src/time.ts, packages/utils/src/events.ts, packages/utils/src/hackathons.ts, packages/utils/src/trpc.ts, packages/utils/src/stripe.ts, packages/utils/src/google.ts, packages/utils/src/logger.ts, packages/utils/src/env.ts	New centralized utilities package with modular exports for discord operations, form handling, permissions, time formatting, event utilities, hackathon helpers, tRPC integration, Stripe client, Google API clients, and logging. Includes server-only permissions handlers and environment configuration.
Local Utils Removal apps/blade/src/lib/utils.ts, apps/club/src/lib/utils.ts, packages/api/src/utils.ts	Deleted local utility files containing functions now consolidated in @forge/utils. Blade loses 131 lines (date formatting, tag colors, class team, permissions, procedure extraction). Club loses 18 lines (date range formatting). API loses 611 lines (Discord operations, permissions, forms, logging, email).
Blade App Utilities Migration apps/blade/package.json, apps/blade/src/app/_components/admin/club/events/*, apps/blade/src/app/_components/admin/hackathon/events/*, apps/blade/src/app/_components/admin/club/members/*, apps/blade/src/app/_components/admin/hackathon/judge-assignment/*, apps/blade/src/app/_components/admin/roles/*, apps/blade/src/app/_components/admin/forms/editor/*, apps/blade/src/app/_components/dashboard/*/*	Updated 30+ component files to import date/time, event tag colors, class team, and permissions utilities from @forge/utils instead of ~/lib/utils. Added @forge/utils to package.json dependencies. Local type aliases created for ProcedureMeta (now from trpc namespace).
Club App Utilities Migration apps/club/package.json, apps/club/src/app/_components/landing/calendar.tsx	Added @forge/utils dependency; replaced formatDateRange with time.formatTimeRange in calendar component.
CRON App Logging Consolidation apps/cron/package.json, apps/cron/eslint.config.js, apps/cron/src/crons/*, apps/cron/src/structs/CronBuilder.ts	Added @forge/utils dependency; replaced all console logging with logger from @forge/utils across 8 cron files and CronBuilder. Removed ESLint no-console override. Updated Discord API calls to use discord.api.post/get where applicable.
T.K Bot Logging Consolidation apps/tk/package.json, apps/tk/eslint.config.js, apps/tk/src/commands/*, apps/tk/src/deploy-commands.ts, apps/tk/src/index.ts	Added @forge/utils dependency; replaced console logging with logger across 10 command files and entry points. Removed ESLint no-console override, enforcing logger usage.
Gemiknights App Minor Updates apps/gemiknights/src/app/_components/ui/background-gradient-animation.tsx, apps/gemiknights/src/lib/utils.ts	Migrated cn classname utility import from local utils to @forge/ui. Deleted local utils.ts file containing cn function.
API Package Major Refactor packages/api/package.json, packages/api/src/env.ts, packages/api/src/trpc.ts, packages/api/src/routers/auth.ts, packages/api/src/routers/csv-importer.ts, packages/api/src/routers/dues-payment.ts, packages/api/src/routers/email.ts, packages/api/src/routers/event.ts, packages/api/src/routers/event-feedback.ts, packages/api/src/routers/forms.ts, packages/api/src/routers/guild.ts, packages/api/src/routers/hackers/*, packages/api/src/routers/judge.ts, packages/api/src/routers/member.ts, packages/api/src/routers/misc.ts, packages/api/src/routers/passkit.ts, packages/api/src/routers/resume.ts, packages/api/src/routers/roles.ts, packages/api/src/routers/user.ts	Added @forge/utils and minio export to package.json; removed DISCORD_BOT_TOKEN and LISTMONK_FROM_EMAIL from env schema. Updated 18+ router files to use permissions.controlPerms, discord.\, logger, and forms namespaces. Replaced internal utilities with @forge/utils imports. Updated Discord API calls to use discord.api.\ paths.
Email Package Public API packages/email/package.json, packages/email/src/env.ts, packages/email/src/index.ts	Added @forge/utils dependency; added LISTMONK_FROM_EMAIL to env validation; exported new sendEmail function with error handling via logger.
Auth & Database Updates packages/auth/src/config.ts, packages/db/scripts/bootstrap-superadmin.ts, packages/db/scripts/get_prod_db.ts, packages/db/scripts/seed_devdb.ts	Updated Discord imports from packages/api to packages/utils; awaited handleDiscordOAuthCallback; added TODO comments for logger usage; updated Discord API calls to discord.api.\* pattern.
ESLint & Configuration tooling/eslint/base.js, apps/cron/eslint.config.js, apps/tk/eslint.config.js, packages/utils/eslint.config.js, packages/utils/tsconfig.json	Changed no-console rule from warn to error in base config; removed no-console overrides from app configs; added new eslint.config.js for @forge/utils package.
Version & Documentation .nvmrc, MIGRATION_STATUS.md	Updated Node.js version in .nvmrc from 20.16 to v25.6.1. Added comprehensive MIGRATION_STATUS.md documenting consolidation scope, completed work, statistics, and remaining tasks.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Rationale: Large scope spanning 50+ files across multiple packages with heterogeneous changes. While many changes follow identical patterns (import replacement), the diff includes substantial structural removals (611-line utils.ts consolidation), complex router refactors with multiple API namespace migrations (discord, permissions, forms, logger), environment schema adjustments, and ESLint rule changes. Review requires verification of import correctness across diverse file types, validation of API namespace usage consistency, and confirmation that no utility logic was lost during consolidation.

Possibly related PRs

• [#341] Make Blade forms embeddable #361 — Refactors tRPC procedure extraction (extractProcedures/trpc helpers) and form responder flow; overlaps with forms utilities migration in @forge/utils.
• [#370] Automatically add members to KH Discord server #373 — Updates Discord OAuth helpers (addMemberToServer, handleDiscordOAuthCallback) and auth post-session hook; directly related to discord utilities consolidation into @forge/utils.
• [#342] Allow editing responses in Blade forms #315 — Modifies forms API surface and CreateForm schema; related through forms.ts consolidation and schema changes in @forge/utils.

Suggested labels

API, Blade, CRON, Guild, T.K, refactor

Suggested reviewers

• DGoel1602
• Adr1an04

🚥 Pre-merge checks | ✅ 6 | ❌ 2

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 6.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.
No Typescript Escape Hatches	⚠️ Warning	PR has one necessary any in tRPC internals and reasonable as casts for external APIs, but discord.ts line 102 needs safer optional chaining (user?.id instead of user.id).	Change members[0]?.user.id to members[0]?.user?.id in packages/utils/src/discord.ts line 102 before merge.

✅ Passed checks (6 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title follows the required format with issue number in brackets [#340] and provides a clear, concise description of the main objective.
Linked Issues check	✅ Passed	The PR fully implements the objectives from issue #340: consolidates scattered utils.ts files into a new @forge/utils package, organizes utilities by scope (discord, forms, permissions, time, events, hackathons, logger, stripe, trpc), and eliminates copy-pasted functions across the codebase.
Out of Scope Changes check	✅ Passed	All changes are directly aligned with issue #340. The PR creates the @forge/utils package, migrates utilities from scattered locations, updates imports across the codebase, and removes obsolete utility files. No unrelated changes detected.
No Hardcoded Secrets	✅ Passed	All sensitive values are correctly loaded from environment variables via zod validation. No hardcoded secrets or suspicious patterns detected. Secrets handled securely at runtime.
Validated Env Access	✅ Passed	No direct process.env usage found outside env.ts and config files. All environment variable access follows the validated env import pattern from @forge/utils/src/env.ts.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

📋 Issue Planner

Built with CodeRabbit's Coding Plans for faster development and fewer bugs.

View plan used: #340

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch utils/create-utils-package

Tip

Try Coding Plans. Let us write the prompt for your AI agent so you can ship faster (with fewer bugs).
Share your feedback on Discord.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[alexanderpaolini]

@DGoel1602 can you do validators and emails

[coderabbitai]

Actionable comments posted: 20

Note

Due to the large number of review comments, Critical, Major severity comments were prioritized as inline comments.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (15)

apps/blade/src/app/_components/dashboard/hacker/hacker-application-form.tsx (1)

380-386: ⚠️ Potential issue | 🟠 Major

Reset loading when the pre-submit steps fail.

If fileToBase64() or uploadResume.mutateAsync() throws, createHacker.onSettled() never runs, so the form stays stuck in the loading state after this toast. Clear the flag here, or move cleanup into a finally.

Suggested fix

           } catch (error) {
+            setLoading(false);
             // TODO: look into not logging into the console
             // eslint-disable-next-line no-console
             console.error("Error uploading resume or creating hacker:", error);
             toast.error(
               "Something went wrong while processing your application.",
             );
           }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/_components/dashboard/hacker/hacker-application-form.tsx`
around lines 380 - 386, The catch block in hacker-application-form.tsx currently
logs the error and shows a toast but never resets the form loading state when
fileToBase64() or uploadResume.mutateAsync() throws; update the catch to clear
the loading flag (call the component's loading setter, e.g. setLoading(false) or
setIsSubmitting(false) used by this form) or move the cleanup into a finally so
that createHacker.onSettled() is not the sole place that clears loading; ensure
you reference the same loading state variable used elsewhere in this component
so the form is not left stuck.

packages/db/scripts/bootstrap-superadmin.ts (1)

76-82: ⚠️ Potential issue | 🟠 Major

Breaking change: Overwrites existing role without validation.

If this Discord role is already linked and assigned to other users, updating it to Superadmin grants them full permissions without confirmation. This could unintentionally elevate privileges for multiple users.

Why this matters: The script assumes the role is either unused or should become Superadmin, but doesn't verify this assumption.

Consider one of these approaches:

1. Safest: Require the role to be unassigned before updating
2. Alternative: Prompt for confirmation showing how many users will be affected
3. Or: Create a new Superadmin role instead of reusing existing ones

As per coding guidelines, database changes should have backwards compatibility or documented breaking changes.

🛡️ Proposed validation check

    if (existingRole) {
      console.log(
        `Discord role ${discordRoleId} is already linked to role: ${existingRole.name}`,
      );
+
+     // Check if other users have this role
+     const usersWithRole = await db.query.Permissions.findMany({
+       where: (t, { eq }) => eq(t.roleId, existingRole.id),
+     });
+
+     if (usersWithRole.length > 0) {
+       console.warn(
+         `⚠️  WARNING: ${usersWithRole.length} user(s) currently have this role.`
+       );
+       console.warn(
+         `   Updating to Superadmin will grant them full permissions.`
+       );
+       console.warn(`   Consider creating a new role instead.\n`);
+       process.exit(1);
+     }
+
      console.log(`   Updating permissions to superadmin level...\n`);

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/db/scripts/bootstrap-superadmin.ts` around lines 76 - 82, The update
to Roles (db.update(Roles).set({...}).where(eq(Roles.discordRoleId,
discordRoleId))) unconditionally rewrites an existing Discord role to
Superadmin; change it to first check whether any users are assigned to that role
and abort (or require confirmation) if assignments exist: perform a count query
against the user-role assignment table used by the app (the table that links
users to Roles) for the given Roles.discordRoleId, and if count > 0 return/log
an error and do not run the db.update; only run db.update(Roles)... when the
assignment count is zero (or implement an alternate path to create a new
Superadmin role instead of reusing the existing Roles record).

packages/db/scripts/get_prod_db.ts (2)

69-72: ⚠️ Potential issue | 🟠 Major

Avoid raw process.env access in this script.

This file already uses the validated env module, but envN reintroduces direct process.env access. Please move the child-process env construction behind packages/db/src/env.ts (or another config helper) and import that here instead. As per coding guidelines, !(**/{env,*.config}.{js,ts,tsx}): Validated env access: Flag any direct usage of process.env outside of env.ts config files and .config. files.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/db/scripts/get_prod_db.ts` around lines 69 - 72, The script
currently constructs child-process environment using raw process.env (see envN)
which violates the validated-env rule; instead, move the logic that builds the
child process environment (merging PGPASSWORD into process env) into the shared
env helper (e.g., packages/db/src/env.ts) and export a function or object (e.g.,
getChildProcessEnv or CHILD_PROCESS_ENV) that this script imports and uses;
update get_prod_db.ts to call parsePg() for credentials and then import the
prepared env from env.ts rather than referencing process.env directly (replace
envN usage with the imported helper).

---

78-101: ⚠️ Potential issue | 🟠 Major

Replace shell interpolation with spawn() and explicit argv for psql calls.

The code interpolates port, user, and objectName into exec() commands, which runs through a shell. While these values come from parsed environment and hardcoded sources here, this pattern violates best practice: special characters in DATABASE_URL credentials could break the command, and the approach doesn't scale if inputs become dynamic.

Use spawn() with explicit argv and pass SQL via stdin:

Example fix

import { spawn } from "child_process";
import { pipeline } from "stream/promises";

async function runPsql(args: string[], sqlInput?: string, env: NodeJS.ProcessEnv) {
  return new Promise<void>((resolve, reject) => {
    const child = spawn("psql", args, { env, stdio: ["pipe", "inherit", "inherit"] });
    
    child.on("error", reject);
    child.on("close", (code) => {
      code === 0 ? resolve() : reject(new Error(`psql exited with code ${code}`));
    });

    if (sqlInput) {
      child.stdin.write(sqlInput);
    }
    child.stdin.end();
  });
}

// For truncate: pass SQL via stdin instead of heredoc
if (args.includes("--truncate")) {
  console.log("Truncating all tables in DB");
  await runPsql(
    ["-h", "localhost", "-p", port, "-U", user, "-d", "local"],
    `SET session_replication_role = replica;
     DO $$ 
     DECLARE r RECORD;
     BEGIN
       FOR r IN (SELECT tablename FROM pg_tables WHERE schemaname = 'public') 
       LOOP
         EXECUTE 'TRUNCATE TABLE ' || quote_ident(r.tablename) || ' CASCADE';
       END LOOP;
     END $$;
     SET session_replication_role = DEFAULT;`,
    envN
  );
}

// For restore: stream input file
console.log("Inserting prod rows into local DB");
try {
  await new Promise<void>((resolve, reject) => {
    const child = spawn("psql", ["-h", "localhost", "-p", port, "-U", user, "local"], 
      { env: envN, stdio: ["pipe", "inherit", "inherit"] });
    
    child.on("error", reject);
    child.on("close", (code) => {
      code === 0 ? resolve() : reject(new Error(`psql exited with code ${code}`));
    });

    pipeline(fs.createReadStream(objectName), child.stdin).catch(reject);
  });
} finally {
  await unlink(objectName);
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/db/scripts/get_prod_db.ts` around lines 78 - 101, The current use of
execAsync with shell-interpolated commands (the calls around execAsync that use
port, user, envN and objectName) should be replaced with
child_process.spawn-based calls that pass psql and its arguments as an argv
array (e.g., ["-h","localhost","-p",port,"-U",user,"-d","local"]) to avoid shell
interpolation; for the truncate block send the multi-statement SQL via stdin to
the spawned psql process and for the restore block stream the file into
psql.stdin (use stream pipeline or fs.createReadStream(objectName) ->
child.stdin), propagate errors on 'error' and non-zero exit codes from 'close',
and keep using envN for the environment and unlink(objectName) in the finally
block.

apps/blade/src/app/api/trpc/[trpc]/route.ts (1)

10-15: ⚠️ Potential issue | 🟠 Major

Restrict CORS to specific origins in production.

The wildcard Access-Control-Allow-Origin: * allows any website to call this API endpoint. Since the handler uses authenticated sessions (line 52), this configuration could expose user data to malicious origins. The comment on line 8 acknowledges this needs to be extended.

🔒 Proposed fix: Configure allowed origins

+const allowedOrigins = [
+  process.env.NEXT_PUBLIC_APP_URL ?? "http://localhost:3000",
+  // Add other allowed origins
+];
+
 const setCorsHeaders = (res: Response) => {
-  res.headers.set("Access-Control-Allow-Origin", "*");
+  const origin = req.headers.get("origin");
+  if (origin && allowedOrigins.includes(origin)) {
+    res.headers.set("Access-Control-Allow-Origin", origin);
+    res.headers.set("Access-Control-Allow-Credentials", "true");
+  }
   res.headers.set("Access-Control-Request-Method", "*");
   res.headers.set("Access-Control-Allow-Methods", "OPTIONS, GET, POST");
-  res.headers.set("Access-Control-Allow-Headers", "*");
+  res.headers.set("Access-Control-Allow-Headers", "content-type");
 };

Note: You'll need to pass req to setCorsHeaders or refactor to access the origin header.

As per coding guidelines: "apps/blade/** ... No secrets or API keys in client-side code" — while this is server-side, overly permissive CORS can leak authenticated data to any origin.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/api/trpc/`[trpc]/route.ts around lines 10 - 15, The
current setCorsHeaders function sets Access-Control-Allow-Origin to "*" which is
too permissive; update setCorsHeaders (and its callers) to accept the incoming
Request or origin string, read the request's Origin header, and compare it
against a configured allowlist (e.g., from process.env or a constants list) — if
the origin is allowed set Access-Control-Allow-Origin to that origin, otherwise
omit or set a safe default; only apply the allowlist in production mode and keep
the existing wildcard (or development allowlist) for non-production; ensure you
update any code that calls setCorsHeaders to pass the Request/Origin so the
function can perform the check.

apps/tk/src/commands/cat.ts (1)

46-46: ⚠️ Potential issue | 🟡 Minor

Discarding the reply promise may hide errors.

Using void suppresses the promise result. If interaction.reply fails, you won't know. Consider awaiting or adding .catch() for observability.

🔧 Suggested fix

-    void interaction.reply({ embeds: [embed] });
+    await interaction.reply({ embeds: [embed] });

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/tk/src/commands/cat.ts` at line 46, The reply promise is being discarded
by using `void interaction.reply(...)`; update the `cat` command's reply
handling to await the promise and surface errors—either make the enclosing
function async and `await interaction.reply({...})` inside a try/catch that logs
the error, or append `.catch(...)` to `interaction.reply` to log failures;
target the `interaction.reply` call in the `cat` command and ensure errors are
logged for observability.

packages/api/package.json (1)

29-35: ⚠️ Potential issue | 🟡 Minor

Remove the stale ./utils export from packages/api/package.json.

The ./utils export points to ./src/utils.ts, which no longer exists. With the migration to @forge/utils, this export declaration should be removed to avoid breaking any code that might import from it.

{
  "exports": {
    ".": {
      "types": "./dist/index.d.ts",
      "default": "./src/index.ts"
    },
    "./env": {
      "types": "./dist/env.d.ts",
      "default": "./src/env.ts"
    }
    // Remove "./utils" export—utils are now in `@forge/utils`
  }
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/package.json` around lines 29 - 35, Remove the stale "./utils"
export from the package exports in packages/api/package.json: locate the
"exports" object that currently includes a "./utils" entry pointing to
"./src/utils.ts" and delete that "./utils" key (and its types/default entries)
so imports no longer point to a non-existent file now that utilities live in the
`@forge/utils` package; ensure the remaining exports (e.g., ".", "./env") remain
unchanged and package still builds.

apps/blade/src/app/_components/dashboard/hackathon-dashboard/point-leaderboard.tsx (1)

145-159: ⚠️ Potential issue | 🟡 Minor

Add missing key prop to mapped elements.

React requires a unique key prop when rendering lists to optimize reconciliation. The dummy loader items and activeTop items are missing keys.

🔧 Proposed fix

         {!activeTop ? (
-          dummy.map((v, i) => {
+          dummy.map((v, i) => (
             const t = hackathons.getClassTeam(v);
             return (
               <div
+                key={v}
                 className={`flex flex-row justify-between border p-1.5 px-2 ${i == 0 ? "rounded-t-lg font-semibold" : i == dummy.length - 1 ? "rounded-b-lg" : ""}`}

And for the activeTop mapping at line 162:

             {activeTop.map((v, i) => {
               const t = hackathons.getClassTeam(v.class || "Alchemist");
               return (
                 <div
+                  key={v.id}
                   className={`flex flex-row justify-between border p-1 px-2 ...`}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@apps/blade/src/app/_components/dashboard/hackathon-dashboard/point-leaderboard.tsx`
around lines 145 - 159, The mapped list items rendered in dummy.map (inside the
point-leaderboard component) are missing a React key; add a unique key prop to
the root element returned by dummy.map (e.g., key={v} or key={`loader-${i}`} or
another stable id) where dummy, hackathons.getClassTeam, and Loader are used,
and likewise add a unique key prop to the root element of the activeTop mapping
(use a stable id like item.id or the index as a fallback) so React can reconcile
the list correctly.

apps/blade/src/app/_components/dashboard/hackathon-dashboard/upcoming-events.tsx (1)

21-27: ⚠️ Potential issue | 🟠 Major

The upcoming-events window is shifted by one day.

start adds oneDayOffset before the comparison, so this filter is not selecting the next five hours. It effectively targets events from roughly 24–19 hours ago.

Suggested fix

   const upcomingEvents = events
     .filter((event) => {
-      const oneDayOffset = 24 * 60 * 60 * 1000;
-      const start = new Date(event.start_datetime).getTime() + oneDayOffset;
+      const start = new Date(event.start_datetime).getTime();
       return (
         event.hackathonId != null && start >= now && start <= fiveHoursLater
       );
     })

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@apps/blade/src/app/_components/dashboard/hackathon-dashboard/upcoming-events.tsx`
around lines 21 - 27, The filter in the upcomingEvents computation incorrectly
adds oneDayOffset to event.start_datetime (see the oneDayOffset constant and the
start variable inside events.filter), shifting the window by 24 hours; remove
the addition of oneDayOffset (use the event start time directly, e.g., compute
start = new Date(event.start_datetime).getTime()) so the comparisons against now
and fiveHoursLater correctly select events in the next five hours.

apps/blade/src/app/_components/forms/form-responder-client.tsx (1)

86-89: ⚠️ Potential issue | 🟠 Major

Do not fail open when the dues check errors.

If validatePaidDues fails, this code sets hasPaidDues to true, so dues-only forms still render when membership status was never verified. That weakens the gate and produces a partial-success UI.

Suggested fix

-  const duesCheckFailed = !!duesQuery.error;
-  const hasPaidDues = duesCheckFailed
-    ? true
-    : (duesQuery.data?.duesPaid ?? false);
+  if (duesQuery.error) {
+    return <div>Error loading dues status</div>;
+  }
+
+  const hasPaidDues = duesQuery.data?.duesPaid ?? false;

Based on learnings, "gating rendering should occur only when all required data fetches succeed. Do not render partial success when some queries fail; instead, implement a unified loading/state or error handling that surfaces a single, coherent state once all data is ready or failed."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/_components/forms/form-responder-client.tsx` around lines
86 - 89, The code currently sets hasPaidDues to true when duesQuery.error
(duesCheckFailed), which "fails open"; instead, stop rendering gated forms when
the validatePaidDues/duesQuery fetch fails by treating errors as a non-success
state and surfacing an error/loading UI until the query succeeds. Concretely,
change the logic around duesQuery/duesCheckFailed/hasPaidDues so hasPaidDues is
derived only from successful data (e.g., hasPaidDues = duesQuery.data?.duesPaid
?? false) and add a guard in the FormResponderClient render path that if
duesQuery.isLoading or duesQuery.isError (duesCheckFailed) you show a unified
loading/error state rather than rendering the dues-only form; ensure any
references to validatePaidDues result/errors are propagated to that same unified
state.

packages/api/src/routers/dues-payment.ts (1)

77-88: ⚠️ Potential issue | 🔴 Critical

Authorize the checkout session before returning or logging it.

Line 81 retrieves any Stripe Checkout Session by ID, but this handler never verifies that session.metadata.member_id belongs to ctx.session.user.id. A leaked or replayed session_id would expose another member’s payment status/email, and the new Discord log would attribute that payment to the caller.

🔒 Proposed fix

   orderSuccess: protectedProcedure
     .input(z.string())
     .query(async ({ input, ctx }) => {
       const stripe = new Stripe(env.STRIPE_SECRET_KEY, { typescript: true });
       const session = await stripe.checkout.sessions.retrieve(input);
+      const member = await db
+        .select({ id: Member.id })
+        .from(Member)
+        .where(eq(Member.userId, ctx.session.user.id))
+        .limit(1);
+
+      if (member.length === 0 || session.metadata?.member_id !== member[0]?.id) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "Checkout session not found.",
+        });
+      }
 
       await discord.log({
         message: `A member has successfully paid their dues. ${session.amount_total}`,
         title: "Dues Paid",
         color: "success_green",

As per coding guidelines, `packages/api/**`: "Authorization checks in every procedure".

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/dues-payment.ts` around lines 77 - 88, The
orderSuccess procedure retrieves a Stripe Checkout Session but does not
authorize it; before calling discord.log or returning the session, check that
the retrieved session (from stripe.checkout.sessions.retrieve(input)) has
session.metadata.member_id and that it equals ctx.session.user.id (or throw an
authentication/authorization error); update the orderSuccess handler to perform
this ownership check and short-circuit with an appropriate error response if the
IDs do not match, then proceed to discord.log only after successful
verification.

apps/blade/src/app/_components/dashboard/member-dashboard/event/event-showcase.tsx (1)

157-173: ⚠️ Potential issue | 🟠 Major

Render each past event’s own timestamps in the loop.

Lines 163 and 172 still format mostRecent.*, so every card in this list shows the first event’s start/end time instead of the current event.

🐛 Proposed fix

-                              {time.formatDateTime(mostRecent.start_datetime)}
+                              {time.formatDateTime(event.start_datetime)}
@@
-                              {time.formatDateTime(mostRecent.end_datetime)}
+                              {time.formatDateTime(event.end_datetime)}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@apps/blade/src/app/_components/dashboard/member-dashboard/event/event-showcase.tsx`
around lines 157 - 173, The loop rendering past events is using
mostRecent.start_datetime/mostRecent.end_datetime so every card shows the first
event's timestamps; update the JSX inside the loop to call
time.formatDateTime(event.start_datetime) and
time.formatDateTime(event.end_datetime) (replacing references to mostRecent) so
each rendered card uses that iteration's event timestamps.

packages/auth/src/config.ts (1)

66-79: ⚠️ Potential issue | 🟠 Major

Keep Discord auto-join off the session-creation critical path.

Line 75 now awaits the Discord callback during session creation. Because failures are still swallowed, the behavioral change here is mainly that sign-in latency and timeouts now depend on Discord/network performance.

🛠️ Safer pattern

-            await discord.handleDiscordOAuthCallback(discordUserId);
+            void discord.handleDiscordOAuthCallback(discordUserId).catch(
+              (error) => {
+                console.error("Error in Discord auto join hook:", error);
+              },
+            );

As per coding guidelines, `packages/auth/**`: "Session management and token handling".

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/auth/src/config.ts` around lines 66 - 79, The after hook currently
awaits discord.handleDiscordOAuthCallback which blocks session creation; change
it to fire-and-forget so Discord joining runs off the critical path: keep the
user lookup (db.query.User.findFirst with eq(User.id, session.userId)) but do
not await discord.handleDiscordOAuthCallback(discordUserId); instead invoke it
asynchronously (e.g., wrap in Promise.resolve().then(...) or setImmediate/void)
and catch/log errors inside that detached promise so failures are recorded but
do not affect the session flow.

packages/api/src/routers/hackers/queries.ts (1)

36-42: ⚠️ Potential issue | 🟠 Major

Fix inconsistent future hackathon lookup logic between functions.

getHacker (line 38) uses gt(t.endDate, now) while getAllHackers (line 180) uses gt(t.startDate, now). During an active hackathon, these return different hackathons:

• getHacker returns the current hackathon (hasn't ended)
• getAllHackers returns the next hackathon (hasn't started yet)

The comment in both functions says "grab a FUTURE hackathon with a start date CLOSEST to now," which describes startDate logic. Align getHacker to use startDate for consistency.

Change in getHacker (lines 36–42):

  const now = new Date();
  const futureHackathons = await db.query.Hackathon.findMany({
-   where: (t, { gt }) => gt(t.endDate, now),
+   where: (t, { gt }) => gt(t.startDate, now),
    orderBy: (t, { asc }) => [asc(t.startDate)],
    limit: 1,
  });

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/hackers/queries.ts` around lines 36 - 42, In
getHacker, the future hackathon lookup uses gt(t.endDate, now) which returns
current hackathons; change the predicate to gt(t.startDate, now) so it matches
getAllHackers and the comment ("grab a FUTURE hackathon with a start date
CLOSEST to now"); update the call to db.query.Hackathon.findMany inside
getHacker (the same place that sets hackathon = futureHackathons[0]) to use
startDate in the where clause while keeping the orderBy asc(t.startDate) and
limit: 1.

packages/api/src/routers/event.ts (1)

54-57: ⚠️ Potential issue | 🟡 Minor

Variable shadowing: forms shadows the imported namespace.

The query result variable forms on line 54 shadows the forms namespace imported from @forge/utils on line 32. This could cause confusion and potential bugs if someone tries to use forms.createForm() or similar methods within this scope.

🔧 Suggested fix: rename the local variable

-    const forms = await db
+    const formSchemas = await db
       .select()
       .from(FormsSchemas)
       .where(inArray(FormsSchemas.slugName, formSlugs));

-    if (forms.length === 0) {
+    if (formSchemas.length === 0) {
       return events.map((event) => ({

Apply similar renames throughout the getEvents and getFeedback procedures where forms is used as a variable name.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/event.ts` around lines 54 - 57, The local variable
named `forms` returned from the DB query in the `getEvents` and `getFeedback`
procedures shadows the imported `forms` namespace; rename the query result
variable (e.g., to `formRecords` or `fetchedForms`) wherever you see the snippet
using `const forms = await db.select().from(FormsSchemas)...` so references to
the imported `forms` namespace (from `@forge/utils`) remain unambiguous and update
any subsequent uses in those procedures to the new variable name.

🟡 Minor comments (6)

apps/blade/src/app/api/trpc/[trpc]/route.ts-62-66 (1)

62-66: ⚠️ Potential issue | 🟡 Minor

Replace console.error with logger.error to align with the codebase pattern.

The TODO on line 63 correctly flags that console.error isn't ideal. The eslint-disable bypasses the linting rule designed to prevent console usage. Throughout the codebase, errors are logged using the logger.error() utility from packages/utils—use that here instead.

Suggested fix

    onError({ error, path }) {
-      // TODO: look into not logging into the console
-      // eslint-disable-next-line no-console
-      console.error(`>>> tRPC Error on '${path}'`, error.message);
+      logger.error(`tRPC Error on '${path}'`, {
+        message: error.message,
+        code: error.code,
+      });
     },

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/api/trpc/`[trpc]/route.ts around lines 62 - 66, In the
onError({ error, path }) handler replace the console.error call with the shared
logger.error utility: import logger from the packages/utils logger and call
logger.error with the same message and error (e.g., logger.error(`>>> tRPC Error
on '${path}'`, error)); remove the eslint-disable-next-line no-console since
console will no longer be used and ensure the import for logger is added at the
top of the file so the onError handler uses logger.error consistently with the
codebase.

apps/blade/src/app/_components/admin/hackathon/judge-assignment/judges-client.tsx-82-87 (1)

82-87: ⚠️ Potential issue | 🟡 Minor

Don’t echo raw server error text in this client alert.

Because this is a client component, err.message can leak backend details into the browser. Keep the detailed error in your reporting/logging path, but show a generic failure message here.

Suggested fix

     } catch (err: unknown) {
-      const message = err instanceof Error ? err.message : String(err);
-      // TODO: look into not logging into the console
+      // TODO: route `err` through the shared logger/reporting utility.
       // eslint-disable-next-line no-console
       console.error("Failed to generate room:", err);
-      alert(`Failed to generate room: ${message}`);
+      alert("Failed to generate room. Please try again.");
     } finally {

As per coding guidelines: apps/blade/**: No secrets or API keys in client-side code.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@apps/blade/src/app/_components/admin/hackathon/judge-assignment/judges-client.tsx`
around lines 82 - 87, In the catch block inside judges-client.tsx (the error
handler for the room generation code), stop showing raw server error text in the
UI: replace the alert that uses err.message with a generic user-facing message
(e.g., "Failed to generate room. Please try again or contact support.") and keep
the detailed error only in logging/reporting (console.error or your telemetry
call) so backend details are not exposed to the browser; ensure the error
handling around the same catch (the code referencing err, message,
console.error) is updated accordingly.

packages/utils/src/google.ts-21-21 (1)

21-21: ⚠️ Potential issue | 🟡 Minor

Remove the unnecessary as string type assertion.

EVENTS.GOOGLE_PERSONIFY_EMAIL is already a string literal constant, so the type assertion is redundant. Per the TypeScript coding guidelines, avoid type assertions like as in favor of proper typing—TypeScript already knows the correct type here.

Fix

  const auth = new google.auth.JWT(
    env.GOOGLE_CLIENT_EMAIL,
    undefined,
    GOOGLE_PRIVATE_KEY,
    [gapiCalendar, gapiGmailSend, gapiGmailSettingsSharing],
-   EVENTS.GOOGLE_PERSONIFY_EMAIL as string,
+   EVENTS.GOOGLE_PERSONIFY_EMAIL,
  );

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/google.ts` at line 21, The array entry uses an unnecessary
type assertion on EVENTS.GOOGLE_PERSONIFY_EMAIL; remove the `as string` so the
entry becomes just EVENTS.GOOGLE_PERSONIFY_EMAIL, and if the containing array or
variable needs an explicit type, declare it (e.g., string[] or a narrower union)
instead of asserting here; update any related declarations that relied on the
assertion to use proper typing rather than `as`.

packages/email/src/env.ts-9-9 (1)

9-9: ⚠️ Potential issue | 🟡 Minor

Add email format validation to LISTMONK_FROM_EMAIL.

The field currently accepts any string, which means invalid email addresses can pass startup validation and only fail when Listmonk rejects them at runtime. Use z.email() to catch configuration errors early.

Suggested fix

-    LISTMONK_FROM_EMAIL: z.string(),
+    LISTMONK_FROM_EMAIL: z.email(),

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/email/src/env.ts` at line 9, LISTMONK_FROM_EMAIL currently allows
any string; change its schema to validate email syntax by replacing
LISTMONK_FROM_EMAIL: z.string() with an email validator (e.g.,
LISTMONK_FROM_EMAIL: z.string().email()) in the env schema so invalid addresses
are rejected at startup; update the export in packages/email/src/env.ts
accordingly and run tests/validation to ensure the new schema passes.

packages/db/scripts/seed_devdb.ts-443-445 (1)

443-445: ⚠️ Potential issue | 🟡 Minor

Typo in error message.

Line 444 has "sav" instead of "save".

✏️ Fix

-      message: `Failed to sav limited prod db to minio. Error: ${stringify(error)}`,
+      message: `Failed to save limited prod db to minio. Error: ${stringify(error)}`,

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/db/scripts/seed_devdb.ts` around lines 443 - 445, Fix the typo in
the error message string for the Minio save failure: update the message property
(associated with the same object that has title "Failed to save limited prod db
to minio") to read "Failed to save limited prod db to minio. Error:
${stringify(error)}" instead of "sav".

packages/utils/src/time.ts-78-91 (1)

78-91: ⚠️ Potential issue | 🟡 Minor

Misleading comment: says "5 hours" but adds 1 day.

Line 79 states "Create a new Date object 5 hours behind the original" but line 81 actually adds 1 day (setDate(... + 1)). This appears to compensate for the -1 day adjustment when storing events in the database, but the comment is confusing.

📝 Suggested fix: correct the comment

 export const formatDateTime = (date: Date) => {
-  // Create a new Date object 5 hours behind the original
+  // Adjust date forward by 1 day to compensate for database storage offset
   const adjustedDate = new Date(date.getTime());
   adjustedDate.setDate(adjustedDate.getDate() + 1);

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/time.ts` around lines 78 - 91, The comment above
formatDateTime is inaccurate: it says "Create a new Date object 5 hours behind
the original" while the code actually adds one day via
adjustedDate.setDate(adjustedDate.getDate() + 1). Update the comment to
accurately describe the operation (e.g., "Create a new Date object and shift it
forward by one day to compensate for stored -1 day adjustment") and ensure it
references adjustedDate and the setDate call so future readers understand why
the date is incremented.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yml

Review profile: CHILL

Plan: Pro

Run ID: a36e0d1d-cd2a-4495-bcb8-53ec5b9e7110

📥 Commits

Reviewing files that changed from the base of the PR and between 5b03b4d and 8801f76.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml, !pnpm-lock.yaml

📒 Files selected for processing (110)

• .nvmrc
• MIGRATION_STATUS.md
• apps/blade/package.json
• apps/blade/src/app/_components/admin/club/events/event-details.tsx
• apps/blade/src/app/_components/admin/club/events/events-table.tsx
• apps/blade/src/app/_components/admin/club/events/view-attendance-button.tsx
• apps/blade/src/app/_components/admin/club/members/member-profile.tsx
• apps/blade/src/app/_components/admin/club/members/scanner.tsx
• apps/blade/src/app/_components/admin/forms/editor/client.tsx
• apps/blade/src/app/_components/admin/forms/editor/linker.tsx
• apps/blade/src/app/_components/admin/hackathon/events/event-details.tsx
• apps/blade/src/app/_components/admin/hackathon/events/events-table.tsx
• apps/blade/src/app/_components/admin/hackathon/events/view-attendance-button.tsx
• apps/blade/src/app/_components/admin/hackathon/judge-assignment/judges-client.tsx
• apps/blade/src/app/_components/admin/roles/roleedit.tsx
• apps/blade/src/app/_components/admin/roles/roletable.tsx
• apps/blade/src/app/_components/dashboard/hackathon-dashboard/point-leaderboard.tsx
• apps/blade/src/app/_components/dashboard/hackathon-dashboard/team-points.tsx
• apps/blade/src/app/_components/dashboard/hackathon-dashboard/upcoming-events.tsx
• apps/blade/src/app/_components/dashboard/hacker-dashboard/past-hackathons.tsx
• apps/blade/src/app/_components/dashboard/hacker/hacker-application-form.tsx
• apps/blade/src/app/_components/dashboard/member-dashboard/download-qr-pass.tsx
• apps/blade/src/app/_components/dashboard/member-dashboard/event/event-showcase.tsx
• apps/blade/src/app/_components/forms/connection-handler.ts
• apps/blade/src/app/_components/forms/form-responder-client.tsx
• apps/blade/src/app/_components/forms/form-runner.tsx
• apps/blade/src/app/_components/forms/form-view-edit-client.tsx
• apps/blade/src/app/_components/forms/utils.ts
• apps/blade/src/app/_components/navigation/session-navbar.tsx
• apps/blade/src/app/_components/shared/scanner.tsx
• apps/blade/src/app/admin/forms/[slug]/page.tsx
• apps/blade/src/app/api/membership/route.ts
• apps/blade/src/app/api/trpc/[trpc]/route.ts
• apps/blade/src/app/judge/session/route.ts
• apps/blade/src/lib/utils.ts
• apps/club/package.json
• apps/club/src/app/_components/contact/contact-form.tsx
• apps/club/src/app/_components/landing/calendar.tsx
• apps/club/src/lib/utils.ts
• apps/cron/eslint.config.js
• apps/cron/package.json
• apps/cron/src/crons/_example.ts
• apps/cron/src/crons/alumni-assign.ts
• apps/cron/src/crons/animals.ts
• apps/cron/src/crons/backup-filtered-db.ts
• apps/cron/src/crons/leetcode.ts
• apps/cron/src/crons/reminder.ts
• apps/cron/src/crons/role-sync.ts
• apps/cron/src/structs/CronBuilder.ts
• apps/gemiknights/src/app/_components/ui/background-gradient-animation.tsx
• apps/gemiknights/src/lib/utils.ts
• apps/tk/eslint.config.js
• apps/tk/package.json
• apps/tk/src/commands/capybara.ts
• apps/tk/src/commands/cat.ts
• apps/tk/src/commands/dog.ts
• apps/tk/src/commands/duck.ts
• apps/tk/src/commands/fact.ts
• apps/tk/src/commands/fox.ts
• apps/tk/src/commands/goat.ts
• apps/tk/src/commands/joke.ts
• apps/tk/src/commands/weather.ts
• apps/tk/src/deploy-commands.ts
• apps/tk/src/index.ts
• packages/api/eslint.config.js
• packages/api/package.json
• packages/api/src/env.ts
• packages/api/src/routers/auth.ts
• packages/api/src/routers/csv-importer.ts
• packages/api/src/routers/dues-payment.ts
• packages/api/src/routers/email.ts
• packages/api/src/routers/event-feedback.ts
• packages/api/src/routers/event.ts
• packages/api/src/routers/forms.ts
• packages/api/src/routers/guild.ts
• packages/api/src/routers/hackers/mutations.ts
• packages/api/src/routers/hackers/pagination.ts
• packages/api/src/routers/hackers/queries.ts
• packages/api/src/routers/judge.ts
• packages/api/src/routers/member.ts
• packages/api/src/routers/misc.ts
• packages/api/src/routers/passkit.ts
• packages/api/src/routers/resume.ts
• packages/api/src/routers/roles.ts
• packages/api/src/routers/user.ts
• packages/api/src/trpc.ts
• packages/api/src/utils.ts
• packages/auth/src/config.ts
• packages/db/scripts/bootstrap-superadmin.ts
• packages/db/scripts/get_prod_db.ts
• packages/db/scripts/seed_devdb.ts
• packages/email/package.json
• packages/email/src/env.ts
• packages/email/src/index.ts
• packages/utils/eslint.config.js
• packages/utils/package.json
• packages/utils/src/discord.ts
• packages/utils/src/env.ts
• packages/utils/src/events.ts
• packages/utils/src/forms.ts
• packages/utils/src/google.ts
• packages/utils/src/hackathons.ts
• packages/utils/src/index.ts
• packages/utils/src/logger.ts
• packages/utils/src/permissions.ts
• packages/utils/src/stripe.ts
• packages/utils/src/time.ts
• packages/utils/src/trpc.ts
• packages/utils/tsconfig.json
• tooling/eslint/base.js

💤 Files with no reviewable changes (9)

• packages/api/src/env.ts
• apps/blade/src/app/_components/forms/utils.ts
• apps/gemiknights/src/lib/utils.ts
• apps/club/src/lib/utils.ts
• packages/api/eslint.config.js
• apps/cron/eslint.config.js
• apps/blade/src/lib/utils.ts
• packages/api/src/utils.ts
• apps/tk/eslint.config.js

OOS

[coderabbitai]

Actionable comments posted: 8

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (8)

apps/blade/src/app/_components/forms/form-runner.tsx (2)

188-191: ⚠️ Potential issue | 🟡 Minor

Add accessibility attributes to the error display.

Screen readers won't announce this error when it appears dynamically. Adding role="alert" ensures assistive technology users are informed of submission failures.

♿ Proposed accessibility fix

         {submitError && (
-          <div className="rounded-md border border-destructive bg-destructive/10 p-4 text-destructive">
+          <div
+            role="alert"
+            className="rounded-md border border-destructive bg-destructive/10 p-4 text-destructive"
+          >
             {submitError}
           </div>
         )}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/_components/forms/form-runner.tsx` around lines 188 - 191,
The error message wrapper that renders when submitError is truthy should include
accessibility attributes so screen readers announce it; update the JSX in the
FormRunner component where submitError is rendered (the conditional that returns
the <div className="rounded-md border border-destructive bg-destructive/10 p-4
text-destructive">) to add role="alert" (and optionally aria-atomic="true") to
that div so assistive technologies are notified when the error appears.

---

128-128: ⚠️ Potential issue | 🟡 Minor

Empty banner div appears incomplete.

When form.banner is truthy, an empty <div> is rendered. This looks like a placeholder that was never finished. Either render the banner content or remove this block.

🔧 Possible fix if banner should display an image

-        {form.banner && <div className="overflow-hidden rounded-lg"></div>}
+        {form.banner && (
+          <div className="overflow-hidden rounded-lg">
+            <img src={form.banner} alt="Form banner" className="w-full" />
+          </div>
+        )}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/_components/forms/form-runner.tsx` at line 128, The empty
banner div in the FormRunner JSX renders when form.banner is truthy but contains
no content; update the conditional block in
apps/blade/src/app/_components/forms/form-runner.tsx to either remove the whole
`{form.banner && <div className="overflow-hidden rounded-lg"></div>}` check or
replace it with actual banner rendering (e.g., render an <img> or background
image using the `form.banner` value, include an accessible alt or aria-label,
and preserve the wrapper styles such as "overflow-hidden rounded-lg"); ensure
you update the same JSX conditional that references `form.banner` so the banner
displays correctly or the dead code is removed.

packages/api/src/routers/roles.ts (2)

478-483: ⚠️ Potential issue | 🟠 Major

Preload existing permissions for the batch matrix.

findFirst runs once per user/role pair inside the nested loops. Large batches will turn into N×M extra queries before any writes, which is avoidable in this shared API path. Fetch the existing relations once and index them in memory.

Suggested direction

+      const existingPerms = await db
+        .select({
+          id: Permissions.id,
+          userId: Permissions.userId,
+          roleId: Permissions.roleId,
+        })
+        .from(Permissions)
+        .where(
+          and(
+            inArray(Permissions.userId, input.userIds),
+            inArray(Permissions.roleId, input.roleIds),
+          ),
+        );
+
+      const permByKey = new Map(
+        existingPerms.map((perm) => [`${perm.userId}:${perm.roleId}`, perm]),
+      );
+
       for (const [roleId, roleData] of Object.entries(cachedRoles)) {
         for (const [userId, userData] of Object.entries(cachedUsers)) {
-          const perm = await db.query.Permissions.findFirst({
-            where: (t, { eq, and }) =>
-              and(eq(t.userId, userId), eq(t.roleId, roleId)),
-          });
+          const perm = permByKey.get(`${userId}:${roleId}`);

As per coding guidelines, packages/api/**: Shared tRPC API layer used by all apps. Pay special attention to: No N+1 query patterns.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/roles.ts` around lines 478 - 483, The nested loops
currently call db.query.Permissions.findFirst for each userId/roleId pair (using
cachedRoles, cachedUsers), causing an N×M query pattern; instead, perform a
single preload query (e.g., db.query.Permissions.findMany) that filters for
userId IN all cachedUsers keys and roleId IN all cachedRoles keys, build an
in-memory index keyed by userId and roleId (e.g., `${userId}:${roleId}`), and
then replace the per-pair findFirst call with a lookup from that map inside the
loops so all existing permissions are resolved from memory without extra DB
queries.

---

337-358: ⚠️ Potential issue | 🟠 Major

Persist Blade state before syncing Discord.

These paths mutate Discord first and only then insert/delete the Permissions row. If the DB write fails after a successful Discord call, Blade and Discord drift apart in the opposite direction from the one the comments explicitly allow. Make the DB write the source-of-truth step, then sync Discord as best effort and record any sync failure in the audit message.

Suggested direction

-      try {
-        await discord.addRoleToMember(user.discordUserId, role.discordRoleId);
-        logger.log(
-          `Successfully added Discord role ${role.discordRoleId} to user ${user.discordUserId}`,
-        );
-      } catch (error) {
-        logger.error(
-          `Failed to add Discord role ${role.discordRoleId} to user ${user.discordUserId}:`,
-          error,
-        );
-      }
-
       await db.insert(Permissions).values({
         roleId: input.roleId,
         userId: input.userId,
       });
+
+      let discordSynced = true;
+      try {
+        await discord.addRoleToMember(user.discordUserId, role.discordRoleId);
+        logger.log(
+          `Successfully added Discord role ${role.discordRoleId} to user ${user.discordUserId}`,
+        );
+      } catch (error) {
+        discordSynced = false;
+        logger.error(
+          `Failed to add Discord role ${role.discordRoleId} to user ${user.discordUserId}:`,
+          error,
+        );
+      }

Apply the same ordering to revoke/batch, or move Discord sync to an async job/outbox if you want stronger recovery guarantees.

Also applies to: 400-421, 491-522

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/roles.ts` around lines 337 - 358, The current flow
calls discord.addRoleToMember before persisting the Permissions row
(db.insert(Permissions).values(...)), which can leave Blade and Discord out of
sync if the DB write fails; change the order so you first await
db.insert(Permissions).values({ roleId: input.roleId, userId: input.userId })
and only then attempt discord.addRoleToMember inside a try/catch, logging any
discord error to the audit but treating the DB as the source of truth; apply the
same reordering to the revoke and batch paths that currently mutate Discord
first (the sections using discord.removeRoleFromMember / batch role ops) so DB
writes happen before Discord sync.

packages/db/scripts/seed_devdb.ts (1)

433-448: ⚠️ Potential issue | 🟠 Major

Make Discord notification best-effort to prevent exit-code flip and missed cleanup.

The discord.log() function has no internal error handling, so failures propagate to callers. This creates two bugs:

1. Line 433 (success path): If logging fails, the exception is caught by the outer handler, causing process.exit(1) instead of exit(0)—a successful backup is reported as failed.
2. Line 443 (error path): If logging fails, cleanUp() never runs because it comes after the log call.

Move cleanUp() before the Discord log in the catch block, and wrap logging in a helper that swallows errors:

♻️ Suggested fix

+async function logToDiscordBestEffort(
+  payload: Parameters<typeof discord.log>[0],
+) {
+  try {
+    await discord.log(payload);
+  } catch (logError) {
+    console.error("Discord log failed:", logError);
+  }
+}
+
 async function main() {
   try {
     // ...
-    await discord.log({
+    await logToDiscordBestEffort({
       title: `Successfully saved limited prod db to minio`,
       message: `Successfully saved limited prod db to minio. Run the get_prod_db.ts script to get it into your local dev db.`,
       color: "success_green",
       userId: "Host",
     });
     process.exit(0);
   } catch (error) {
     console.error("Error during database seeding:", error);
+    await cleanUp();
-    await discord.log({
+    await logToDiscordBestEffort({
       title: `Failed to save limited prod db to minio`,
       message: `Failed to sav limited prod db to minio. Error: ${stringify(error)}`,
       color: "uhoh_red",
       userId: "Host",
     });
-    await cleanUp();
     process.exit(1);
   }
 }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/db/scripts/seed_devdb.ts` around lines 433 - 448, The discord.log
calls can throw and must not flip the process exit or block cleanup; create a
safe wrapper (e.g., safeDiscordLog or try/catch around discord.log) that catches
and swallows/logs errors without rethrowing, then: 1) on the success path (after
the successful save) call safeDiscordLog so a logging failure won’t cause
process.exit(1) and still call process.exit(0); 2) in the catch handler move the
cleanUp() invocation before any discord.log call and call safeDiscordLog
afterwards so cleanup runs even if logging fails; reference discord.log,
cleanUp(), stringify(), and process.exit in the changes.

packages/api/src/routers/dues-payment.ts (1)

85-90: ⚠️ Potential issue | 🟠 Major

Gate the “dues paid” audit on Stripe’s actual payment status.

checkout.sessions.retrieve() also returns open/expired/unpaid sessions. Logging success unconditionally here can create false payment records if the success page is revisited or a non-paid session ID is queried.

Suggested fix

-      await discord.log({
-        message: `A member has successfully paid their dues. ${session.amount_total}`,
-        title: "Dues Paid",
-        color: "success_green",
-        userId: ctx.session.user.discordUserId,
-      });
+      if (session.payment_status === "paid") {
+        await discord.log({
+          message: `A member has successfully paid their dues. ${session.amount_total}`,
+          title: "Dues Paid",
+          color: "success_green",
+          userId: ctx.session.user.discordUserId,
+        });
+      }

As per coding guidelines, packages/api/**: Shared tRPC API layer used by all apps. Pay special attention to: "Integration points (Stripe, Discord, MinIO, PassKit)".

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/dues-payment.ts` around lines 85 - 90, The current
discord.log call is unconditional and may record payments for
open/expired/unpaid Stripe sessions; update the code that handles the result of
checkout.sessions.retrieve() (the session variable) to only call discord.log
when the Stripe session indicates a successful payment — e.g., check
session.payment_status === "paid" (and optionally session.status === "complete")
before logging; ensure you reference the retrieved session object and gate the
discord.log invocation (the existing discord.log call and its payload) behind
that conditional so only truly paid sessions produce the "Dues Paid" audit.

packages/api/src/routers/forms.ts (1)

447-452: ⚠️ Potential issue | 🟠 Major

Don’t let Discord logging fail a successful write.

This runs after the form response has already been inserted. If discord.log(...) throws or times out, the mutation returns an error even though the submission is saved, which is a bad retry/duplication trap. Make the audit log best-effort here and in the other new post-write log calls below.

Suggested fix

-      await discord.log({
-        title: `Form submitted to blade forms`,
-        message: `**Form submitted:** ${form.name}\n**User:** ${ctx.session.user.name}`,
-        color: "success_green",
-        userId: ctx.session.user.discordUserId,
-      });
+      void discord
+        .log({
+          title: `Form submitted to blade forms`,
+          message: `**Form submitted:** ${form.name}\n**User:** ${ctx.session.user.name}`,
+          color: "success_green",
+          userId: ctx.session.user.discordUserId,
+        })
+        .catch((error) => {
+          logger.error("createResponse discord log failed:", error);
+        });

As per coding guidelines, packages/api/**: Shared tRPC API layer used by all apps. Pay special attention to: "Error handling with user-facing messages".

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/forms.ts` around lines 447 - 452, The discord.log
call after saving a form must be made best-effort so it cannot turn a successful
write into a reported failure; wrap the call to discord.log(...) in a try/catch
(and optionally enforce a short timeout) inside the handler in forms.ts so any
thrown errors or timeouts are caught and not re-thrown, log the failure to the
server logger (e.g., ctx.logger.error or console.error) for diagnostics, and
apply the same pattern to the other post-write log calls in this file to ensure
audit logging never affects the mutation result.

packages/api/src/routers/event.ts (1)

295-307: ⚠️ Potential issue | 🔴 Critical

Remove the -1 day shift before database insert—dates stored in the database are inconsistent with Discord and Google Calendar.

The code shifts event dates back by 1 day when storing them in the database, but startLocalIso and endLocalIso (sent to Discord and Google Calendar) retain the correct dates. This creates a critical mismatch: users see wrong event dates in the app while external calendars show the correct ones.

Since getEvents returns database values without compensation, all downstream consumers receive incorrect dates. Remove lines 296, 298 (and the corresponding shifts at lines 533, 535 in the update handler):

const dayBeforeStart = new Date(startLocalDate);
- dayBeforeStart.setDate(dayBeforeStart.getDate() - 1);
const dayBeforeEnd = new Date(endLocalDate);
- dayBeforeEnd.setDate(dayBeforeEnd.getDate() - 1);

await db.insert(Event).values({
  ...input,
  start_datetime: startLocalDate,
  end_datetime: endLocalDate,

If the -1 shift was intentional for timezone handling, add a comment explaining why—but then you'll need to apply +1 compensation in all Event read queries to keep data consistent.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/event.ts` around lines 295 - 307, The database
insert is subtracting one day from start/end before saving (via
dayBeforeStart.setDate(dayBeforeStart.getDate() - 1) and
dayBeforeEnd.setDate(... - 1)) while startLocalIso/endLocalIso (sent to
Discord/Google) remain correct, causing a mismatch; remove the day-before
adjustments so db.insert(Event).values uses startLocalDate/endLocalDate
directly, and also remove the identical -1 shifts in the update handler (the
update code that mirrors dayBeforeStart/dayBeforeEnd). If the shift was
intentional for timezone handling, instead add a clear comment explaining why
and implement a +1 compensation on all Event read paths (e.g., getEvents) so
stored values remain consistent with external calendars.

🧹 Nitpick comments (9)

apps/blade/src/app/_components/forms/form-runner.tsx (1)

8-14: Optional: Simplify by removing intermediate type aliases.

The type aliases on lines 13-14 add indirection without benefit. You can use the namespaced types directly throughout the file (e.g., forms.FormResponsePayload), which is already done for method calls.

♻️ Proposed simplification

 import * as forms from "@forge/utils/forms.client";
 
 import { InstructionResponseCard } from "~/app/_components/forms/instruction-response-card";
 import { QuestionResponseCard } from "~/app/_components/forms/question-response-card";
-
-type FormResponsePayload = forms.FormResponsePayload;
-type FormResponseUI = forms.FormResponseUI;

Then update usages:

-  initialResponses?: FormResponseUI;
+  initialResponses?: forms.FormResponseUI;
   ...
-  onSubmit: (payload: FormResponsePayload) => void;
+  onSubmit: (payload: forms.FormResponsePayload) => void;
   ...
-  const [responses, setResponses] = useState<FormResponseUI>(
+  const [responses, setResponses] = useState<forms.FormResponseUI>(

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/blade/src/app/_components/forms/form-runner.tsx` around lines 8 - 14,
Remove the unnecessary intermediate type aliases FormResponsePayload and
FormResponseUI: delete the two type alias lines and update any references to use
the namespaced types forms.FormResponsePayload and forms.FormResponseUI directly
(the import already present as import * as forms). Ensure all occurrences that
referenced the aliases in this file (e.g., any prop types, function signatures
or local variables) are switched to the forms.* variants.

packages/utils/src/forms.ts (3)

169-172: Use the centralized logger instead of console.error.

The eslint-disable comments indicate console usage is restricted. Since this package already imports a logger (per the discord.ts pattern), consider using logger.error for consistency with the rest of the utils package.

♻️ Suggested fix

         } catch (e) {
-          // eslint-disable-next-line no-console
-          console.error("Failed to regenerate image URL:", e);
+          logger.error("Failed to regenerate image URL:", e);
         }

You'll need to import the logger:

import { logger } from "./logger";

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/forms.ts` around lines 169 - 172, Replace the
console.error usage in the catch block that logs "Failed to regenerate image
URL:" with the centralized logger by importing logger (import { logger } from
"./logger") and calling logger.error with the same message and the caught error
(i.e., update the catch in the function where console.error is used to use
logger.error instead); ensure the logger import is added to the top of
packages/utils/src/forms.ts and remove the eslint-disable comment.

---

212-212: Slug generation may produce invalid or duplicate slugs.

The current slug logic doesn't handle:

1. Multiple consecutive spaces → "my event" becomes "my--event"
2. Special characters → "Event #1!" becomes "event-#1!"
3. Leading/trailing spaces

Consider a more robust slugification.

♻️ Suggested fix

-  const slug_name = input.formData.name.toLowerCase().replaceAll(" ", "-");
+  const slug_name = input.formData.name
+    .toLowerCase()
+    .trim()
+    .replace(/[^a-z0-9\s-]/g, "")
+    .replace(/\s+/g, "-")
+    .replace(/-+/g, "-");

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/forms.ts` at line 212, Replace the fragile slug generation
for slug_name with a robust slugify routine: trim input.formData.name, convert
to lowercase, normalize whitespace to single spaces, replace spaces with
hyphens, remove or replace non-alphanumeric characters (allow only a-z, 0-9 and
hyphens), collapse multiple hyphens into one, and strip leading/trailing
hyphens; implement this as a helper (e.g., slugify) and use it where slug_name
is assigned, and if your system must avoid duplicates add a uniqueness check
(e.g., append "-1", "-2" loop) using your existing slug uniqueness function or
store lookup.

---

183-186: Same issue: prefer logger over console.error.

For consistency, use logger.error here as well.

♻️ Suggested fix

         } catch (e) {
-          // eslint-disable-next-line no-console
-          console.error("Failed to regenerate video URL:", e);
+          logger.error("Failed to regenerate video URL:", e);
         }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/forms.ts` around lines 183 - 186, Replace the
console.error call in the catch block that logs "Failed to regenerate video
URL:" with logger.error; update the catch to call logger.error("Failed to
regenerate video URL:", e) (or format the message consistently with other logs)
and ensure the surrounding function (where the catch lives) has access to a
logger instance—import or accept the same logger used elsewhere in forms.ts if
necessary and remove the eslint-disable comment.

packages/api/src/routers/event.ts (1)

531-545: Same -1 day shift in updateEvent.

The same date adjustment pattern appears in updateEvent. If this is intentional (e.g., timezone compensation), consider extracting it into a helper function with a descriptive name to clarify the intent.

♻️ Extract date adjustment logic

// At the top of the file or in a utils module:
function adjustEventDateForDatabase(date: Date): Date {
  const adjusted = new Date(date);
  adjusted.setDate(adjusted.getDate() - 1);
  return adjusted;
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/event.ts` around lines 531 - 545, The date
adjustment (subtracting one day) used when updating events is duplicated and
unclear; extract this into a helper like adjustEventDateForDatabase(date: Date):
Date and replace the inline logic that creates dayBeforeStart/dayBeforeEnd in
the updateEvent flow with calls to that helper, then use the returned Dates in
the db.update(...).set({ start_datetime: ..., end_datetime: ..., ... }) for
Event to make the intent explicit and reduce duplication.

packages/api/src/routers/auth.ts (1)

4-6: Unused import: permissions.

The permissions import on line 4 doesn't appear to be used in this file. Only discord and permissionsServer are referenced.

♻️ Remove unused import

-import { permissions } from "@forge/utils";
 import * as discord from "@forge/utils/discord";
 import * as permissionsServer from "@forge/utils/permissions.server";

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/auth.ts` around lines 4 - 6, Remove the unused
import "permissions" from the top of the file where imports are declared
(currently: import { permissions } from "@forge/utils";) since only the modules
exported as discord and permissionsServer are used; update the import list in
packages/api/src/routers/auth.ts to only import the used symbols (discord and
permissionsServer) and run the linter or TypeScript compile to ensure no other
references to the removed symbol remain.

packages/auth/src/config.ts (1)

75-80: Good: callback is now awaited. Consider using logger for error handling.

The await on handleDiscordOAuthCallback fixes the previous fire-and-forget issue. However, the catch block still uses console.error with an eslint-disable. For consistency with the utils package, consider importing and using the centralized logger.

♻️ Optional: use centralized logger

+import { logger } from "@forge/utils";
+
 // In the catch block:
           } catch (error) {
-            // TODO: remove this eslint-disable
-            // eslint-disable-next-line no-console
-            console.error("Error in Discord auto join hook:", error);
+            logger.error("Error in Discord auto join hook:", error);
           }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/auth/src/config.ts` around lines 75 - 80, The catch block after
awaiting discord.handleDiscordOAuthCallback(discordUserId) still uses
console.error and an eslint-disable; import and use the centralized logger from
the utils package (e.g., logger) instead of console, remove the eslint-disable,
and replace console.error("Error in Discord auto join hook:", error) with a
logger.error call that includes a clear message and the caught error (use the
same logger naming pattern used elsewhere in the repo to maintain consistency).

packages/utils/src/discord.ts (1)

162-164: Embed footer timestamp is server-locale dependent.

new Date().toLocaleString() produces different formats depending on the server's locale settings. Consider using a fixed format or ISO string for consistency.

♻️ Use explicit locale

           footer: {
-            text: new Date().toLocaleString(),
+            text: new Date().toLocaleString("en-US", {
+              dateStyle: "medium",
+              timeStyle: "short",
+            }),
           },

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/utils/src/discord.ts` around lines 162 - 164, The embed footer
currently uses new Date().toLocaleString() which yields server-locale dependent
output; change the footer timestamp to a consistent, locale-independent format
(e.g., use new Date().toISOString() or format with Intl.DateTimeFormat using a
fixed locale/UTC) in the footer object used when building embeds in
packages/utils/src/discord.ts so all embeds show a stable, predictable
timestamp.

packages/api/src/routers/misc.ts (1)

183-186: Redundant timestamp: both footer.text and timestamp field.

The embed includes timestamp: new Date().toISOString() on line 186, which Discord renders automatically. The footer.text at line 184 also contains a timestamp. This creates duplicate time information.

♻️ Remove redundant footer timestamp

                 footer: {
-                  text: `Submitted at: ${new Date().toLocaleString()}`,
+                  text: "Knight Hacks Recruiting",
                 },
                 timestamp: new Date().toISOString(),

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@packages/api/src/routers/misc.ts` around lines 183 - 186, The embed currently
sets both footer.text and timestamp (footer.text contains a human-readable time
while timestamp: new Date().toISOString() produces Discord's automatic
timestamp), causing duplicate times; remove the timestamp property (timestamp:
new Date().toISOString()) from the embed object and keep footer.text as the
single displayed timestamp so only one time is shown.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@packages/api/src/routers/forms.ts`:
- Around line 31-36: The createForm mutation currently calls
forms.createForm(input) and ignores its return value, changing the tRPC response
to void; update the createForm resolver (the permProcedure .mutation block) to
return the created form by returning the result of forms.createForm(input)
(i.e., replace the discarded await with a returned value) while preserving the
existing permission check via permissions.controlPerms.or(["EDIT_FORMS"], ctx).

In `@packages/api/src/routers/roles.ts`:
- Around line 239-244: getDiscordRoleCounts is declared to return
Promise<Record<string, number> | null> but never returns null; wrap the
discord.api.get call in a try/catch (or otherwise mirror the error-handling
pattern used by the other Discord getters) and return null on failure so the
implementation matches its signature. Locate the getDiscordRoleCounts procedure
and the call to
discord.api.get(`/guilds/${DISCORD.KNIGHTHACKS_GUILD}/roles/member-counts`) and
add error handling that catches exceptions and returns null while keeping the
existing return type, or alternatively remove the | null from the declared
return type if you prefer callers to handle thrown errors.

In `@packages/auth/src/config.ts`:
- Line 10: Replace the relative import "import * as discord from
'../../utils/src/discord';" with the utils package's public import (use the
package export that exposes the discord utilities instead of the src path), e.g.
import from the utils package entrypoint or the package's exported discord path
(ensure the package index exports the discord symbols) so
packages/auth/src/config.ts uses the package API rather than a relative src
import.

In `@packages/utils/package.json`:
- Around line 24-46: The package.json currently lists runtime imports as
dev-only or undeclared; move "@forge/consts", "@forge/db", and "zod" from
devDependencies into dependencies so modules exported by ./forms, ./google, and
./permissions.server can resolve at runtime, and add "next" to peerDependencies
(matching your app's Next.js version) so imports like next/headers are declared
as a peer requirement; update the "dependencies" and "peerDependencies" entries
accordingly and ensure `@trpc/server` remains in peerDependencies as intended.

In `@packages/utils/src/discord.ts`:
- Around line 100-104: The current return expression accesses
members[0]?.user.id which can throw if a partial APIGuildMember has no user;
change the access to safely chain through the whole path (e.g., use
members[0]?.user?.id ?? null) and ensure the callers of this helper handle a
null result; update the function that performs the API call (the code using
members, APIGuildMember and Routes.guildMembersSearch) to use this optional
chaining instead of accessing .id directly.

In `@packages/utils/src/forms.client.ts`:
- Line 1: The file currently imports Zod incorrectly using a default import of
z; replace that with the named export so the symbol z is imported as Zod's named
export (use the named import form for z from zod) and ensure all uses of z in
this module remain unchanged so runtime errors like "z is undefined" are avoided
and the import style matches other modules (validators, env.ts).

In `@packages/utils/src/forms.ts`:
- Around line 231-240: Replace the unsafe spread of ...input when inserting into
FormsSchemas: explicitly map only the allowed columns (e.g., name:
input.formData.name, slugName: slug_name, formValidatorJson: jsonSchema.schema,
plus any permitted metadata fields from input) and do not pass input.section
directly; instead derive sectionId as you do and if sectionId is null set
section to a safe default like "General" or null (or omit the section column) to
avoid orphaned references; update the insert call that uses FormsSchemas,
slug_name, jsonSchema.schema, sectionId and formData to use this explicit field
mapping.

In `@packages/utils/src/permissions.server.ts`:
- Around line 43-60: getJudgeSessionFromCookie currently lets DB errors bubble
up and cause a 500; make it consistent with isJudgeAdmin by treating transient
DB failures as "not authenticated." Wrap the DB query in a try/catch inside
getJudgeSessionFromCookie, catch any error from the
db.select(...).from(JudgeSession)... call, optionally log the error, and return
null on failure so the function always returns a JudgeSession-like object or
null rather than throwing.

---

Outside diff comments:
In `@apps/blade/src/app/_components/forms/form-runner.tsx`:
- Around line 188-191: The error message wrapper that renders when submitError
is truthy should include accessibility attributes so screen readers announce it;
update the JSX in the FormRunner component where submitError is rendered (the
conditional that returns the <div className="rounded-md border
border-destructive bg-destructive/10 p-4 text-destructive">) to add role="alert"
(and optionally aria-atomic="true") to that div so assistive technologies are
notified when the error appears.
- Line 128: The empty banner div in the FormRunner JSX renders when form.banner
is truthy but contains no content; update the conditional block in
apps/blade/src/app/_components/forms/form-runner.tsx to either remove the whole
`{form.banner && <div className="overflow-hidden rounded-lg"></div>}` check or
replace it with actual banner rendering (e.g., render an <img> or background
image using the `form.banner` value, include an accessible alt or aria-label,
and preserve the wrapper styles such as "overflow-hidden rounded-lg"); ensure
you update the same JSX conditional that references `form.banner` so the banner
displays correctly or the dead code is removed.

In `@packages/api/src/routers/dues-payment.ts`:
- Around line 85-90: The current discord.log call is unconditional and may
record payments for open/expired/unpaid Stripe sessions; update the code that
handles the result of checkout.sessions.retrieve() (the session variable) to
only call discord.log when the Stripe session indicates a successful payment —
e.g., check session.payment_status === "paid" (and optionally session.status ===
"complete") before logging; ensure you reference the retrieved session object
and gate the discord.log invocation (the existing discord.log call and its
payload) behind that conditional so only truly paid sessions produce the "Dues
Paid" audit.

In `@packages/api/src/routers/event.ts`:
- Around line 295-307: The database insert is subtracting one day from start/end
before saving (via dayBeforeStart.setDate(dayBeforeStart.getDate() - 1) and
dayBeforeEnd.setDate(... - 1)) while startLocalIso/endLocalIso (sent to
Discord/Google) remain correct, causing a mismatch; remove the day-before
adjustments so db.insert(Event).values uses startLocalDate/endLocalDate
directly, and also remove the identical -1 shifts in the update handler (the
update code that mirrors dayBeforeStart/dayBeforeEnd). If the shift was
intentional for timezone handling, instead add a clear comment explaining why
and implement a +1 compensation on all Event read paths (e.g., getEvents) so
stored values remain consistent with external calendars.

In `@packages/api/src/routers/forms.ts`:
- Around line 447-452: The discord.log call after saving a form must be made
best-effort so it cannot turn a successful write into a reported failure; wrap
the call to discord.log(...) in a try/catch (and optionally enforce a short
timeout) inside the handler in forms.ts so any thrown errors or timeouts are
caught and not re-thrown, log the failure to the server logger (e.g.,
ctx.logger.error or console.error) for diagnostics, and apply the same pattern
to the other post-write log calls in this file to ensure audit logging never
affects the mutation result.

In `@packages/api/src/routers/roles.ts`:
- Around line 478-483: The nested loops currently call
db.query.Permissions.findFirst for each userId/roleId pair (using cachedRoles,
cachedUsers), causing an N×M query pattern; instead, perform a single preload
query (e.g., db.query.Permissions.findMany) that filters for userId IN all
cachedUsers keys and roleId IN all cachedRoles keys, build an in-memory index
keyed by userId and roleId (e.g., `${userId}:${roleId}`), and then replace the
per-pair findFirst call with a lookup from that map inside the loops so all
existing permissions are resolved from memory without extra DB queries.
- Around line 337-358: The current flow calls discord.addRoleToMember before
persisting the Permissions row (db.insert(Permissions).values(...)), which can
leave Blade and Discord out of sync if the DB write fails; change the order so
you first await db.insert(Permissions).values({ roleId: input.roleId, userId:
input.userId }) and only then attempt discord.addRoleToMember inside a
try/catch, logging any discord error to the audit but treating the DB as the
source of truth; apply the same reordering to the revoke and batch paths that
currently mutate Discord first (the sections using discord.removeRoleFromMember
/ batch role ops) so DB writes happen before Discord sync.

In `@packages/db/scripts/seed_devdb.ts`:
- Around line 433-448: The discord.log calls can throw and must not flip the
process exit or block cleanup; create a safe wrapper (e.g., safeDiscordLog or
try/catch around discord.log) that catches and swallows/logs errors without
rethrowing, then: 1) on the success path (after the successful save) call
safeDiscordLog so a logging failure won’t cause process.exit(1) and still call
process.exit(0); 2) in the catch handler move the cleanUp() invocation before
any discord.log call and call safeDiscordLog afterwards so cleanup runs even if
logging fails; reference discord.log, cleanUp(), stringify(), and process.exit
in the changes.

---

Nitpick comments:
In `@apps/blade/src/app/_components/forms/form-runner.tsx`:
- Around line 8-14: Remove the unnecessary intermediate type aliases
FormResponsePayload and FormResponseUI: delete the two type alias lines and
update any references to use the namespaced types forms.FormResponsePayload and
forms.FormResponseUI directly (the import already present as import * as forms).
Ensure all occurrences that referenced the aliases in this file (e.g., any prop
types, function signatures or local variables) are switched to the forms.*
variants.

In `@packages/api/src/routers/auth.ts`:
- Around line 4-6: Remove the unused import "permissions" from the top of the
file where imports are declared (currently: import { permissions } from
"@forge/utils";) since only the modules exported as discord and
permissionsServer are used; update the import list in
packages/api/src/routers/auth.ts to only import the used symbols (discord and
permissionsServer) and run the linter or TypeScript compile to ensure no other
references to the removed symbol remain.

In `@packages/api/src/routers/event.ts`:
- Around line 531-545: The date adjustment (subtracting one day) used when
updating events is duplicated and unclear; extract this into a helper like
adjustEventDateForDatabase(date: Date): Date and replace the inline logic that
creates dayBeforeStart/dayBeforeEnd in the updateEvent flow with calls to that
helper, then use the returned Dates in the db.update(...).set({ start_datetime:
..., end_datetime: ..., ... }) for Event to make the intent explicit and reduce
duplication.

In `@packages/api/src/routers/misc.ts`:
- Around line 183-186: The embed currently sets both footer.text and timestamp
(footer.text contains a human-readable time while timestamp: new
Date().toISOString() produces Discord's automatic timestamp), causing duplicate
times; remove the timestamp property (timestamp: new Date().toISOString()) from
the embed object and keep footer.text as the single displayed timestamp so only
one time is shown.

In `@packages/auth/src/config.ts`:
- Around line 75-80: The catch block after awaiting
discord.handleDiscordOAuthCallback(discordUserId) still uses console.error and
an eslint-disable; import and use the centralized logger from the utils package
(e.g., logger) instead of console, remove the eslint-disable, and replace
console.error("Error in Discord auto join hook:", error) with a logger.error
call that includes a clear message and the caught error (use the same logger
naming pattern used elsewhere in the repo to maintain consistency).

In `@packages/utils/src/discord.ts`:
- Around line 162-164: The embed footer currently uses new
Date().toLocaleString() which yields server-locale dependent output; change the
footer timestamp to a consistent, locale-independent format (e.g., use new
Date().toISOString() or format with Intl.DateTimeFormat using a fixed
locale/UTC) in the footer object used when building embeds in
packages/utils/src/discord.ts so all embeds show a stable, predictable
timestamp.

In `@packages/utils/src/forms.ts`:
- Around line 169-172: Replace the console.error usage in the catch block that
logs "Failed to regenerate image URL:" with the centralized logger by importing
logger (import { logger } from "./logger") and calling logger.error with the
same message and the caught error (i.e., update the catch in the function where
console.error is used to use logger.error instead); ensure the logger import is
added to the top of packages/utils/src/forms.ts and remove the eslint-disable
comment.
- Line 212: Replace the fragile slug generation for slug_name with a robust
slugify routine: trim input.formData.name, convert to lowercase, normalize
whitespace to single spaces, replace spaces with hyphens, remove or replace
non-alphanumeric characters (allow only a-z, 0-9 and hyphens), collapse multiple
hyphens into one, and strip leading/trailing hyphens; implement this as a helper
(e.g., slugify) and use it where slug_name is assigned, and if your system must
avoid duplicates add a uniqueness check (e.g., append "-1", "-2" loop) using
your existing slug uniqueness function or store lookup.
- Around line 183-186: Replace the console.error call in the catch block that
logs "Failed to regenerate video URL:" with logger.error; update the catch to
call logger.error("Failed to regenerate video URL:", e) (or format the message
consistently with other logs) and ensure the surrounding function (where the
catch lives) has access to a logger instance—import or accept the same logger
used elsewhere in forms.ts if necessary and remove the eslint-disable comment.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yml

Review profile: CHILL

Plan: Pro

Run ID: 74c8ae75-7481-4af7-a2e5-51370233b056

📥 Commits

Reviewing files that changed from the base of the PR and between 8801f76 and af2dd92.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml, !pnpm-lock.yaml

📒 Files selected for processing (27)

• apps/blade/src/app/_components/forms/connection-handler.ts
• apps/blade/src/app/_components/forms/form-responder-client.tsx
• apps/blade/src/app/_components/forms/form-runner.tsx
• apps/blade/src/app/_components/forms/form-view-edit-client.tsx
• apps/blade/src/app/judge/session/route.ts
• packages/api/package.json
• packages/api/src/routers/auth.ts
• packages/api/src/routers/dues-payment.ts
• packages/api/src/routers/event-feedback.ts
• packages/api/src/routers/event.ts
• packages/api/src/routers/forms.ts
• packages/api/src/routers/hackers/mutations.ts
• packages/api/src/routers/member.ts
• packages/api/src/routers/misc.ts
• packages/api/src/routers/roles.ts
• packages/api/src/trpc.ts
• packages/auth/src/config.ts
• packages/db/scripts/seed_devdb.ts
• packages/utils/package.json
• packages/utils/src/discord.ts
• packages/utils/src/forms.client.ts
• packages/utils/src/forms.ts
• packages/utils/src/google.ts
• packages/utils/src/index.ts
• packages/utils/src/permissions.server.ts
• packages/utils/src/permissions.ts
• packages/utils/src/stripe.ts

🚧 Files skipped from review as they are similar to previous changes (8)

• packages/utils/src/stripe.ts
• apps/blade/src/app/_components/forms/form-view-edit-client.tsx
• apps/blade/src/app/_components/forms/form-responder-client.tsx
• packages/api/src/routers/event-feedback.ts
• packages/api/src/trpc.ts
• packages/api/src/routers/hackers/mutations.ts
• packages/utils/src/permissions.ts
• apps/blade/src/app/_components/forms/connection-handler.ts

OOS

[must108]

lgtm 👍

https://x.com/girayozil/status/306836785739210752