Thanks for taking a look! I’ve removed the large programmatically generated file (src/generated/graphql.ts) from the repository to improve auditability and reduce diff noise.
I’ve also added these security mitigations for the development environment:
Dependency Audit: Integrated npm audit --audit-level=high into the build pipeline to automatically block builds with critical vulnerabilities.
Supply Chain: Pinned vite-plugin-monkey version to mitigate potential supply chain risks.
Re: color mixing—noted! It’s currently good enough for this use case, but I’ll keep the gamma correction resources in mind if we need higher fidelity.
And yes I’ve been using different LLMs (Gemini, GPT, Claude) to review each other’s code.
Please let me know if you have any other suggestions.
Thanks for taking a look! I’ve removed the large programmatically generated file (src/generated/graphql.ts) from the repository to improve auditability and reduce diff noise.
I’ve also added these security mitigations for the development environment:
Dependency Audit: Integrated
npm audit --audit-level=highinto the build pipeline to automatically block builds with critical vulnerabilities.Supply Chain: Pinned
vite-plugin-monkeyversion to mitigate potential supply chain risks.Re: color mixing—noted! It’s currently good enough for this use case, but I’ll keep the gamma correction resources in mind if we need higher fidelity.
And yes I’ve been using different LLMs (Gemini, GPT, Claude) to review each other’s code.
Please let me know if you have any other suggestions.