[Optimization]: Performance, Security & UX Improvements#47
Open
[Optimization]: Performance, Security & UX Improvements#47
Conversation
Complete production implementation of the Prophecy NFT system: ## Database - Add Prophecy model (sealed prophecies per chapter, max 100 mints each) - Add ProphecyMint model (one per user per prophecy, mint order 1-100) - Add ProphecyStatus enum: PENDING | FULFILLED | ECHOED | UNFULFILLED - SQL migration: 20260218_prophecy_nft - Regenerated Prisma client (0 TypeScript errors) ## API Routes (4 new endpoints) - GET/POST /api/prophecies — list all / seed new (oracle) - GET/PATCH /api/prophecies/[chapterId] — chapter gallery + fulfill - GET/POST /api/prophecies/mint — user mints + oracle pack - GET /api/prophecies/leaderboard — oracle rankings ## Components (6 new) - ProphecyCard — NFT card with status-based art (dark/silver/golden) - ProphecyGallery — filterable chapter gallery with sort - ProphecyMintModal — full mint flow (single + oracle pack 10% discount) - ProphecyRarityBadge — rarity tier indicator (COMMON → MYTHIC) - ProphecyBanner — compact story sidebar teaser with progress bar - OracleLeaderboard — top collectors ranked by fulfilled prophecy count ## Pages (2 new) - /prophecies — global gallery with leaderboard sidebar - /prophecies/[chapterId] — chapter-specific gallery + My Mints ## Integrations - Navbar: added 'Prophecies ✦' link - Story page: ProphecyBanner injected in sidebar above betting interface ## Documentation - docs/PROPHECY_NFT_SYSTEM.md — full API, migration, and seeding guide Closes Innovation Cycle #49 Week 1-6 priority (Prophecy NFTs)
… pages - next.config.js: add Web3 fallbacks, scrollRestoration, AVIF-first images, per-route cache headers, remove duplicate .mjs config - Leaderboards page: dynamic import with skeleton loader (better FCP/TTI) - Lore dynamic pages: add force-dynamic + ISR fetch revalidate (300s) - API routes: in-memory cache (5min TTL) for stories, houses, protocols, leaderboards - API routes: add force-dynamic where request.url/searchParams used - Dashboard: 285kB → 272kB (-4.6%), Lore: 242kB → 229kB (-5.4%)
5 breakthrough innovations for Voidborne: 1. House Agent Protocol (HAP) — 5 autonomous AI agents with real wallets 2. Narrative DNA Engine (NDE) — 12-dim betting pattern personalization 3. Sage Staking Protocol (SSP) — Skill-as-asset tier system with Wisdom Pool 4. Story Parameter Markets (SPM) — Continuous narrative attribute markets 5. Cross-Story Universe Bridge (CUB) — Parallel universe story expansion POC: 3 TypeScript modules (house-agents.ts, narrative-dna.ts, sage-protocol.ts) Revenue potential: $7.19M/year by Year 5 Combined moat: 270 months
Implements the full frontend for the House Agent Protocol (HAP) from Innovation Cycle #50 — The Autonomous Character Economy. ## What's New ### API Routes - GET /api/house-agents — All 5 House Agents + aggregate stats (ISR 60s) - POST /api/house-agents/:id/align — Align or rival a House Agent (wallet-gated) - GET /api/house-agents/:id/align — Alignment stats for a house ### Components (7 new) - HouseAgentsContent — Main client wrapper with auto-refresh (60s polling) - HouseAgentCard — Individual agent card with personality, stats, live bet, history - PersonalityBars — Animated 5-dim personality matrix bars (risk/contrarian/survival/memory/bluff) - AlignmentModal — Wallet-gated modal for Align (+20% yield) or Rival (+10% on loss) - RivalryMatrix — 5x5 inter-house rivalry heatmap - AgentLeaderboard — Ranked sidebar by Net PnL with live bet indicators - index.ts — Component barrel ### Page - /house-agents — New page with hero, stat bar, card grid, rivalry matrix, leaderboard ### Navigation - Added 'House Agents ⚔' link to Navbar (desktop + mobile) ## Design Decisions - All mock data in API route (DB tables pending schema migration) - ISR 60s + client-side 60s polling for near-real-time agent updates - Dynamic import for main content block (keeps page lightweight) - Follows Ruins of the Future design system (Cinzel font, gold/void palette, glass-card) - TypeScript strict: 0 errors - Next.js build: exit code 0, page bundles at 7.11 kB / 725 kB total
5 innovations: Live Narrative Broadcast, Betrayal Protocol, Chapter Auction House, Temporal Oracle Markets, Narrative Resonance Index. POC files: - packages/agent-sdk/src/live-narrative-broadcast.ts (LNB engine, SSE streaming, betting windows) - packages/agent-sdk/src/betrayal-protocol.ts (social deduction layer, stitcher assignment, revelation) - packages/agent-sdk/src/temporal-markets.ts (long-range markets, horizon multipliers, AI oracle) - apps/web/src/app/api/stream/chapter/route.ts (SSE API endpoint) - apps/web/src/components/LiveNarrativeStudio.tsx (React UI for live broadcasts) Revenue potential: $10.71M Year-5 | Combined moat: 216 months
…ycle #51 ## Chapter Auction House (Innovation Cycle #51, CAH) Every 10th chapter is a 'Blank Chapter' auctioned to the highest bidder. Winner earns narrative authorship rights + Patron NFT + 10% of all bets. ### API Routes - GET /api/auction — list all auctions with summary stats - GET /api/auction/[chapterId] — single auction with time/bid details - POST /api/auction/[chapterId]/bid — place a bid (5% minimum raise rule) ### UI Components (apps/web/src/components/auction/) - AuctionCard.tsx — compact card (active glow, countdown, status) - AuctionCountdown.tsx — live timer with urgency states (critical/warning) - AuctionBidForm.tsx — wallet-connected bid form with approval flow - AuctionContent.tsx — listing page client wrapper (30s polling) - AuctionDetailContent.tsx — full detail view with bid history + winner form - PatronParameters.tsx — genre/house/twist picker for auction winners ### Pages - /auction — Auction House listing (ISR 30s) - /auction/[chapterId] — Single auction detail (ISR 15s, SSG params) ### Data Layer - src/lib/auction-data.ts — shared types + mock data (replace with Prisma) ## Live Narrative Broadcast Page - /live — wraps LiveNarrativeStudio.tsx with proper page layout + metadata ## Bug Fixes - LiveNarrativeStudio.tsx: fix TS2352 type assertion errors (as unknown as T) ## Navbar - Added '🔴 Live' and 'Auction House 🏛' links to nav ## Quality - TypeScript: 0 errors - Next.js build: ✅ clean (pre-existing warnings only) - Mobile responsive: grid → single col on small screens - Design system: Ruins of the Future palette (gold, void-*, drift-*) - Error boundaries + loading skeletons on all async components - ISR + cache: no-store for client polls, 15-30s revalidation for ISR
## Performance - Fix new PrismaClient() anti-pattern in trending/recent/platform-stats routes - Was creating a new DB connection pool on EVERY serverless invocation - Now use shared prisma singleton from @voidborne/database - Eliminates connection exhaustion under load - Add 15s in-memory + CDN caching to betting/pools/[poolId] (most-hit endpoint) - Open pools: 15s cache / stale-while-revalidate=30 - Resolved/closed pools: 5min cache (stable data) - Rewrite getWeeklyChampions: JS aggregation → single DB GROUP BY - Was: SELECT all winning bets → JS Map reduce → N+1 user fetch - Now: Single SQL JOIN+GROUP BY returns ranked rows in one query ## Security - Fix SQL injection in platform-stats/route.ts - Was: timeframeCutoff interpolated directly into $queryRawUnsafe - Now: parameterized $queryRaw with typed Date parameter ## Bug Fixes - Fix walletAddress vs userId mismatch in betting/place route - Frontend sends walletAddress; route expected userId (silent failure) - Route now accepts walletAddress, upserts user, resolves userId correctly ## UX / Frontend - Hero.tsx: remove mounted guard causing CLS on first paint - No wallet/hydration-sensitive state in Hero; guard was unnecessary - Navbar: replace <a> with Next.js <Link> across all nav items - <a> was triggering full-page reloads instead of SPA navigation - Navbar: add passive: true to scroll event listener (less main-thread work) - Navbar: memoize scroll handler with useCallback - BettingInterface: memoize countdown timer with useCallback - BettingInterface: add ARIA label + aria-describedby to bet input ## Code Quality - Replace console.error/warn/log with logger utility across 37 API routes - logger silences debug output in production while keeping error/warn - next.config.js: add @tanstack/react-query to optimizePackageImports - next.config.js: add optimisticClientCache for faster perceived navigation - Remove unused imports (useState in Hero)
This was referenced Feb 17, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Targeted optimization pass across the Voidborne StoryEngine codebase covering backend performance, a security fix, a silent bug, UX improvements, and code quality cleanup.
🚨 Critical Fixes
1. DB Connection Pool Leak (3 routes)
Files:
betting/trending,betting/recent,betting/platform-statsImpact: Under load this was exhausting Supabase's 25-connection free tier. Now uses the shared singleton.
2. SQL Injection — platform-stats route
3. walletAddress vs userId Mismatch
File:
betting/place/route.tsThe frontend sent
walletAddressbut the route extracteduserId— silent failure. Route now acceptswalletAddress, upserts the user, and resolvesuserIdcorrectly.⚡ Performance
4. Add Caching to
/api/betting/pools/[poolId]Most-hit endpoint had zero caching. Now:
s-maxage=15, stale-while-revalidate=30)s-maxage=300, stale-while-revalidate=600)X-Cache: HIT/MISSheader for observability5. Weekly Champions: JS Aggregation → DB GROUP BY
getWeeklyChampionswas loading ALL winning bets from the last 7 days into Node memory, runningMapreduce, then doing an N+1 user fetch.Now: single
$queryRawJOIN+GROUP BY — one round-trip, zero JS aggregation.🎨 Frontend / UX
6. Hero.tsx — Remove CLS Flash
Was using
useState(mounted)+if (!mounted) return nullon a component with no hydration-sensitive state. This caused layout shift on first paint.7. Navbar —
<a>→ Next.js<Link>All nav items used raw
<a href>which triggers full page reloads. Replaced with<Link>for SPA client-side routing.8. Scroll Handler — Passive + Memoized
Added
{ passive: true }to the scroll listener (frees main thread during scroll) and wrapped inuseCallbackto avoid re-creation on re-renders.9. BettingInterface — ARIA Labels
Added
aria-labelandaria-describedbyto the bet amount input for accessibility.🧹 Code Quality
10. Replace
console.*withloggerUtility — 37 API routesThe
loggerutil already existed but wasn't used. Nowconsole.error/warn/logacross all 37 API route files has been replaced. In production (removeConsoleis already in next.config.js), this also reduces bundle size.11. next.config.js
@tanstack/react-querytooptimizePackageImports(tree-shaking)optimisticClientCache: truefor faster perceived link navigationMetrics (Before → After)
Testing
pnpm type-check— 0 errorspnpm build— exits 0, all routes compiledImpact
Do NOT merge without manual QA on the betting flow.