chore: switch curl images to quay.io (#5916 )

fix: surveys package resize observer issue (#5907 )
Co-authored-by: Matthias Nannt <mail@matthiasnannt.com>
2025-12-22 22:20:52 -06:00 · 2025-05-31 11:19:22 +00:00 · 2025-05-29 19:00:28 +00:00 · 2025-05-29 14:39:20 +00:00 · 2025-05-29 16:40:18 +02:00 · 2025-05-29 10:46:41 +00:00
4486 changed files with 335666 additions and 139404 deletions
--- a/.cursor/rules/build-and-deployment.mdc
+++ b/.cursor/rules/build-and-deployment.mdc
@@ -0,0 +1,61 @@
 ---
 description: 
 globs: 
 alwaysApply: false
 ---
 # Build & Deployment Best Practices
 ## Build Process
 ### Running Builds
 - Use `pnpm build` from project root for full build
 - Monitor for React hooks warnings and fix them immediately
 - Ensure all TypeScript errors are resolved before deployment
 ### Common Build Issues & Fixes
 #### React Hooks Warnings
 - Capture ref values in variables within useEffect cleanup
 - Avoid accessing `.current` directly in cleanup functions
 - Pattern for fixing ref cleanup warnings:
 ```typescript
 useEffect(() => {
  const currentRef = myRef.current;
  return () => {
    if (currentRef) {
      currentRef.cleanup();
    }
  };
 }, []);
 ```
 #### Test Failures During Build
 - Ensure all test mocks include required constants like `SESSION_MAX_AGE`
 - Mock Next.js navigation hooks properly: `useParams`, `useRouter`, `useSearchParams`
 - Remove unused imports and constants from test files
 - Use literal values instead of imported constants when the constant isn't actually needed
 ### Test Execution
 - Run `pnpm test` to execute all tests
 - Use `pnpm test -- --run filename.test.tsx` for specific test files
 - Fix test failures before merging code
 - Ensure 100% test coverage for new components
 ### Performance Monitoring
 - Monitor build times and optimize if necessary
 - Watch for memory usage during builds
 - Use proper caching strategies for faster rebuilds
 ### Deployment Checklist
 1. All tests passing
 2. Build completes without warnings
 3. TypeScript compilation successful
 4. No linter errors
 5. Database migrations applied (if any)
 6. Environment variables configured
 ### EKS Deployment Considerations
 - Ensure latest code is deployed to all pods
 - Monitor AWS RDS Performance Insights for database issues
 - Verify environment-specific configurations
 - Check pod health and resource usage
--- a/.cursor/rules/database-performance.mdc
+++ b/.cursor/rules/database-performance.mdc
@@ -0,0 +1,41 @@
 ---
 description: 
 globs: 
 alwaysApply: false
 ---
 # Database Performance & Prisma Best Practices
 ## Critical Performance Rules
 ### Response Count Queries
 - **NEVER** use `skip`/`offset` with `prisma.response.count()` - this causes expensive subqueries with OFFSET
 - Always use only `where` clauses for count operations: `prisma.response.count({ where: { ... } })`
 - For pagination, separate count queries from data queries
 - Reference: [apps/web/lib/response/service.ts](mdc:apps/web/lib/response/service.ts) line 654-686
 ### Prisma Query Optimization
 - Use proper indexes defined in [packages/database/schema.prisma](mdc:packages/database/schema.prisma)
 - Leverage existing indexes: `@@index([surveyId, createdAt])`, `@@index([createdAt])`
 - Use cursor-based pagination for large datasets instead of offset-based
 - Cache frequently accessed data using React Cache and custom cache tags
 ### Date Range Filtering
 - When filtering by `createdAt`, always use indexed queries
 - Combine with `surveyId` for optimal performance: `{ surveyId, createdAt: { gte: start, lt: end } }`
 - Avoid complex WHERE clauses that can't utilize indexes
 ### Count vs Data Separation
 - Always separate count queries from data fetching queries
 - Use `Promise.all()` to run count and data queries in parallel
 - Example pattern from [apps/web/modules/api/v2/management/responses/lib/response.ts](mdc:apps/web/modules/api/v2/management/responses/lib/response.ts):
 ```typescript
 const [responses, totalCount] = await Promise.all([
  prisma.response.findMany(query),
  prisma.response.count({ where: whereClause }),
 ]);
 ```
 ### Monitoring & Debugging
 - Monitor AWS RDS Performance Insights for problematic queries
 - Look for queries with OFFSET in count operations - these indicate performance issues
 - Use proper error handling with `DatabaseError` for Prisma exceptions
--- a/.cursor/rules/formbricks-architecture.mdc
+++ b/.cursor/rules/formbricks-architecture.mdc
@@ -0,0 +1,334 @@
 ---
 description: 
 globs: 
 alwaysApply: false
 ---
 # Formbricks Architecture & Patterns
 ## Monorepo Structure
 ### Apps Directory
 - `apps/web/` - Main Next.js web application
 - `packages/` - Shared packages and utilities
 ### Key Directories in Web App
 ```
 apps/web/
 ├── app/                    # Next.js 13+ app directory
 │   ├── (app)/             # Main application routes
 │   ├── (auth)/            # Authentication routes
 │   ├── api/               # API routes
 │   └── share/             # Public sharing routes
 ├── components/            # Shared components
 ├── lib/                   # Utility functions and services
 └── modules/               # Feature-specific modules
 ```
 ## Routing Patterns
 ### App Router Structure
 The application uses Next.js 13+ app router with route groups:
 ```
 (app)/environments/[environmentId]/
 ├── surveys/[surveyId]/
 │   ├── (analysis)/        # Analysis views
 │   │   ├── responses/     # Response management
 │   │   ├── summary/       # Survey summary
 │   │   └── hooks/         # Analysis-specific hooks
 │   ├── edit/              # Survey editing
 │   └── settings/          # Survey settings
 ```
 ### Dynamic Routes
 - `[environmentId]` - Environment-specific routes
 - `[surveyId]` - Survey-specific routes
 - `[sharingKey]` - Public sharing routes
 ## Service Layer Pattern
 ### Service Organization
 Services are organized by domain in `apps/web/lib/`:
 ```typescript
 // Example: Response service
 // apps/web/lib/response/service.ts
 export const getResponseCountAction = async ({
  surveyId,
  filterCriteria,
 }: {
  surveyId: string;
  filterCriteria: any;
 }) => {
  // Service implementation
 };
 ```
 ### Action Pattern
 Server actions follow a consistent pattern:
 ```typescript
 // Action wrapper for service calls
 export const getResponseCountAction = async (params) => {
  try {
    const result = await responseService.getCount(params);
    return { data: result };
  } catch (error) {
    return { error: error.message };
  }
 };
 ```
 ## Context Patterns
 ### Provider Structure
 Context providers follow a consistent pattern:
 ```typescript
 // Provider component
 export const ResponseFilterProvider = ({ children }: { children: React.ReactNode }) => {
  const [selectedFilter, setSelectedFilter] = useState(defaultFilter);
  const value = {
    selectedFilter,
    setSelectedFilter,
    // ... other state and methods
  };
  return (
    <ResponseFilterContext.Provider value={value}>
      {children}
    </ResponseFilterContext.Provider>
  );
 };
 // Hook for consuming context
 export const useResponseFilter = () => {
  const context = useContext(ResponseFilterContext);
  if (!context) {
    throw new Error('useResponseFilter must be used within ResponseFilterProvider');
  }
  return context;
 };
 ```
 ### Context Composition
 Multiple contexts are often composed together:
 ```typescript
 // Layout component with multiple providers
 export default function AnalysisLayout({ children }: { children: React.ReactNode }) {
  return (
    <ResponseFilterProvider>
      <ResponseCountProvider>
        {children}
      </ResponseCountProvider>
    </ResponseFilterProvider>
  );
 }
 ```
 ## Component Patterns
 ### Page Components
 Page components are located in the app directory and follow this pattern:
 ```typescript
 // apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/responses/page.tsx
 export default function ResponsesPage() {
  return (
    <div>
      <ResponsesTable />
      <ResponsesPagination />
    </div>
  );
 }
 ```
 ### Component Organization
 - **Pages** - Route components in app directory
 - **Components** - Reusable UI components
 - **Modules** - Feature-specific components and logic
 ### Shared Components
 Common components are in `apps/web/components/`:
 - UI components (buttons, inputs, modals)
 - Layout components (headers, sidebars)
 - Data display components (tables, charts)
 ## Hook Patterns
 ### Custom Hook Structure
 Custom hooks follow consistent patterns:
 ```typescript
 export const useResponseCount = ({ 
  survey, 
  initialCount 
 }: {
  survey: TSurvey;
  initialCount?: number;
 }) => {
  const [responseCount, setResponseCount] = useState(initialCount ?? 0);
  const [isLoading, setIsLoading] = useState(false);
  // Hook logic...
  return {
    responseCount,
    isLoading,
    refetch,
  };
 };
 ```
 ### Hook Dependencies
 - Use context hooks for shared state
 - Implement proper cleanup with AbortController
 - Optimize dependency arrays to prevent unnecessary re-renders
 ## Data Fetching Patterns
 ### Server Actions
 The app uses Next.js server actions for data fetching:
 ```typescript
 // Server action
 export async function getResponsesAction(params: GetResponsesParams) {
  const responses = await getResponses(params);
  return { data: responses };
 }
 // Client usage
 const { data } = await getResponsesAction(params);
 ```
 ### Error Handling
 Consistent error handling across the application:
 ```typescript
 try {
  const result = await apiCall();
  return { data: result };
 } catch (error) {
  console.error("Operation failed:", error);
  return { error: error.message };
 }
 ```
 ## Type Safety
 ### Type Organization
 Types are organized in packages:
 - `@formbricks/types` - Shared type definitions
 - Local types in component/hook files
 ### Common Types
 ```typescript
 import { TSurvey } from "@formbricks/types/surveys/types";
 import { TResponse } from "@formbricks/types/responses";
 import { TEnvironment } from "@formbricks/types/environment";
 ```
 ## State Management
 ### Local State
 - Use `useState` for component-specific state
 - Use `useReducer` for complex state logic
 - Use refs for mutable values that don't trigger re-renders
 ### Global State
 - React Context for feature-specific shared state
 - URL state for filters and pagination
 - Server state through server actions
 ## Performance Considerations
 ### Code Splitting
 - Dynamic imports for heavy components
 - Route-based code splitting with app router
 - Lazy loading for non-critical features
 ### Caching Strategy
 - Server-side caching for database queries
 - Client-side caching with React Query (where applicable)
 - Static generation for public pages
 ## Testing Strategy
 ### Test Organization
 ```
 component/
 ├── Component.tsx
 ├── Component.test.tsx
 └── hooks/
    ├── useHook.ts
    └── useHook.test.tsx
 ```
 ### Test Patterns
 - Unit tests for utilities and services
 - Integration tests for components with context
 - Hook tests with proper mocking
 ## Build & Deployment
 ### Build Process
 - TypeScript compilation
 - Next.js build optimization
 - Asset optimization and bundling
 ### Environment Configuration
 - Environment-specific configurations
 - Feature flags for gradual rollouts
 - Database connection management
 ## Security Patterns
 ### Authentication
 - Session-based authentication
 - Environment-based access control
 - API route protection
 ### Data Validation
 - Input validation on both client and server
 - Type-safe API contracts
 - Sanitization of user inputs
 ## Monitoring & Observability
 ### Error Tracking
 - Client-side error boundaries
 - Server-side error logging
 - Performance monitoring
 ### Analytics
 - User interaction tracking
 - Performance metrics
 - Database query monitoring
 ## Best Practices Summary
 ### Code Organization
 - ✅ Follow the established directory structure
 - ✅ Use consistent naming conventions
 - ✅ Separate concerns (UI, logic, data)
 - ✅ Keep components focused and small
 ### Performance
 - ✅ Implement proper loading states
 - ✅ Use AbortController for async operations
 - ✅ Optimize database queries
 - ✅ Implement proper caching strategies
 ### Type Safety
 - ✅ Use TypeScript throughout
 - ✅ Define proper interfaces for props
 - ✅ Use type guards for runtime validation
 - ✅ Leverage shared type packages
 ### Testing
 - ✅ Write tests for critical functionality
 - ✅ Mock external dependencies properly
 - ✅ Test error scenarios and edge cases
 - ✅ Maintain good test coverage
--- a/.cursor/rules/performance-optimization.mdc
+++ b/.cursor/rules/performance-optimization.mdc
@@ -0,0 +1,5 @@
 ---
 description:
 globs:
 alwaysApply: false
 ---
--- a/.cursor/rules/react-context-patterns.mdc
+++ b/.cursor/rules/react-context-patterns.mdc
@@ -0,0 +1,52 @@
 ---
 description: 
 globs: 
 alwaysApply: false
 ---
 # React Context & Provider Patterns
 ## Context Provider Best Practices
 ### Provider Implementation
 - Use TypeScript interfaces for provider props with optional `initialCount` for testing
 - Implement proper cleanup in `useEffect` to avoid React hooks warnings
 - Reference: [apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/components/ResponseCountProvider.tsx](mdc:apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/components/ResponseCountProvider.tsx)
 ### Cleanup Pattern for Refs
 ```typescript
 useEffect(() => {
  const currentPendingRequests = pendingRequests.current;
  const currentAbortController = abortController.current;
  return () => {
    if (currentAbortController) {
      currentAbortController.abort();
    }
    currentPendingRequests.clear();
  };
 }, []);
 ```
 ### Testing Context Providers
 - Always wrap components using context in the provider during tests
 - Use `initialCount` prop for predictable test scenarios
 - Mock context dependencies like `useParams`, `useResponseFilter`
 - Example from [apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/SurveyAnalysisCTA.test.tsx](mdc:apps/web/app/(app)/environments/[environmentId]/surveys/[surveyId]/(analysis)/summary/components/SurveyAnalysisCTA.test.tsx):
 ```typescript
 render(
  <ResponseCountProvider survey={dummySurvey} initialCount={5}>
    <ComponentUnderTest />
  </ResponseCountProvider>
 );
 ```
 ### Required Mocks for Context Testing
 - Mock `next/navigation` with `useParams` returning environment and survey IDs
 - Mock response filter context and actions
 - Mock API actions that the provider depends on
 ### Context Hook Usage
 - Create custom hooks like `useResponseCountContext()` for consuming context
 - Provide meaningful error messages when context is used outside provider
 - Use context for shared state that multiple components need to access
--- a/.cursor/rules/react-context-providers.mdc
+++ b/.cursor/rules/react-context-providers.mdc
@@ -0,0 +1,5 @@
 ---
 description:
 globs:
 alwaysApply: false
 ---
--- a/.cursor/rules/testing-patterns.mdc
+++ b/.cursor/rules/testing-patterns.mdc
@@ -0,0 +1,282 @@
 ---
 description: 
 globs: 
 alwaysApply: false
 ---
 # Testing Patterns & Best Practices
 ## Test File Naming & Environment
 ### File Extensions
 - Use `.test.tsx` for React component/hook tests (runs in jsdom environment)
 - Use `.test.ts` for utility/service tests (runs in Node environment)
 - The vitest config uses `environmentMatchGlobs` to automatically set jsdom for `.tsx` files
 ### Test Structure
 ```typescript
 // Import the mocked functions first
 import { useHook } from "@/path/to/hook";
 import { serviceFunction } from "@/path/to/service";
 import { renderHook, waitFor } from "@testing-library/react";
 import { beforeEach, describe, expect, test, vi } from "vitest";
 // Mock dependencies
 vi.mock("@/path/to/hook", () => ({
  useHook: vi.fn(),
 }));
 describe("ComponentName", () => {
  beforeEach(() => {
    vi.clearAllMocks();
    // Setup default mocks
  });
  test("descriptive test name", async () => {
    // Test implementation
  });
 });
 ```
 ## React Hook Testing
 ### Context Mocking
 When testing hooks that use React Context:
 ```typescript
 vi.mocked(useResponseFilter).mockReturnValue({
  selectedFilter: {
    filter: [],
    onlyComplete: false,
  },
  setSelectedFilter: vi.fn(),
  selectedOptions: {
    questionOptions: [],
    questionFilterOptions: [],
  },
  setSelectedOptions: vi.fn(),
  dateRange: { from: new Date(), to: new Date() },
  setDateRange: vi.fn(),
  resetState: vi.fn(),
 });
 ```
 ### Testing Async Hooks
 - Always use `waitFor` for async operations
 - Test both loading and completed states
 - Verify API calls with correct parameters
 ```typescript
 test("fetches data on mount", async () => {
  const { result } = renderHook(() => useHook());
  expect(result.current.isLoading).toBe(true);
  await waitFor(() => {
    expect(result.current.isLoading).toBe(false);
  });
  expect(result.current.data).toBe(expectedData);
  expect(vi.mocked(apiCall)).toHaveBeenCalledWith(expectedParams);
 });
 ```
 ### Testing Hook Dependencies
 To test useEffect dependencies, ensure mocks return different values:
 ```typescript
 // First render
 mockGetFormattedFilters.mockReturnValue(mockFilters);
 // Change dependency and trigger re-render
 const newMockFilters = { ...mockFilters, finished: true };
 mockGetFormattedFilters.mockReturnValue(newMockFilters);
 rerender();
 ```
 ## Performance Testing
 ### Race Condition Testing
 Test AbortController implementation:
 ```typescript
 test("cancels previous request when new request is made", async () => {
  let resolveFirst: (value: any) => void;
  let resolveSecond: (value: any) => void;
  const firstPromise = new Promise((resolve) => {
    resolveFirst = resolve;
  });
  const secondPromise = new Promise((resolve) => {
    resolveSecond = resolve;
  });
  vi.mocked(apiCall)
    .mockReturnValueOnce(firstPromise as any)
    .mockReturnValueOnce(secondPromise as any);
  const { result } = renderHook(() => useHook());
  // Trigger second request
  result.current.refetch();
  // Resolve in order - first should be cancelled
  resolveFirst!({ data: 100 });
  resolveSecond!({ data: 200 });
  await waitFor(() => {
    expect(result.current.isLoading).toBe(false);
  });
  // Should have result from second request
  expect(result.current.data).toBe(200);
 });
 ```
 ### Cleanup Testing
 ```typescript
 test("cleans up on unmount", () => {
  const abortSpy = vi.spyOn(AbortController.prototype, "abort");
  const { unmount } = renderHook(() => useHook());
  unmount();
  expect(abortSpy).toHaveBeenCalled();
  abortSpy.mockRestore();
 });
 ```
 ## Error Handling Testing
 ### API Error Testing
 ```typescript
 test("handles API errors gracefully", async () => {
  const consoleSpy = vi.spyOn(console, "error").mockImplementation(() => {});
  vi.mocked(apiCall).mockRejectedValue(new Error("API Error"));
  const { result } = renderHook(() => useHook());
  await waitFor(() => {
    expect(result.current.isLoading).toBe(false);
  });
  expect(consoleSpy).toHaveBeenCalledWith("Error message:", expect.any(Error));
  expect(result.current.data).toBe(fallbackValue);
  consoleSpy.mockRestore();
 });
 ```
 ### Cancelled Request Testing
 ```typescript
 test("does not update state for cancelled requests", async () => {
  const consoleSpy = vi.spyOn(console, "error").mockImplementation(() => {});
  let rejectFirst: (error: any) => void;
  const firstPromise = new Promise((_, reject) => {
    rejectFirst = reject;
  });
  vi.mocked(apiCall)
    .mockReturnValueOnce(firstPromise as any)
    .mockResolvedValueOnce({ data: 42 });
  const { result } = renderHook(() => useHook());
  result.current.refetch();
  const abortError = new Error("Request cancelled");
  rejectFirst!(abortError);
  await waitFor(() => {
    expect(result.current.isLoading).toBe(false);
  });
  // Should not log error for cancelled request
  expect(consoleSpy).not.toHaveBeenCalled();
  consoleSpy.mockRestore();
 });
 ```
 ## Type Safety in Tests
 ### Mock Type Assertions
 Use type assertions for edge cases:
 ```typescript
 vi.mocked(apiCall).mockResolvedValue({
  data: null as any, // For testing null handling
 });
 vi.mocked(apiCall).mockResolvedValue({
  data: undefined as any, // For testing undefined handling
 });
 ```
 ### Proper Mock Typing
 Ensure mocks match the actual interface:
 ```typescript
 const mockSurvey: TSurvey = {
  id: "survey-123",
  name: "Test Survey",
  // ... other required properties
 } as unknown as TSurvey; // Use when partial mocking is needed
 ```
 ## Common Test Patterns
 ### Testing State Changes
 ```typescript
 test("updates state correctly", async () => {
  const { result } = renderHook(() => useHook());
  // Initial state
  expect(result.current.value).toBe(initialValue);
  // Trigger change
  result.current.updateValue(newValue);
  // Verify change
  expect(result.current.value).toBe(newValue);
 });
 ```
 ### Testing Multiple Scenarios
 ```typescript
 test("handles different modes", async () => {
  // Test regular mode
  vi.mocked(useParams).mockReturnValue({ surveyId: "123" });
  const { rerender } = renderHook(() => useHook());
  await waitFor(() => {
    expect(vi.mocked(regularApi)).toHaveBeenCalled();
  });
  // Test sharing mode
  vi.mocked(useParams).mockReturnValue({ 
    surveyId: "123", 
    sharingKey: "share-123" 
  });
  rerender();
  await waitFor(() => {
    expect(vi.mocked(sharingApi)).toHaveBeenCalled();
  });
 });
 ```
 ## Test Organization
 ### Comprehensive Test Coverage
 For hooks, ensure you test:
 - ✅ Initialization (with/without initial values)
 - ✅ Data fetching (success/error cases)
 - ✅ State updates and refetching
 - ✅ Dependency changes triggering effects
 - ✅ Manual actions (refetch, reset)
 - ✅ Race condition prevention
 - ✅ Cleanup on unmount
 - ✅ Mode switching (if applicable)
 - ✅ Edge cases (null/undefined data)
 ### Test Naming
 Use descriptive test names that explain the scenario:
 - ✅ "initializes with initial count"
 - ✅ "fetches response count on mount for regular survey"
 - ✅ "cancels previous request when new request is made"
 - ❌ "test hook"
 - ❌ "it works"
--- a/.cursor/rules/testing.mdc
+++ b/.cursor/rules/testing.mdc
@@ -0,0 +1,6 @@
 ---
 description: Whenever the user asks to write or update a test file for .tsx or .ts files.
 globs: 
 alwaysApply: false
 ---
 Use the rules in this file when writing tests [copilot-instructions.md](mdc:.github/copilot-instructions.md)
--- a/.devcontainer/Dockerfile
+++ b/.devcontainer/Dockerfile
@@ -1,16 +0,0 @@
 # [Choice] Node.js version (use -bullseye variants on local arm64/Apple Silicon): 18, 16, 14, 18-bullseye, 16-bullseye, 14-bullseye, 18-buster, 16-buster, 14-buster
 ARG VARIANT=20
 FROM mcr.microsoft.com/vscode/devcontainers/javascript-node:0-${VARIANT}
 # [Optional] Uncomment this section to install additional OS packages.
 # RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
 #     && apt-get -y install --no-install-recommends <your-package-list-here>
 # [Optional] Uncomment if you want to install an additional version of node using nvm
 # ARG EXTRA_NODE_VERSION=10
 # RUN su node -c "source /usr/local/share/nvm/nvm.sh && nvm install ${EXTRA_NODE_VERSION}"
 # [Optional] Uncomment if you want to install more global node modules
 # RUN su node -c "npm install -g <your-package-list-here>"
 RUN su node -c "npm install -g pnpm"
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -1,28 +1,6 @@
 // For format details, see https://aka.ms/devcontainer.json. For config options, see the README at:
 // https://github.com/microsoft/vscode-dev-containers/tree/v0.245.2/containers/javascript-node-postgres
 // Update the VARIANT arg in docker-compose.yml to pick a Node.js version
 {
-  // Configure tool-specific properties.
+  "features": {},
-  "customizations": {
+  "image": "mcr.microsoft.com/devcontainers/universal:2",
-    // Configure properties specific to VS Code.
+  "postAttachCommand": "pnpm go",
-    "vscode": {
+  "postCreateCommand": "cp .env.example .env && sed -i '/^ENCRYPTION_KEY=/c\\ENCRYPTION_KEY='$(openssl rand -hex 32) .env && sed -i '/^NEXTAUTH_SECRET=/c\\NEXTAUTH_SECRET='$(openssl rand -hex 32) .env && sed -i '/^CRON_SECRET=/c\\CRON_SECRET='$(openssl rand -hex 32) .env && pnpm install && pnpm db:migrate:dev"
      // Add the IDs of extensions you want installed when the container is created.
      "extensions": ["dbaeumer.vscode-eslint"]
    }
  },
  "dockerComposeFile": "docker-compose.yml",
  // Use 'forwardPorts' to make a list of ports inside the container available locally.
  // This can be used to network with other containers or with the host.
  "forwardPorts": [3000, 5432, 8025],
  "name": "Node.js & PostgreSQL",
  "postAttachCommand": "pnpm dev --filter=@formbricks/web... --filter=@formbricks/demo...",
  // Use 'postCreateCommand' to run commands after the container is created.
  "postCreateCommand": "cp .env.example .env && sed -i '/^ENCRYPTION_KEY=/c\\ENCRYPTION_KEY='$(openssl rand -hex 32) .env && sed -i '/^NEXTAUTH_SECRET=/c\\NEXTAUTH_SECRET='$(openssl rand -hex 32) .env && sed -i '/^CRON_SECRET=/c\\CRON_SECRET='$(openssl rand -hex 32) .env && pnpm install && pnpm db:migrate:dev",
  // Comment out to connect as root instead. More info: https://aka.ms/vscode-remote/containers/non-root.
  "remoteUser": "node",
  "service": "app",
  "workspaceFolder": "/workspace"
 }
--- a/.devcontainer/docker-compose.yml
+++ b/.devcontainer/docker-compose.yml
@@ -1,51 +0,0 @@
 version: "3.8"
 services:
  app:
    build:
      context: .
      dockerfile: Dockerfile
      args:
        # Update 'VARIANT' to pick an LTS version of Node.js: 20, 18, 16, 14.
        # Append -bullseye or -buster to pin to an OS version.
        # Use -bullseye variants on local arm64/Apple Silicon.
        VARIANT: "20"
    volumes:
      - ..:/workspace:cached
    # Overrides default command so things don't shut down after the process ends.
    command: sleep infinity
    # Runs app on the same network as the database container, allows "forwardPorts" in devcontainer.json function.
    network_mode: service:db
    # Uncomment the next line to use a non-root user for all processes.
    # user: node
    # Use "forwardPorts" in **devcontainer.json** to forward an app port locally.
    # (Adding the "ports" property to this file will not forward from a Codespace.)
  db:
    image: pgvector/pgvector:pg17
    restart: unless-stopped
    volumes:
      - postgres-data:/var/lib/postgresql/data
    environment:
      POSTGRES_PASSWORD: postgres
      POSTGRES_USER: postgres
      POSTGRES_DB: formbricks
    # Add "forwardPorts": ["5432"] to **devcontainer.json** to forward PostgreSQL locally.
    # (Adding the "ports" property to this file will not forward from a Codespace.)
  mailhog:
    image: mailhog/mailhog
    network_mode: service:app
    logging:
      driver:
        "none" # disable saving logs
        #    ports:
      #    - 8025:8025 # web ui
      # 1025:1025 # smtp server
 volumes:
  postgres-data: null
--- a/.dockerignore
+++ b/.dockerignore
@@ -1,39 +1,56 @@
 # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
 # dependencies
-# **/node_modules
+**/node_modules
 .pnp
 .pnp.js
 .pnpm-store/
 # testing
-coverage
+**/coverage
 # next.js
-**/.next
+**/.next/
-**/out
+**/out/
 **/build
 # node
-**/dist
+**/dist/
 # misc
-.DS_Store
+**/.DS_Store
 *.pem
 Zone.Identifier
 # debug
 npm-debug.log*
 yarn-debug.log*
 yarn-error.log*
-# turbo
+# local env files
-.turbo
+**/.env
 **/.env.local
 **/.env.development.local
 **/.env.test.local
 **/.env.production.local
 !packages/database/.env
 !apps/web/.env
-# nixos stuff
+# build tools
 .turbo
 **/*vite.config.*.timestamp-*
 # environment specific
 .direnv
-.vscode
+# Playwright
-.github
+/test-results/
-**/.turbo
+/playwright-report/
 /blob-report/
 /playwright/.cache/
-.env
+# project specific
 packages/lib/uploads
 apps/web/public/js
 packages/database/migrations
 branch.json
--- a/.env.example
+++ b/.env.example
@@ -25,6 +25,9 @@ NEXTAUTH_SECRET=
 # You can use: `openssl rand -hex 32` to generate a secure one
 CRON_SECRET=
 # Set the minimum log level(debug, info, warn, error, fatal)
 LOG_LEVEL=info
 ##############
 #  DATABASE  #
 ##############
@@ -39,6 +42,7 @@ DATABASE_URL='postgresql://postgres:postgres@localhost:5432/formbricks?schema=pu
 # See optional configurations below if you want to disable these features.
 MAIL_FROM=noreply@example.com
 MAIL_FROM_NAME=Formbricks
 SMTP_HOST=localhost
 SMTP_PORT=1025
 # Enable SMTP_SECURE_ENABLED for TLS (port 465)
@@ -46,6 +50,9 @@ SMTP_SECURE_ENABLED=0
 SMTP_USER=smtpUser
 SMTP_PASSWORD=smtpPassword
 # If set to 0, the server will not require SMTP_USER and SMTP_PASSWORD(default is 1)
 # SMTP_AUTHENTICATED=
 # If set to 0, the server will accept connections without requiring authorization from the list of supplied CAs (default is 1). 
 # SMTP_REJECT_UNAUTHORIZED_TLS=0
@@ -73,6 +80,9 @@ S3_ENDPOINT_URL=
 # Force path style for S3 compatible storage (0 for disabled, 1 for enabled)
 S3_FORCE_PATH_STYLE=0
 # Set this URL to add a custom domain to your survey links(default is WEBAPP_URL)
 # SURVEY_URL=https://survey.example.com
 #####################
 # Disable Features  #
 #####################
@@ -83,16 +93,15 @@ EMAIL_VERIFICATION_DISABLED=1
 # Password Reset. If you enable Password Reset functionality you have to setup SMTP-Settings, too.
 PASSWORD_RESET_DISABLED=1
 # Signup. Disable the ability for new users to create an account.
 # Note: This variable is only available to the SaaS setup of Formbricks Cloud. Signup is disable by default for self-hosting.
 # SIGNUP_DISABLED=1
 # Email login. Disable the ability for users to login with email.
 # EMAIL_AUTH_DISABLED=1
 # Organization Invite. Disable the ability for invited users to create an account.
 # INVITE_DISABLED=1
 # Docker cron jobs. Disable the supercronic cron jobs in the Docker image (useful for cluster setups).
 # DOCKER_CRON_ENABLED=1
 ##########
 # Other  #
 ##########
@@ -101,6 +110,15 @@ PASSWORD_RESET_DISABLED=1
 PRIVACY_URL=
 TERMS_URL=
 IMPRINT_URL=
 IMPRINT_ADDRESS=
 # Configure Turnstile in signup flow
 # TURNSTILE_SITE_KEY=
 # TURNSTILE_SECRET_KEY=
 # Google reCAPTCHA v3 keys
 RECAPTCHA_SITE_KEY=
 RECAPTCHA_SECRET_KEY=
 # Configure Github Login
 GITHUB_ID=
@@ -122,6 +140,9 @@ AZUREAD_TENANT_ID=
 # OIDC_DISPLAY_NAME=
 # OIDC_SIGNING_ALGORITHM=
 # Configure SAML SSO
 # SAML_DATABASE_URL=postgresql://postgres:postgres@localhost:5432/formbricks-saml
 # Configure this when you want to ship JS & CSS files from a complete URL instead of the current domain
 # ASSET_PREFIX_URL=
@@ -133,11 +154,6 @@ NOTION_OAUTH_CLIENT_SECRET=
 STRIPE_SECRET_KEY=
 STRIPE_WEBHOOK_SECRET=
 # Configure Formbricks usage within Formbricks
 NEXT_PUBLIC_FORMBRICKS_API_HOST=
 NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID=
 NEXT_PUBLIC_FORMBRICKS_ONBOARDING_SURVEY_ID=
 # Oauth credentials for Google sheet integration
 GOOGLE_SHEETS_CLIENT_ID=
 GOOGLE_SHEETS_CLIENT_SECRET=
@@ -156,12 +172,12 @@ ENTERPRISE_LICENSE_KEY=
 # Automatically assign new users to a specific organization and role within that organization
 # Insert an existing organization id or generate a valid CUID for a new one at https://www.getuniqueid.com/cuid (e.g. cjld2cjxh0000qzrmn831i7rn)
 # (Role Management is an Enterprise feature)
-# DEFAULT_ORGANIZATION_ID=
+# AUTH_SSO_DEFAULT_TEAM_ID=
-# DEFAULT_ORGANIZATION_ROLE=admin
+# AUTH_SKIP_INVITE_FOR_SSO=
-# Send new users to customer.io
+# Send new users to Brevo
-# CUSTOMER_IO_API_KEY=
+# BREVO_API_KEY=
-# CUSTOMER_IO_SITE_ID=
+# BREVO_LIST_ID=
 # Ignore Rate Limiting across the Formbricks app
 # RATE_LIMITING_DISABLED=1
@@ -173,16 +189,30 @@ ENTERPRISE_LICENSE_KEY=
 UNSPLASH_ACCESS_KEY=
 # The below is used for Next Caching (uses In-Memory from Next Cache if not provided)
 # You can also add more configuration to Redis using the redis.conf file in the root directory
 # REDIS_URL=redis://localhost:6379
 # The below is used for Rate Limiting (uses In-Memory LRU Cache if not provided) (You can use a service like Webdis for this)
 # REDIS_HTTP_URL:
-# Disable custom cache handler if necessary (e.g. if deployed on Vercel)
+# The below is used for Rate Limiting for management API
-# CUSTOM_CACHE_DISABLED=1
+UNKEY_ROOT_KEY=
-# Azure AI settings
+# INTERCOM_APP_ID=
-# AI_AZURE_RESSOURCE_NAME=
+# INTERCOM_SECRET_KEY=
-# AI_AZURE_API_KEY=
+
-# AI_AZURE_EMBEDDINGS_DEPLOYMENT_ID=
+# Enable Prometheus metrics
-# AI_AZURE_LLM_DEPLOYMENT_ID=
+# PROMETHEUS_ENABLED=
 # PROMETHEUS_EXPORTER_PORT=
 # The SENTRY_DSN is used for error tracking and performance monitoring with Sentry.
 # SENTRY_DSN=
 # The SENTRY_AUTH_TOKEN variable is picked up by the Sentry Build Plugin.
 # It's used automatically by Sentry during the build for authentication when uploading source maps.
 # SENTRY_AUTH_TOKEN=
 # Configure the minimum role for user management from UI(owner, manager, disabled)
 # USER_MANAGEMENT_MINIMUM_ROLE="manager"
 # Configure the maximum age for the session in seconds. Default is 86400 (24 hours)
 # SESSION_MAX_AGE=86400
--- a/.github/ISSUE_TEMPLATE/bug_report.yml
+++ b/.github/ISSUE_TEMPLATE/bug_report.yml
@@ -1,7 +1,7 @@
 name: Bug report
 description: "Found a bug? Please fill out the sections below. \U0001F44D"
-labels:
+type: bug
-  - bug
+labels: ["bug"]
 body:
  - type: textarea
    id: issue-summary
@@ -10,6 +10,13 @@ body:
      description: A summary of the issue. This needs to be a clear detailed-rich summary.
    validations:
      required: true
  - type: textarea
    id: issue-expected-behavior
    attributes:
      label: Expected Behavior
      description: A clear and concise description of what you expected to happen.
    validations:
      required: false
  - type: textarea
    id: other-information
    attributes:
--- a/.github/ISSUE_TEMPLATE/feature_request.yml
+++ b/.github/ISSUE_TEMPLATE/feature_request.yml
@@ -1,7 +1,6 @@
 name: Feature request
 description: "Suggest an idea for this project \U0001F680"
-labels:
+type: feature
  - enhancement
 body:
  - type: textarea
    id: problem-description
@@ -30,4 +29,4 @@ body:
        ### Additional resources 🤓
        - Check out our [Contributor Docs](https://formbricks.com/docs/developer-docs/contributing/get-started)
-        - Anything unclear? [Ask in Discord](https://formbricks.com/discord)
+        - Anything unclear? [Ask in Github Discussions](https://github.com/formbricks/formbricks/discussions)
--- a/.github/ISSUE_TEMPLATE/task.yml
+++ b/.github/ISSUE_TEMPLATE/task.yml
@@ -0,0 +1,11 @@
 name: Task (internal)
 description: "Template for creating a task. Used by the Formbricks Team only \U0001f4e5"
 type: task
 body:
  - type: textarea
    id: task-summary
    attributes:
      label: Task description
      description: A clear detailed-rich description of the task.
    validations:
      required: true
--- a/.github/actions/cache-build-web/action.yml
+++ b/.github/actions/cache-build-web/action.yml
@@ -8,6 +8,14 @@ on:
        required: false
        default: "0"
 inputs:
  turbo_token:
    description: "Turborepo token"
    required: false
  turbo_team:
    description: "Turborepo team"
    required: false
 runs:
  using: "composite"
  steps:
@@ -41,7 +49,7 @@ runs:
      if: steps.cache-build.outputs.cache-hit != 'true'
    - name: Install pnpm
-      uses: pnpm/action-setup@v4
+      uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      if: steps.cache-build.outputs.cache-hit != 'true'
    - name: Install dependencies
@@ -57,14 +65,13 @@ runs:
      run: |
        RANDOM_KEY=$(openssl rand -hex 32)
        sed -i "s/ENCRYPTION_KEY=.*/ENCRYPTION_KEY=${RANDOM_KEY}/" .env
        sed -i "s/CRON_SECRET=.*/CRON_SECRET=${RANDOM_KEY}/" .env
        sed -i "s/NEXTAUTH_SECRET=.*/NEXTAUTH_SECRET=${RANDOM_KEY}/" .env
        sed -i "s/ENTERPRISE_LICENSE_KEY=.*/ENTERPRISE_LICENSE_KEY=${RANDOM_KEY}/" .env
        echo "E2E_TESTING=${{ inputs.e2e_testing_mode }}" >> .env
      shell: bash
    - run: |
        pnpm build --filter=@formbricks/web...
      if: steps.cache-build.outputs.cache-hit != 'true'
      shell: bash
      env:
        TURBO_TOKEN: ${{ inputs.turbo_token }}
        TURBO_TEAM: ${{ inputs.turbo_team }}
--- a/.github/copilot-instructions.md
+++ b/.github/copilot-instructions.md
@@ -0,0 +1,32 @@
 # Testing Instructions
 When generating test files inside the "/app/web" path, follow these rules:
 - You are an experienced senior software engineer
 - Use vitest
 - Ensure 100% code coverage
 - Add as few comments as possible
 - The test file should be located in the same folder as the original file
 - Use the `test` function instead of `it`
 - Follow the same test pattern used for other files in the package where the file is located
 - All imports should be at the top of the file, not inside individual tests
 - For mocking inside "test" blocks use "vi.mocked"
 - If the file is located in the "packages/survey" path, use "@testing-library/preact" instead of "@testing-library/react"
 - Don't mock functions that are already mocked in the "apps/web/vitestSetup.ts" file
 - When using "screen.getByText" check for the tolgee string if it is being used in the file.
 - The types for mocked variables can be found in the "packages/types" path. Be sure that every imported type exists before using it. Don't create types that are not already in the codebase.
 - When mocking data check if the properties added are part of the type of the object being mocked. Only specify known properties, don't use properties that are not part of the type.
 If it's a test for a ".tsx" file, follow these extra instructions:
 - Add this code inside the "describe" block and before any test:
 afterEach(() => {
    cleanup();
 });
 - The "afterEach" function should only have the "cleanup()" line inside it and should be adde to the "vitest" imports.
 - For click events, import userEvent from "@testing-library/user-event"
 - Mock other components that can make the text more complex and but at the same time mocking it wouldn't make the test flaky. It's ok to leave basic and simple components.
 - You don't need to mock @tolgee/react
 - Use "import "@testing-library/jest-dom/vitest";"
--- a/.github/workflows/apply-issue-labels-to-pr.yml
+++ b/.github/workflows/apply-issue-labels-to-pr.yml
@@ -5,6 +5,9 @@ on:
    types:
      - opened
 permissions:
  contents: read
 jobs:
  label_on_pr:
    runs-on: ubuntu-latest
@@ -15,8 +18,13 @@ jobs:
      pull-requests: write
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Apply labels from linked issue to PR
-        uses: actions/github-script@v5
+        uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
        with:
          github-token: ${{ secrets.GITHUB_TOKEN }}
          script: |
--- a/.github/workflows/build-docs.yml
+++ b/.github/workflows/build-docs.yml
@@ -1,28 +0,0 @@
 name: Build Docs
 on:
  workflow_call:
 jobs:
  build:
    name: Build Docs
    runs-on: ubuntu-latest
    timeout-minutes: 30
    steps:
      - uses: actions/checkout@v3
      - uses: ./.github/actions/dangerous-git-checkout
      - name: Setup Node.js 20.x
        uses: actions/setup-node@v3
        with:
          node-version: 20.x
      - name: Install pnpm
        uses: pnpm/action-setup@v4
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
        shell: bash
      - run: |
          pnpm build --filter=@formbricks/docs...
        shell: bash
--- a/.github/workflows/build-web.yml
+++ b/.github/workflows/build-web.yml
@@ -1,6 +1,10 @@
 name: Build Web
 on:
  workflow_call:
 permissions:
  contents: read
 jobs:
  build:
    name: Build Formbricks-web
@@ -8,7 +12,12 @@ jobs:
    timeout-minutes: 30
    steps:
-      - uses: actions/checkout@v3
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - uses: ./.github/actions/dangerous-git-checkout
      - name: Build & Cache Web Binaries
@@ -16,3 +25,5 @@ jobs:
        id: cache-build-web
        with:
          e2e_testing_mode: "0"
          turbo_token: ${{ secrets.TURBO_TOKEN }}
          turbo_team: ${{ vars.TURBO_TEAM }}
--- a/.github/workflows/chromatic.yml
+++ b/.github/workflows/chromatic.yml
@@ -10,20 +10,30 @@ jobs:
  chromatic:
    name: Run Chromatic
    runs-on: ubuntu-latest
    permissions:
      contents: read
      packages: write
      id-token: write
      actions: read
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
        with:
          fetch-depth: 0
-      - uses: actions/setup-node@v4
+      - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
        with:
          node-version: 20
      - name: Install pnpm
-        uses: pnpm/action-setup@v4
+        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
      - name: Run Chromatic
-        uses: chromaui/action@latest
+        uses: chromaui/action@c93e0bc3a63aa176e14a75b61a31847cbfdd341c # latest
        with:
          # ⚠️ Make sure to configure a `CHROMATIC_PROJECT_TOKEN` repository secret
          projectToken: ${{ secrets.CHROMATIC_PROJECT_TOKEN }}
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,92 +0,0 @@
 # For most projects, this workflow file will not need changing; you simply need
 # to commit it to your repository.
 #
 # You may wish to alter this file to override the set of languages analyzed,
 # or to provide custom queries or build logic.
 #
 # ******** NOTE ********
 # We have attempted to detect the languages in your repository. Please check
 # the `language` matrix defined below to confirm you have the correct set of
 # supported CodeQL languages.
 #
 name: "CodeQL Advanced"
 on:
  push:
    branches: [ "main" ]
  pull_request:
    branches: [ "main" ]
  schedule:
    - cron: '17 1 * * 1'
 jobs:
  analyze:
    name: Analyze (${{ matrix.language }})
    # Runner size impacts CodeQL analysis time. To learn more, please see:
    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
    #   - https://gh.io/supported-runners-and-hardware-resources
    #   - https://gh.io/using-larger-runners (GitHub.com only)
    # Consider using larger runners or machines with greater resources for possible analysis time improvements.
    runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
    permissions:
      # required for all workflows
      security-events: write
      # required to fetch internal or private CodeQL packs
      packages: read
      # only required for workflows in private repositories
      actions: read
      contents: read
    strategy:
      fail-fast: false
      matrix:
        include:
        - language: javascript-typescript
          build-mode: none
        # CodeQL supports the following values keywords for 'language': 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift'
        # Use `c-cpp` to analyze code written in C, C++ or both
        # Use 'java-kotlin' to analyze code written in Java, Kotlin or both
        # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
        # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
        # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
        # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
        # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
    steps:
    - name: Checkout repository
      uses: actions/checkout@v4
    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
      uses: github/codeql-action/init@v3
      with:
        languages: ${{ matrix.language }}
        build-mode: ${{ matrix.build-mode }}
        # If you wish to specify custom queries, you can do so here or in a config file.
        # By default, queries listed here will override any specified in a config file.
        # Prefix the list here with "+" to use these queries and those in the config file.
        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
        # queries: security-extended,security-and-quality
    # If the analyze step fails for one of the languages you are analyzing with
    # "We were unable to automatically build your code", modify the matrix above
    # to set the build mode to "manual" for that language. Then modify this step
    # to build your code.
    # ℹ️ Command-line programs to run using the OS shell.
    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
    - if: matrix.build-mode == 'manual'
      shell: bash
      run: |
        echo 'If you are using a "manual" build mode for one or more of the' \
          'languages you are analyzing, replace this with the commands to build' \
          'your code, for example:'
        echo '  make bootstrap'
        echo '  make release'
        exit 1
    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v3
      with:
        category: "/language:${{matrix.language}}"
--- a/.github/workflows/cron-surveyStatusUpdate.yml
+++ b/.github/workflows/cron-surveyStatusUpdate.yml
@@ -1,24 +0,0 @@
 name: Cron - Survey status update
 on:
  workflow_dispatch:
  # "Scheduled workflows run on the latest commit on the default or base branch."
  # — https://docs.github.com/en/actions/learn-github-actions/events-that-trigger-workflows#schedule
  # schedule:
  # Runs “At 00:00.” (see https://crontab.guru)
  # - cron: "0 0 * * *"
 jobs:
  cron-weeklySummary:
    env:
      APP_URL: ${{ secrets.APP_URL }}
      CRON_SECRET: ${{ secrets.CRON_SECRET }}
    runs-on: ubuntu-latest
    steps:
      - name: cURL request
        if: ${{ env.APP_URL && env.CRON_SECRET }}
        run: |
          curl ${{ env.APP_URL }}/api/cron/survey-status \
            -X POST \
            -H 'content-type: application/json' \
            -H 'x-api-key: ${{ env.CRON_SECRET }}' \
            --fail
--- a/.github/workflows/cron-weeklySummary.yml
+++ b/.github/workflows/cron-weeklySummary.yml
@@ -1,24 +0,0 @@
 name: Cron - Weekly summary
 on:
  workflow_dispatch:
  # "Scheduled workflows run on the latest commit on the default or base branch."
  # — https://docs.github.com/en/actions/learn-github-actions/events-that-trigger-workflows#schedule
  schedule:
    # Runs “At 08:00 on Monday.” (see https://crontab.guru)
    - cron: "0 8 * * 1"
 jobs:
  cron-weeklySummary:
    env:
      APP_URL: ${{ secrets.APP_URL }}
      CRON_SECRET: ${{ secrets.CRON_SECRET }}
    runs-on: ubuntu-latest
    steps:
      - name: cURL request
        if: ${{ env.APP_URL && env.CRON_SECRET }}
        run: |
          curl ${{ env.APP_URL }}/api/cron/weekly-summary \
            -X POST \
            -H 'content-type: application/json' \
            -H 'x-api-key: ${{ env.CRON_SECRET }}' \
            --fail
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -0,0 +1,27 @@
 # Dependency Review Action
 #
 # This Action will scan dependency manifest files that change as part of a Pull Request,
 # surfacing known-vulnerable versions of the packages declared or updated in the PR.
 # Once installed, if the workflow run is marked as required,
 # PRs introducing known-vulnerable packages will be blocked from merging.
 #
 # Source repository: https://github.com/actions/dependency-review-action
 name: 'Dependency Review'
 on: [pull_request]
 permissions:
  contents: read
 jobs:
  dependency-review:
    runs-on: ubuntu-latest
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: 'Checkout Repository'
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - name: 'Dependency Review'
        uses: actions/dependency-review-action@38ecb5b593bf0eb19e335c03f97670f792489a8b # v4.7.0
--- a/.github/workflows/deploy-formbricks-cloud.yml
+++ b/.github/workflows/deploy-formbricks-cloud.yml
@@ -0,0 +1,102 @@
 name: Formbricks Cloud Deployment
 on:
  workflow_dispatch:
    inputs:
      VERSION:
        description: 'The version of the Docker image to release, full image tag if image tag is v0.0.0 enter v0.0.0.'
        required: true
        type: string
      REPOSITORY:
        description: 'The repository to use for the Docker image'
        required: false
        type: string
        default: 'ghcr.io/formbricks/formbricks'
      ENVIRONMENT:
        description: 'The environment to deploy to'
        required: true
        type: choice
        options:
          - stage
          - prod
  workflow_call:
    inputs:
      VERSION:
        description: 'The version of the Docker image to release'
        required: true
        type: string
      REPOSITORY:
        description: 'The repository to use for the Docker image'
        required: false
        type: string
        default: 'ghcr.io/formbricks/formbricks'
      ENVIRONMENT:
        description: 'The environment to deploy to'
        required: true
        type: string
 permissions:
  id-token: write
  contents: write
 jobs:
  helmfile-deploy:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v4.2.2
      - name: Tailscale
        uses: tailscale/github-action@v3
        with:
          oauth-client-id: ${{ secrets.TS_OAUTH_CLIENT_ID }}
          oauth-secret: ${{ secrets.TS_OAUTH_SECRET }}
          tags: tag:github
      - name: Configure AWS Credentials
        uses: aws-actions/configure-aws-credentials@f24d7193d98baebaeacc7e2227925dd47cc267f5 # v4.2.0
        with:
          role-to-assume: ${{ secrets.AWS_ASSUME_ROLE_ARN }}
          aws-region: "eu-central-1"
      - name: Setup Cluster Access
        run: |
          aws eks update-kubeconfig --name formbricks-prod-eks --region eu-central-1
        env:
          AWS_REGION: eu-central-1
      - uses: helmfile/helmfile-action@v2
        name: Deploy Formbricks Cloud Prod
        if: inputs.ENVIRONMENT == 'prod'
        env:
          VERSION: ${{ inputs.VERSION }}
          REPOSITORY: ${{ inputs.REPOSITORY }}
          FORMBRICKS_S3_BUCKET: ${{ secrets.FORMBRICKS_S3_BUCKET }}
          FORMBRICKS_INGRESS_CERT_ARN: ${{ secrets.FORMBRICKS_INGRESS_CERT_ARN }}
          FORMBRICKS_ROLE_ARN: ${{ secrets.FORMBRICKS_ROLE_ARN }}
        with:
          helmfile-version: 'v1.0.0'
          helm-plugins: >
            https://github.com/databus23/helm-diff,
            https://github.com/jkroepke/helm-secrets
          helmfile-args: apply -l environment=prod
          helmfile-auto-init: "false"
          helmfile-workdirectory: infra/formbricks-cloud-helm
      - uses: helmfile/helmfile-action@v2
        name: Deploy Formbricks Cloud Stage
        if: inputs.ENVIRONMENT == 'stage'
        env:
          VERSION: ${{ inputs.VERSION }}
          REPOSITORY: ${{ inputs.REPOSITORY }}
          FORMBRICKS_INGRESS_CERT_ARN: ${{ secrets.STAGE_FORMBRICKS_INGRESS_CERT_ARN }}
          FORMBRICKS_ROLE_ARN: ${{ secrets.STAGE_FORMBRICKS_ROLE_ARN }}
        with:
          helmfile-version: 'v1.0.0'
          helm-plugins: >
            https://github.com/databus23/helm-diff,
            https://github.com/jkroepke/helm-secrets
          helmfile-args: apply -l environment=stage
          helmfile-auto-init: "false"
          helmfile-workdirectory: infra/formbricks-cloud-helm
--- a/.github/workflows/docker-build-validation.yml
+++ b/.github/workflows/docker-build-validation.yml
@@ -0,0 +1,167 @@
 name: Docker Build Validation
 on:
  pull_request:
    branches:
      - main
  merge_group:
    branches:
      - main
  workflow_dispatch:
 permissions:
  contents: read
 env:
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ vars.TURBO_TEAM }}
 jobs:
  validate-docker-build:
    name: Validate Docker Build
    runs-on: ubuntu-latest
    # Add PostgreSQL service container
    services:
      postgres:
        image: pgvector/pgvector:pg17
        env:
          POSTGRES_USER: test
          POSTGRES_PASSWORD: test
          POSTGRES_DB: formbricks
        ports:
          - 5432:5432
        # Health check to ensure PostgreSQL is ready before using it
        options: >-
          --health-cmd pg_isready
          --health-interval 10s
          --health-timeout 5s
          --health-retries 5
    steps:
      - name: Checkout Repository
        uses: actions/checkout@v4.2.2
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
      - name: Build Docker Image
        uses: docker/build-push-action@v6
        with:
          context: .
          file: ./apps/web/Dockerfile
          push: false
          load: true
          tags: formbricks-test:${{ github.sha }}
          cache-from: type=gha
          cache-to: type=gha,mode=max
          secrets: |
            database_url=${{ secrets.DUMMY_DATABASE_URL }}
            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
      - name: Verify PostgreSQL Connection
        run: |
          echo "Verifying PostgreSQL connection..."
          # Install PostgreSQL client to test connection
          sudo apt-get update && sudo apt-get install -y postgresql-client
          # Test connection using psql
          PGPASSWORD=test psql -h localhost -U test -d formbricks -c "\dt" || echo "Failed to connect to PostgreSQL"
          # Show network configuration
          echo "Network configuration:"
          ip addr show
          netstat -tulpn | grep 5432 || echo "No process listening on port 5432"
      - name: Test Docker Image with Health Check
        shell: bash
        run: |
          echo "🧪 Testing if the Docker image starts correctly..."
          # Add extra docker run args to support host.docker.internal on Linux
          DOCKER_RUN_ARGS="--add-host=host.docker.internal:host-gateway"
          # Start the container with host.docker.internal pointing to the host
          docker run --name formbricks-test \
            $DOCKER_RUN_ARGS \
            -p 3000:3000 \
            -e DATABASE_URL="postgresql://test:test@host.docker.internal:5432/formbricks" \
            -e ENCRYPTION_KEY="${{ secrets.DUMMY_ENCRYPTION_KEY }}" \
            -d formbricks-test:${{ github.sha }}
          # Give it more time to start up
          echo "Waiting 45 seconds for application to start..."
          sleep 45
          # Check if the container is running
          if [ "$(docker inspect -f '{{.State.Running}}' formbricks-test)" != "true" ]; then
            echo "❌ Container failed to start properly!"
            docker logs formbricks-test
            exit 1
          else
            echo "✅ Container started successfully!"
          fi
          # Try connecting to PostgreSQL from inside the container
          echo "Testing PostgreSQL connection from inside container..."
          docker exec formbricks-test sh -c 'apt-get update && apt-get install -y postgresql-client && PGPASSWORD=test psql -h host.docker.internal -U test -d formbricks -c "\dt" || echo "Failed to connect to PostgreSQL from container"'
          # Try to access the health endpoint
          echo "🏥 Testing /health endpoint..."
          MAX_RETRIES=10
          RETRY_COUNT=0
          HEALTH_CHECK_SUCCESS=false
          set +e  # Disable exit on error to allow for retries
          while [ $RETRY_COUNT -lt $MAX_RETRIES ]; do
            RETRY_COUNT=$((RETRY_COUNT + 1))
            echo "Attempt $RETRY_COUNT of $MAX_RETRIES..."
            # Show container logs before each attempt to help debugging
            if [ $RETRY_COUNT -gt 1 ]; then
              echo "📋 Current container logs:"
              docker logs --tail 20 formbricks-test
            fi
            # Get detailed curl output for debugging
            HTTP_OUTPUT=$(curl -v -s -m 30 http://localhost:3000/health 2>&1)
            CURL_EXIT_CODE=$?
            echo "Curl exit code: $CURL_EXIT_CODE"
            echo "Curl output: $HTTP_OUTPUT"
            if [ $CURL_EXIT_CODE -eq 0 ]; then
              STATUS_CODE=$(echo "$HTTP_OUTPUT" | grep -oP "HTTP/\d(\.\d)? \K\d+")
              echo "Status code detected: $STATUS_CODE"
              if [ "$STATUS_CODE" = "200" ]; then
                echo "✅ Health check successful!"
                HEALTH_CHECK_SUCCESS=true
                break
              else
                echo "❌ Health check returned non-200 status code: $STATUS_CODE"
              fi
            else
              echo "❌ Curl command failed with exit code: $CURL_EXIT_CODE"
            fi
            echo "Waiting 15 seconds before next attempt..."
            sleep 15
          done
          # Show full container logs for debugging
          echo "📋 Full container logs:"
          docker logs formbricks-test
          # Clean up the container
          echo "🧹 Cleaning up..."
          docker rm -f formbricks-test
          # Exit with failure if health check did not succeed
          if [ "$HEALTH_CHECK_SUCCESS" != "true" ]; then
            echo "❌ Health check failed after $MAX_RETRIES attempts"
            exit 1
          fi
          echo "✨ Docker validation complete - all checks passed!"
--- a/.github/workflows/e2e.yml
+++ b/.github/workflows/e2e.yml
@@ -1,9 +1,31 @@
 name: E2E Tests
 on:
  workflow_call:
    secrets:
      AZURE_CLIENT_ID:
        required: false
      AZURE_TENANT_ID:
        required: false
      AZURE_SUBSCRIPTION_ID:
        required: false
      PLAYWRIGHT_SERVICE_URL:
        required: false
      ENTERPRISE_LICENSE_KEY:
        required: true
      # Add other secrets if necessary
  workflow_dispatch:
 env:
  TELEMETRY_DISABLED: 1
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ vars.TURBO_TEAM }}
 permissions:
  id-token: write
  contents: read
  actions: read
 jobs:
  build:
    name: Run E2E Tests
@@ -24,16 +46,23 @@ jobs:
          --health-timeout=5s
          --health-retries=5
    steps:
-      - uses: actions/checkout@v3
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: allow
          allowed-endpoints: |
            ee.formbricks.com:443
      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - uses: ./.github/actions/dangerous-git-checkout
-      - name: Setup Node.js 20.x
+      - name: Setup Node.js 22.x
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2
        with:
-          node-version: 20.x
+          node-version: 22.x
      - name: Install pnpm
-        uses: pnpm/action-setup@v4
+        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
@@ -49,7 +78,7 @@ jobs:
          sed -i "s/ENCRYPTION_KEY=.*/ENCRYPTION_KEY=${RANDOM_KEY}/" .env
          sed -i "s/CRON_SECRET=.*/CRON_SECRET=${RANDOM_KEY}/" .env
          sed -i "s/NEXTAUTH_SECRET=.*/NEXTAUTH_SECRET=${RANDOM_KEY}/" .env
-          sed -i "s/ENTERPRISE_LICENSE_KEY=.*/ENTERPRISE_LICENSE_KEY=${RANDOM_KEY}/" .env
+          sed -i "s/ENTERPRISE_LICENSE_KEY=.*/ENTERPRISE_LICENSE_KEY=${{ secrets.ENTERPRISE_LICENSE_KEY }}/" .env
          echo "" >> .env
          echo "E2E_TESTING=1" >> .env
        shell: bash
@@ -60,11 +89,22 @@ jobs:
      - name: Apply Prisma Migrations
        run: |
-          pnpm prisma migrate deploy
+          # pnpm prisma migrate deploy
          pnpm db:migrate:dev
      - name: Check for Enterprise License
        run: |
          LICENSE_KEY=$(grep '^ENTERPRISE_LICENSE_KEY=' .env | cut -d'=' -f2-)
          if [ -z "$LICENSE_KEY" ]; then
            echo "::error::ENTERPRISE_LICENSE_KEY in .env is empty. Please check your secret configuration."
            exit 1
          fi
          echo "License key length: ${#LICENSE_KEY}"
      - name: Run App
        run: |
-          NODE_ENV=test pnpm start --filter=@formbricks/web &
+          echo "Starting app with enterprise license..."
          NODE_ENV=test pnpm start --filter=@formbricks/web | tee app.log 2>&1 &
          sleep 10  # Optional: gives some buffer for the app to start
          for attempt in {1..10}; do
            if [ $(curl -o /dev/null -s -w "%{http_code}" http://localhost:3000/health) -eq 200 ]; then
@@ -82,13 +122,47 @@ jobs:
      - name: Install Playwright
        run: pnpm exec playwright install --with-deps
-      - name: Run E2E Tests
+      - name: Set Azure Secret Variables
        run: |
          if [[ -n "${{ secrets.AZURE_CLIENT_ID }}" && -n "${{ secrets.AZURE_TENANT_ID }}" && -n "${{ secrets.AZURE_SUBSCRIPTION_ID }}" ]]; then
            echo "AZURE_ENABLED=true" >> $GITHUB_ENV
          else
            echo "AZURE_ENABLED=false" >> $GITHUB_ENV
          fi
      - name: Azure login
        if: env.AZURE_ENABLED == 'true'
        uses: azure/login@a65d910e8af852a8061c627c456678983e180302 # v2.2.0
        with:
          client-id: ${{ secrets.AZURE_CLIENT_ID }}
          tenant-id: ${{ secrets.AZURE_TENANT_ID }}
          subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
      - name: Run E2E Tests (Azure)
        if: env.AZURE_ENABLED == 'true'
        env:
          PLAYWRIGHT_SERVICE_URL: ${{ secrets.PLAYWRIGHT_SERVICE_URL }}
        run: |
          pnpm test-e2e:azure
      - name: Run E2E Tests (Local)
        if: env.AZURE_ENABLED == 'false'
        run: |
          pnpm test:e2e
-      - uses: actions/upload-artifact@v3
+      - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
        if: always()
        with:
          name: playwright-report
          path: playwright-report/
          retention-days: 30
      - uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
        if: failure()
        with:
          name: app-logs
          path: app.log
      - name: Output App Logs
        if: failure()
        run: cat app.log
--- a/.github/workflows/formbricks-release.yml
+++ b/.github/workflows/formbricks-release.yml
@@ -0,0 +1,34 @@
 name: Build, release & deploy Formbricks images
 on:
  workflow_dispatch:
  push:
    tags:
      - "v*"
 jobs:
  docker-build:
    name: Build & release stable docker image
    if: startsWith(github.ref, 'refs/tags/v')
    uses: ./.github/workflows/release-docker-github.yml
    secrets: inherit
  helm-chart-release:
    name: Release Helm Chart
    uses: ./.github/workflows/release-helm-chart.yml
    secrets: inherit
    needs:
      - docker-build
    with:
      VERSION: ${{ needs.docker-build.outputs.VERSION }}
  deploy-formbricks-cloud:
    name: Deploy Helm Chart to Formbricks Cloud
    secrets: inherit
    uses: ./.github/workflows/deploy-formbricks-cloud.yml
    needs:
      - docker-build
      - helm-chart-release
    with:
      VERSION: v${{ needs.docker-build.outputs.VERSION }}
      ENVIRONMENT: "prod"
--- a/.github/workflows/labeler.yml
+++ b/.github/workflows/labeler.yml
@@ -1,19 +0,0 @@
 name: "Pull Request Labeler"
 on:
  - pull_request_target
 concurrency:
  group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
  cancel-in-progress: true
 jobs:
  labeler:
    name: Pull Request Labeler
    permissions:
      contents: read
      pull-requests: write
    runs-on: ubuntu-latest
    steps:
      - uses: actions/labeler@v4
        with:
          repo-token: "${{ secrets.GITHUB_TOKEN }}"
          # https://github.com/actions/labeler/issues/442#issuecomment-1297359481
          sync-labels: ""
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -1,6 +1,10 @@
 name: Lint
 on:
  workflow_call:
 permissions:
  contents: read
 jobs:
  build:
    name: Linters
@@ -8,16 +12,21 @@ jobs:
    timeout-minutes: 15
    steps:
-      - uses: actions/checkout@v3
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
      - uses: ./.github/actions/dangerous-git-checkout
      - name: Setup Node.js 20.x
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
        with:
          node-version: 20.x
      - name: Install pnpm
-        uses: pnpm/action-setup@v4
+        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -1,5 +1,13 @@
 name: PR Update
 # Update permissions to include all necessary ones
 permissions:
  contents: read
  pull-requests: read
  actions: read
  checks: write
  id-token: write
 on:
  pull_request:
    branches:
@@ -12,64 +20,40 @@ concurrency:
  cancel-in-progress: true
 jobs:
  changes:
    name: Detect changes
    runs-on: ubuntu-latest
    permissions:
      pull-requests: read
    outputs:
      has-files-requiring-all-checks: ${{ steps.filter.outputs.has-files-requiring-all-checks }}
    steps:
      - uses: actions/checkout@v3
      - uses: ./.github/actions/dangerous-git-checkout
      - uses: dorny/paths-filter@v2
        id: filter
        with:
          filters: |
            has-files-requiring-all-checks:
              - "!(**.md|.github/CODEOWNERS)"
  test:
    name: Run Unit Tests
    needs: [changes]
    if: ${{ needs.changes.outputs.has-files-requiring-all-checks == 'true' }}
    uses: ./.github/workflows/test.yml
    secrets: inherit
  lint:
    name: Run Linters
    needs: [changes]
    if: ${{ needs.changes.outputs.has-files-requiring-all-checks == 'true' }}
    uses: ./.github/workflows/lint.yml
    secrets: inherit
  build:
    name: Build Formbricks-web
    needs: [changes]
    if: ${{ needs.changes.outputs.has-files-requiring-all-checks == 'true' }}
    uses: ./.github/workflows/build-web.yml
    secrets: inherit
  docs:
    name: Build Docs
    needs: [changes]
    if: ${{ needs.changes.outputs.has-files-requiring-all-checks == 'true' }}
    uses: ./.github/workflows/build-docs.yml
    secrets: inherit
  e2e-test:
    name: Run E2E Tests
    needs: [changes]
    if: ${{ needs.changes.outputs.has-files-requiring-all-checks == 'true' }}
    uses: ./.github/workflows/e2e.yml
    secrets: inherit
  required:
    name: PR Check Summary
-    needs: [lint, test, build, e2e-test, docs]
+    needs: [lint, test, build, e2e-test]
    if: always()
    runs-on: ubuntu-latest
    permissions:
      contents: read
      checks: write
      statuses: write
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0
        with:
          egress-policy: audit
      - name: fail if conditional jobs failed
        if: contains(needs.*.result, 'failure') || contains(needs.*.result, 'skipped') || contains(needs.*.result, 'cancelled')
        run: exit 1
--- a/.github/workflows/release-changesets.yml
+++ b/.github/workflows/release-changesets.yml
@@ -1,46 +0,0 @@
 name: Release Changesets
 on:
  workflow_dispatch:
  #push:
  #  branches:
  #    - main
 concurrency: ${{ github.workflow }}-${{ github.ref }}
 env:
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
 jobs:
  release:
    name: Release
    runs-on: ubuntu-latest
    timeout-minutes: 15
    env:
      TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
      TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
    steps:
      - name: Checkout Repo
        uses: actions/checkout@v2
      - name: Setup Node.js 18.x
        uses: actions/setup-node@v2
        with:
          node-version: 18.x
      - name: Install pnpm
        uses: pnpm/action-setup@v2.2.4
      - name: Install Dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
      - name: Create Release Pull Request or Publish to npm
        id: changesets
        uses: changesets/action@v1
        with:
          # This expects you to have a script called release which does a build for your packages and calls changeset publish
          publish: pnpm release
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
--- a/.github/workflows/release-docker-github-data-migration.yml
+++ b/.github/workflows/release-docker-github-data-migration.yml
@@ -1,62 +0,0 @@
 name: Docker for Data Migrations
 on:
  workflow_dispatch:
  push:
    tags:
      - "v*"
 env:
  REGISTRY: ghcr.io
  IMAGE_NAME: formbricks/data-migrations
  DATABASE_URL: "postgresql://postgres:postgres@postgres:5432/formbricks?schema=public"
 jobs:
  build-and-push:
    runs-on: ubuntu-latest
    permissions:
      contents: read
      packages: write
      id-token: write
    steps:
      - name: Checkout repository
        uses: actions/checkout@v3
      - name: Install cosign
        if: github.event_name != 'pull_request'
        uses: sigstore/cosign-installer@v3.5.0
      - name: Log in to GitHub Container Registry
        uses: docker/login-action@v3
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}
      - name: Extract Docker metadata
        id: meta
        uses: docker/metadata-action@v5
        with:
          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
          tags: |
            type=ref,event=tag
            type=raw,value=${{ github.ref_name }}
            type=raw,value=latest
      - name: Build and push Docker image
        uses: docker/build-push-action@v3
        with:
          context: .
          file: ./packages/database/Dockerfile
          push: true
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
          build-args: |
            DATABASE_URL=${{ env.DATABASE_URL }}
      - name: Sign the published Docker image
        if: ${{ github.event_name != 'pull_request' }}
        run: |
          cosign sign --yes ghcr.io/${{ env.IMAGE_NAME }}:${{ github.ref_name }}
          cosign sign --yes ghcr.io/${{ env.IMAGE_NAME }}:latest
--- a/.github/workflows/release-docker-github-experimental.yml
+++ b/.github/workflows/release-docker-github-experimental.yml
@@ -15,7 +15,9 @@ env:
  IMAGE_NAME: ${{ github.repository }}-experimental
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
-  DATABASE_URL: "postgresql://postgres:postgres@localhost:5432/formbricks?schema=public"
+
 permissions:
  contents: read
 jobs:
  build:
@@ -28,23 +30,28 @@ jobs:
      id-token: write
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - name: Set up Depot CLI
-        uses: depot/setup-action@v1
+        uses: depot/setup-action@b0b1ea4f69e92ebf5dea3f8713a1b0c37b2126a5 # v1.6.0
      # Install the cosign tool except on PR
      # https://github.com/sigstore/cosign-installer
      - name: Install cosign
        if: github.event_name != 'pull_request'
-        uses: sigstore/cosign-installer@v3.5.0
+        uses: sigstore/cosign-installer@3454372f43399081ed03b604cb2d021dabca52bb # v3.8.2
      # Login against a Docker registry except on PR
      # https://github.com/docker/login-action
      - name: Log into registry ${{ env.REGISTRY }}
        if: github.event_name != 'pull_request'
-        uses: docker/login-action@v3 # v3.0.0
+        uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.actor }}
@@ -54,7 +61,7 @@ jobs:
      # https://github.com/docker/metadata-action
      - name: Extract Docker metadata
        id: meta
-        uses: docker/metadata-action@v5 # v5.0.0
+        uses: docker/metadata-action@902fa8ec7d6ecbf8d84d538b9b233a880e428804 # v5.7.0
        with:
          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
@@ -62,7 +69,7 @@ jobs:
      # https://github.com/docker/build-push-action
      - name: Build and push Docker image
        id: build-and-push
-        uses: depot/build-push-action@v1
+        uses: depot/build-push-action@636daae76684e38c301daa0c5eca1c095b24e780 # v1.14.0
        with:
          project: tw0fqmsx3c
          token: ${{ secrets.DEPOT_PROJECT_TOKEN }}
@@ -72,8 +79,9 @@ jobs:
          push: ${{ github.event_name != 'pull_request' }}
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
-          cache-from: type=gha
+          secrets: |
-          cache-to: type=gha,mode=max
+            database_url=${{ secrets.DUMMY_DATABASE_URL }}
            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
      # Sign the resulting Docker image digest except on PRs.
      # This will only write to the public Rekor transparency log when the Docker
--- a/.github/workflows/release-docker-github.yml
+++ b/.github/workflows/release-docker-github.yml
@@ -6,10 +6,11 @@ name: Docker Release to Github
 # documentation.
 on:
-  workflow_dispatch:
+  workflow_call:
-  push:
+    outputs:
-    tags:
+      VERSION:
-      - "v*"
+        description: release version
        value: ${{ jobs.build.outputs.VERSION }}
 env:
  # Use docker.io for Docker Hub if empty
@@ -18,7 +19,6 @@ env:
  IMAGE_NAME: ${{ github.repository }}
  TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
  TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
  DATABASE_URL: "postgresql://postgres:postgres@localhost:5432/formbricks?schema=public"
 jobs:
  build:
@@ -26,28 +26,49 @@ jobs:
    permissions:
      contents: read
      packages: write
      id-token: write
      # This is used to complete the identity challenge
      # with sigstore/fulcio when running outside of PRs.
-      id-token: write
+
    outputs:
      VERSION: ${{ steps.extract_release_tag.outputs.VERSION }}
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - name: Get Release Tag
        id: extract_release_tag
        run: |
          TAG=${{ github.ref }}
          TAG=${TAG#refs/tags/v}
          echo "RELEASE_TAG=$TAG" >> $GITHUB_ENV
          echo "VERSION=$TAG" >> $GITHUB_OUTPUT
      - name: Update package.json version
        run: |
          sed -i "s/\"version\": \"0.0.0\"/\"version\": \"${{ env.RELEASE_TAG }}\"/" ./apps/web/package.json
          cat ./apps/web/package.json | grep version
      - name: Set up Depot CLI
-        uses: depot/setup-action@v1
+        uses: depot/setup-action@b0b1ea4f69e92ebf5dea3f8713a1b0c37b2126a5 # v1.6.0
      # Install the cosign tool except on PR
      # https://github.com/sigstore/cosign-installer
      - name: Install cosign
        if: github.event_name != 'pull_request'
-        uses: sigstore/cosign-installer@v3.5.0
+        uses: sigstore/cosign-installer@3454372f43399081ed03b604cb2d021dabca52bb # v3.8.2
      # Login against a Docker registry except on PR
      # https://github.com/docker/login-action
      - name: Log into registry ${{ env.REGISTRY }}
        if: github.event_name != 'pull_request'
-        uses: docker/login-action@v3 # v3.0.0
+        uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
        with:
          registry: ${{ env.REGISTRY }}
          username: ${{ github.actor }}
@@ -57,7 +78,7 @@ jobs:
      # https://github.com/docker/metadata-action
      - name: Extract Docker metadata
        id: meta
-        uses: docker/metadata-action@v5 # v5.0.0
+        uses: docker/metadata-action@902fa8ec7d6ecbf8d84d538b9b233a880e428804 # v5.7.0
        with:
          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
@@ -65,7 +86,7 @@ jobs:
      # https://github.com/docker/build-push-action
      - name: Build and push Docker image
        id: build-and-push
-        uses: depot/build-push-action@v1
+        uses: depot/build-push-action@636daae76684e38c301daa0c5eca1c095b24e780 # v1.14.0
        with:
          project: tw0fqmsx3c
          token: ${{ secrets.DEPOT_PROJECT_TOKEN }}
@@ -75,8 +96,9 @@ jobs:
          push: ${{ github.event_name != 'pull_request' }}
          tags: ${{ steps.meta.outputs.tags }}
          labels: ${{ steps.meta.outputs.labels }}
-          cache-from: type=gha
+          secrets: |
-          cache-to: type=gha,mode=max
+            database_url=${{ secrets.DUMMY_DATABASE_URL }}
            encryption_key=${{ secrets.DUMMY_ENCRYPTION_KEY }}
      # Sign the resulting Docker image digest except on PRs.
      # This will only write to the public Rekor transparency log when the Docker
--- a/.github/workflows/release-docker.yml
+++ b/.github/workflows/release-docker.yml
@@ -1,44 +0,0 @@
 name: Release on Dockerhub
 on:
  push:
    tags:
      - "v*"
 jobs:
  release-image-on-dockerhub:
    name: Release on Dockerhub
    runs-on: ubuntu-latest
    env:
      TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}
      TURBO_TEAM: ${{ secrets.TURBO_TEAM }}
      DATABASE_URL: "postgresql://postgres:postgres@localhost:5432/formbricks?schema=public"
    steps:
      - name: Checkout Repo
        uses: actions/checkout@v2
      - name: Log in to Docker Hub
        uses: docker/login-action@v2
        with:
          username: ${{ secrets.DOCKER_USERNAME }}
          password: ${{ secrets.DOCKER_PASSWORD }}
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Get Release Tag
        id: extract_release_tag
        run: |
          TAG=${{ github.ref }}
          TAG=${TAG#refs/tags/v}
          echo "RELEASE_TAG=$TAG" >> $GITHUB_ENV
      - name: Build and push Docker image
        uses: docker/build-push-action@v4
        with:
          context: .
          file: ./apps/web/Dockerfile
          push: true
          tags: |
            ${{ secrets.DOCKER_USERNAME }}/formbricks:${{ env.RELEASE_TAG }}
            ${{ secrets.DOCKER_USERNAME }}/formbricks:latest
--- a/.github/workflows/release-helm-chart.yml
+++ b/.github/workflows/release-helm-chart.yml
@@ -0,0 +1,54 @@
 name: Publish Helm Chart
 on:
  workflow_call:
    inputs:
      VERSION:
        description: "The version of the Helm chart to release"
        required: true
        type: string
 permissions:
  contents: read
 jobs:
  publish:
    runs-on: ubuntu-latest
    permissions:
      packages: write
      contents: read
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout repository
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - name: Extract release version
        run: echo "VERSION=${{ github.event.release.tag_name }}" >> $GITHUB_ENV
      - name: Set up Helm
        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5
        with:
          version: latest
      - name: Log in to GitHub Container Registry
        run: echo "${{ secrets.GITHUB_TOKEN }}" | helm registry login ghcr.io --username ${{ github.actor }} --password-stdin
      - name: Install YQ
        uses: dcarbone/install-yq-action@4075b4dca348d74bd83f2bf82d30f25d7c54539b # v1.3.1
      - name: Update Chart.yaml with new version
        run: |
          yq -i ".version = \"${{ inputs.VERSION }}\"" helm-chart/Chart.yaml
          yq -i ".appVersion = \"v${{ inputs.VERSION }}\"" helm-chart/Chart.yaml
      - name: Package Helm chart
        run: |
          helm package ./helm-chart
      - name: Push Helm chart to GitHub Container Registry
        run: |
          helm push formbricks-${{ inputs.VERSION }}.tgz oci://ghcr.io/formbricks/helm-charts
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -0,0 +1,81 @@
 # This workflow uses actions that are not certified by GitHub. They are provided
 # by a third-party and are governed by separate terms of service, privacy
 # policy, and support documentation.
 name: Scorecard supply-chain security
 on:
  # For Branch-Protection check. Only the default branch is supported. See
  # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
  branch_protection_rule:
  # To guarantee Maintained check is occasionally updated. See
  # https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained
  schedule:
    - cron: "17 17 * * 6"
  push:
    branches: ["main"]
  workflow_dispatch:
 # Declare default permissions as read only.
 permissions: read-all
 jobs:
  analysis:
    name: Scorecard analysis
    runs-on: ubuntu-latest
    permissions:
      # Needed to upload the results to code-scanning dashboard.
      security-events: write
      # Needed to publish results and get a badge (see publish_results below).
      id-token: write
      # Add this permission
      actions: write # Required for artifact upload
      # Uncomment the permissions below if installing in a private repository.
      # contents: read
      # actions: read
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: "Checkout code"
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
        with:
          persist-credentials: false
      - name: "Run analysis"
        uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
        with:
          results_file: results.sarif
          results_format: sarif
          # (Optional) "write" PAT token. Uncomment the `repo_token` line below if:
          # - you want to enable the Branch-Protection check on a *public* repository, or
          # - you are installing Scorecard on a *private* repository
          # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action?tab=readme-ov-file#authentication-with-fine-grained-pat-optional.
          # repo_token: ${{ secrets.SCORECARD_TOKEN }}
          # Public repositories:
          #   - Publish results to OpenSSF REST API for easy access by consumers
          #   - Allows the repository to include the Scorecard badge.
          #   - See https://github.com/ossf/scorecard-action#publishing-results.
          # For private repositories:
          #   - `publish_results` will always be set to `false`, regardless
          #     of the value entered here.
          publish_results: true
      # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
      # format to the repository Actions tab.
      - name: "Upload artifact"
        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
        with:
          name: sarif
          path: results.sarif
          retention-days: 5
      # Upload the results to GitHub's code scanning dashboard (optional).
      # Commenting out will disable upload of results to your repo's Code Scanning dashboard
      - name: "Upload to code-scanning"
        uses: github/codeql-action/upload-sarif@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10
        with:
          sarif_file: results.sarif
--- a/.github/workflows/semantic-pull-requests.yml
+++ b/.github/workflows/semantic-pull-requests.yml
@@ -16,7 +16,12 @@ jobs:
    name: PR title
    runs-on: ubuntu-latest
    steps:
-      - uses: amannn/action-semantic-pull-request@v5
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5.5.3
        id: lint_pr_title
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -35,7 +40,7 @@ jobs:
            revert
            ossgg
-      - uses: marocchino/sticky-pull-request-comment@v2
+      - uses: marocchino/sticky-pull-request-comment@67d0dec7b07ed060a405f9b2a64b8ab319fdd7db # v2.9.2
        # When the previous steps fails, the workflow would stop. By adding this
        # condition you can continue the execution with the populated error message.
        if: always() && (steps.lint_pr_title.outputs.error_message != null)
@@ -54,7 +59,7 @@ jobs:
      # Delete a previous comment when the issue has been resolved
      - if: ${{ steps.lint_pr_title.outputs.error_message == null }}
-        uses: marocchino/sticky-pull-request-comment@v2
+        uses: marocchino/sticky-pull-request-comment@67d0dec7b07ed060a405f9b2a64b8ab319fdd7db # v2.9.2
        with:
          header: pr-title-lint-error
          message: |
--- a/.github/workflows/sonarqube.yml
+++ b/.github/workflows/sonarqube.yml
@@ -0,0 +1,54 @@
 name: SonarQube
 on:
  workflow_dispatch:
  push:
    branches:
      - main
  pull_request:
    types: [opened, synchronize, reopened]
  merge_group:
 permissions:
  contents: read
 jobs:
  sonarqube:
    name: SonarQube
    runs-on: ubuntu-latest
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
        with:
          fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis
      - name: Setup Node.js 22.x
        uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
        with:
          node-version: 22.x
      - name: Install pnpm
        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
      - name: create .env
        run: cp .env.example .env
      - name: Generate Random ENCRYPTION_KEY, CRON_SECRET & NEXTAUTH_SECRET and fill in .env
        run: |
          RANDOM_KEY=$(openssl rand -hex 32)
          sed -i "s/ENCRYPTION_KEY=.*/ENCRYPTION_KEY=${RANDOM_KEY}/" .env
          sed -i "s/CRON_SECRET=.*/CRON_SECRET=${RANDOM_KEY}/" .env
          sed -i "s/NEXTAUTH_SECRET=.*/NEXTAUTH_SECRET=${RANDOM_KEY}/" .env
      - name: Run tests with coverage
        run: |
          pnpm test:coverage
      - name: SonarQube Scan
        uses: SonarSource/sonarqube-scan-action@2500896589ef8f7247069a56136f8dc177c27ccf
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
--- a/.github/workflows/terraform-plan-and-apply.yml
+++ b/.github/workflows/terraform-plan-and-apply.yml
@@ -0,0 +1,84 @@
 name: "Terraform"
 on:
  workflow_dispatch:
  # TODO: enable it back when migration is completed.
  push:
    branches:
      - main
    paths:
      - "infra/terraform/**"
  pull_request:
    branches:
      - main
    paths:
      - "infra/terraform/**"
 jobs:
  terraform:
    runs-on: ubuntu-latest
    permissions:
      id-token: write
      contents: read
      pull-requests: write
    env:
      GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - name: Tailscale
        uses: tailscale/github-action@v3
        with:
          oauth-client-id: ${{ secrets.TS_OAUTH_CLIENT_ID }}
          oauth-secret: ${{ secrets.TS_OAUTH_SECRET }}
          tags: tag:github
      - name: Configure AWS Credentials
        uses: aws-actions/configure-aws-credentials@f24d7193d98baebaeacc7e2227925dd47cc267f5 # v4.2.0
        with:
          role-to-assume: ${{ secrets.AWS_ASSUME_ROLE_ARN }}
          aws-region: "eu-central-1"
      - name: Setup Terraform
        uses: hashicorp/setup-terraform@b9cd54a3c349d3f38e8881555d616ced269862dd # v3.1.2
      - name: Terraform Format
        id: fmt
        run: terraform fmt -check -recursive
        continue-on-error: true
        working-directory: infra/terraform
      - name: Terraform Init
        id: init
        run: terraform init
        working-directory: infra/terraform
      - name: Terraform Validate
        id: validate
        run: terraform validate
        working-directory: infra/terraform
      - name: Terraform Plan
        id: plan
        run: terraform plan -out .planfile
        working-directory: infra/terraform
      - name: Post PR comment
        uses: borchero/terraform-plan-comment@434458316f8f24dd073cd2561c436cce41dc8f34 # v2.4.1
        if: always() && github.ref != 'refs/heads/main' && (steps.plan.outcome == 'success' || steps.plan.outcome == 'failure')
        with:
          token: ${{ github.token }}
          planfile: .planfile
          working-directory: "infra/terraform"
      - name: Terraform Apply
        id: apply
        if: github.ref == 'refs/heads/main' && github.event_name == 'push'
        run: terraform apply .planfile
        working-directory: "infra/terraform"
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -1,23 +1,33 @@
 name: Tests
 on:
  workflow_call:
 permissions:
  contents: read
 jobs:
  build:
    name: Unit Tests
    runs-on: ubuntu-latest
    timeout-minutes: 15
    permissions:
      contents: read
    steps:
-      - uses: actions/checkout@v3
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
      - uses: ./.github/actions/dangerous-git-checkout
      - name: Setup Node.js 20.x
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@1a4442cacd436585916779262731d5b162bc6ec7 # v3.8.2
        with:
          node-version: 20.x
      - name: Install pnpm
-        uses: pnpm/action-setup@v4
+        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0
      - name: Install dependencies
        run: pnpm install --config.platform=linux --config.architecture=x64
--- a/.github/workflows/tolgee-missing-key-check.yml
+++ b/.github/workflows/tolgee-missing-key-check.yml
@@ -0,0 +1,51 @@
 name: Check Missing Translations
 permissions:
  contents: read
 on:
  workflow_dispatch:
  pull_request_target:
    types: [opened, synchronize, reopened]
 jobs:
  check-missing-translations:
    runs-on: ubuntu-latest
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout repository
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
        with:
          ref: ${{ github.event.pull_request.base.ref }}
      - name: Checkout PR
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
        with:
          ref: ${{ github.event.pull_request.head.sha }}
      - name: Setup Node.js
        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
        with:
          node-version: 18
      - name: Install Tolgee CLI
        run: npm install -g @tolgee/cli
      - name: Compare Tolgee Keys
        id: compare
        run: |
          tolgee compare --api-key ${{ secrets.TOLGEE_API_KEY }} > compare_output.txt
          cat compare_output.txt
      - name: Check for Missing Translations
        run: |
          if grep -q "new key found" compare_output.txt; then
            echo "New keys found that may require translations:"
            exit 1
          else
            echo "No new keys found."
          fi
--- a/.github/workflows/tolgee.yml
+++ b/.github/workflows/tolgee.yml
@@ -0,0 +1,87 @@
 name: Tolgee Tagging on PR Merge
 permissions:
  contents: read
 on:
  pull_request_target:
    types: [closed]
    branches:
      - main
 jobs:
  tag-production-keys:
    name: Tag Production Keys
    runs-on: ubuntu-latest
    if: github.event.pull_request.merged == true
    steps:
      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - name: Checkout repository
        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
        with:
          fetch-depth: 0 # This ensures we get the full git history
      - name: Get source branch name
        id: branch-name
        run: |
          RAW_BRANCH="${{ github.head_ref }}"
          SOURCE_BRANCH=$(echo "$RAW_BRANCH" | sed 's/[^a-zA-Z0-9._\/-]//g')
          # Safely add to environment variables using GitHub's recommended method
          # This prevents environment variable injection attacks
          echo "SOURCE_BRANCH<<EOF" >> $GITHUB_ENV
          echo "$SOURCE_BRANCH" >> $GITHUB_ENV
          echo "EOF" >> $GITHUB_ENV
          echo "Detected source branch: $SOURCE_BRANCH"
      - name: Setup Node.js
        uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
        with:
          node-version: 18 # Ensure compatibility with your project
      - name: Install Tolgee CLI
        run: npm install -g @tolgee/cli
      - name: Tag Production Keys
        run: |
          npx tolgee tag \
            --api-key ${{ secrets.TOLGEE_API_KEY }} \
            --filter-extracted \
            --filter-tag "draft:${SOURCE_BRANCH}" \
            --tag production \
            --untag "draft:${SOURCE_BRANCH}"
      - name: Tag unused production keys as Deprecated
        run: |
          npx tolgee tag \
            --api-key ${{ secrets.TOLGEE_API_KEY }} \
            --filter-not-extracted --filter-tag production \
            --tag deprecated --untag production
      - name: Tag unused draft:current-branch keys as Deprecated
        run: |
          npx tolgee tag \
            --api-key ${{ secrets.TOLGEE_API_KEY }} \
            --filter-not-extracted --filter-tag "draft:${SOURCE_BRANCH}" \
            --tag deprecated --untag "draft:${SOURCE_BRANCH}"
      - name: Sync with backup
        run: |
          npx tolgee sync \
            --api-key ${{ secrets.TOLGEE_API_KEY }} \
            --backup ./tolgee-backup \
            --continue-on-warning \
            --yes
      - name: Upload backup as artifact
        uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
        with:
          name: tolgee-backup-${{ github.sha }}
          path: ./tolgee-backup
          retention-days: 90
--- a/.github/workflows/welcome-new-contributors.yml
+++ b/.github/workflows/welcome-new-contributors.yml
@@ -3,7 +3,7 @@ name: "Welcome new contributors"
 on:
  issues:
    types: opened
-  pull_request:
+  pull_request_target:
    types: opened
 permissions:
@@ -17,11 +17,16 @@ jobs:
    timeout-minutes: 10
    if: github.event.action == 'opened'
    steps:
-      - uses: actions/first-interaction@v1
+      - name: Harden the runner (Audit all outbound calls)
        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
        with:
          egress-policy: audit
      - uses: actions/first-interaction@3c71ce730280171fd1cfb57c00c774f8998586f7 # v1
        with:
          repo-token: ${{ secrets.GITHUB_TOKEN }}
          pr-message: |-
            Thank you so much for making your first Pull Request and taking the time to improve Formbricks! 🚀🙏❤️
-            Feel free to join the conversation at [Discord](https://formbricks.com/discord)
+            Feel free to join the conversation on [Github Discussions](https://github.com/formbricks/formbricks/discussions) if you need any help or have any questions. 😊
          issue-message: |
            Thank you for opening your first issue! 🙏❤️ One of our team members will review it and get back to you as soon as it possible. 😊
--- a/.gitignore
+++ b/.gitignore
@@ -1,25 +1,26 @@
 # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
 # dependencies
-node_modules
+**/node_modules
 .pnp
 .pnp.js
 .pnpm-store/
 # testing
-coverage
+**/coverage
 # next.js
-.next/
+**/.next/
-out/
+**/out/
-build
+**/build
 # node
-dist/
+**/dist/
 # misc
-.DS_Store
+**/.DS_Store
 *.pem
 Zone.Identifier
 # debug
 npm-debug.log*
@@ -27,36 +28,48 @@ yarn-debug.log*
 yarn-error.log*
 # local env files
-.env
+**/.env
-.env.local
+**/.env.local
-.env.development.local
+**/.env.development.local
-.env.test.local
+**/.env.test.local
-.env.production.local
+**/.env.production.local
 !packages/database/.env
 !apps/web/.env
-# Prisma generated files
+# build tools
 packages/database/zod
 # turbo
 .turbo
 **/*vite.config.*.timestamp-*
-# nixos stuff
+# environment specific
 .direnv
 Zone.Identifier
 # Playwright
 /test-results/
 /playwright-report/
 /blob-report/
 /playwright/.cache/
-# uploads
+# project specific
 packages/lib/uploads
 # Vite Timestamps
 *vite.config.*.timestamp-*
 # js compiled assets
 apps/web/public/js
 packages/database/migrations
 branch.json
 .vercel
 # Terraform
 infra/terraform/.terraform/
 **/.terraform.lock.hcl
 **/terraform.tfstate
 **/terraform.tfstate.*
 **/crash.log
 **/override.tf
 **/override.tf.json
 **/*.tfvars
 **/*.tfvars.json
 **/.terraformrc
 **/terraform.rc
 # IntelliJ IDEA
 /.idea/
 /*.iml
 packages/ios/FormbricksSDK/FormbricksSDK.xcodeproj/project.xcworkspace/xcuserdata
--- a/.gitpod.Dockerfile
+++ b/.gitpod.Dockerfile
@@ -1,6 +0,0 @@
 FROM gitpod/workspace-full
 # Install custom tools, runtime, etc.
 RUN brew install yq 
 RUN pnpm install turbo --global
--- a/.gitpod.yml
+++ b/.gitpod.yml
@@ -1,74 +0,0 @@
 tasks:
  - name: demo
    init: |
      gp sync-await init-install && 
      bash .gitpod/setup-demo.bash
    command: |
      cd apps/demo && 
      cp .env.example .env &&
      sed -i -r "s#^(NEXT_PUBLIC_FORMBRICKS_API_HOST=).*#\1 $(gp url 3000)#" .env &&
      gp sync-await init && 
      turbo --filter "@formbricks/demo" go
  - name: Init Formbricks
    init: |
      cp .env.example .env &&
      bash .gitpod/init.bash && 
      turbo --filter "@formbricks/js" build && 
      gp sync-done init-install
    command: |
      gp sync-done init && 
      gp tasks list &&
      gp ports await 3002 && gp ports await 3000 && gp open apps/demo/.env && gp preview $(gp url 3002) --external
  - name: web
    init: |
      gp sync-await init-install && 
      bash .gitpod/setup-web.bash &&
      turbo --filter "@formbricks/database" db:down
    command: |
      gp sync-await init &&
      cp .env.example .env &&
      sed -i -r "s#^(WEBAPP_URL=).*#\1 $(gp url 3000)#" .env &&
      RANDOM_ENCRYPTION_KEY=$(openssl rand -hex 32)
      sed -i 's/^ENCRYPTION_KEY=.*/ENCRYPTION_KEY='"$RANDOM_ENCRYPTION_KEY"'/' .env
      turbo --filter "@formbricks/web" go
 image:
  file: .gitpod.Dockerfile
 ports:
  - port: 3000
    visibility: public
    onOpen: open-browser
  - port: 3001
    visibility: public
    onOpen: ignore
  - port: 3002
    visibility: public
    onOpen: ignore
  - port: 5432
    visibility: public
    onOpen: ignore
  - port: 1025
    visibility: public
    onOpen: ignore
  - port: 8025
    visibility: public
    onOpen: open-browser
 github:
  prebuilds:
    master: true
    pullRequests: true
    addComment: true
 vscode:
  extensions:
    - "ban.spellright"
    - "bradlc.vscode-tailwindcss"
    - "DavidAnson.vscode-markdownlint"
    - "dbaeumer.vscode-eslint"
    - "esbenp.prettier-vscode"
    - "Prisma.prisma"
    - "yzhang.markdown-all-in-one"
--- a/.gitpod/init.bash
+++ b/.gitpod/init.bash
@@ -1,6 +1,6 @@
 #!/bin/bash
-images=($(yq eval '.services.*.image' packages/database/docker-compose.yml))
+images=($(yq eval '.services.*.image' docker-compose.dev.yml))
 pull_image() {
  docker pull "$1"
--- a/.husky/post-checkout
+++ b/.husky/post-checkout
@@ -0,0 +1,2 @@
 echo "{\"branchName\": \"$(git rev-parse --abbrev-ref HEAD)\"}" > ./branch.json
 prettier --write ./branch.json
--- a/.husky/pre-commit
+++ b/.husky/pre-commit
@@ -1 +1,21 @@
-pnpm lint-staged
+#!/bin/sh
 . "$(dirname "$0")/_/husky.sh"
 # Load environment variables from .env files
 if [ -f .env ]; then
  set -a
  . .env
  set +a
 fi
 pnpm lint-staged
 # Run tolgee-pull if branch.json exists and NEXT_PUBLIC_TOLGEE_API_KEY is not set
 if [ -f branch.json ]; then
  if [ -z "$NEXT_PUBLIC_TOLGEE_API_KEY" ]; then
    echo "Skipping tolgee-pull: NEXT_PUBLIC_TOLGEE_API_KEY is not set"
  else
    pnpm run tolgee-pull
    git add apps/web/locales
  fi
 fi
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-20.18.0
+22.1.0
--- a/.tolgeerc.json
+++ b/.tolgeerc.json
@@ -0,0 +1,39 @@
 {
  "$schema": "https://docs.tolgee.io/cli-schema.json",
  "format": "JSON_TOLGEE",
  "patterns": ["./apps/web/**/*.ts?(x)"],
  "projectId": 10304,
  "pull": {
    "path": "./apps/web/locales"
  },
  "push": {
    "files": [
      {
        "language": "en-US",
        "path": "./apps/web/locales/en-US.json"
      },
      {
        "language": "de-DE",
        "path": "./apps/web/locales/de-DE.json"
      },
      {
        "language": "fr-FR",
        "path": "./apps/web/locales/fr-FR.json"
      },
      {
        "language": "pt-BR",
        "path": "./apps/web/locales/pt-BR.json"
      },
      {
        "language": "zh-Hant-TW",
        "path": "./apps/web/locales/zh-Hant-TW.json"
      },
      {
        "language": "pt-PT",
        "path": "./apps/web/locales/pt-PT.json"
      }
    ],
    "forceMode": "OVERRIDE"
  },
  "strictNamespace": false
 }
--- a/.vscode/extensions.json
+++ b/.vscode/extensions.json
@@ -6,6 +6,8 @@
    "dbaeumer.vscode-eslint", // eslint plugin
    "esbenp.prettier-vscode", // prettier plugin
    "Prisma.prisma", // syntax|format|completion for prisma
-    "yzhang.markdown-all-in-one" // nicer markdown support
+    "yzhang.markdown-all-in-one", // nicer markdown support
    "vitest.explorer", // run tests directly from the code window
    "sonarsource.sonarlint-vscode" // sonarqube linter for vscode
  ]
 }
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,4 +1,10 @@
 {
  "javascript.updateImportsOnFileMove.enabled": "always",
  "sonarlint.connectedMode.project": {
    "connectionId": "formbricks",
    "projectKey": "formbricks_formbricks"
  },
  "typescript.preferences.importModuleSpecifier": "non-relative",
-  "typescript.tsdk": "node_modules/typescript/lib"
+  "typescript.tsdk": "node_modules/typescript/lib",
  "typescript.updateImportsOnFileMove.enabled": "always"
 }
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -18,13 +18,13 @@ Ready to dive into the code and make a real impact? Here's your path:
 1. **Read our Best Practices**: [It takes 5 minutes](https://formbricks.com/docs/developer-docs/contributing/get-started) but will help you save hours 🤓
-1. **Fork the Repository:** Fork our repository or use [Gitpod](https://formbricks.com/docs/developer-docs/contributing/gitpod) or use [Codespaces](https://formbricks.com/docs/developer-docs/contributing/codespaces)
+1. **Fork the Repository:** Fork our repository or use [Gitpod](https://gitpod.io) or use [Github Codespaces](https://github.com/features/codespaces) to get started instantly.
 1. **Tweak and Transform:** Work your coding magic and apply your changes.
 1. **Pull Request Act:** If you're ready to go, craft a new pull request closely following our PR template 🙏
-Would you prefer a chat before you dive into a lot of work? Our [Discord server](https://formbricks.com/discord) is your harbor. Share your thoughts, and we'll meet you there with open arms. We're responsive and friendly, promise!
+Would you prefer a chat before you dive into a lot of work? [Github Discussions](https://github.com/formbricks/formbricks/discussions) is your harbor. Share your thoughts, and we'll meet you there with open arms. We're responsive and friendly, promise!
 ## 🚀 Aspiring Features
--- a/4
+++ b/4
@@ -2,8 +2,8 @@ Copyright (c) 2024 Formbricks GmbH
 Portions of this software are licensed as follows:
- All content that resides under the "packages/ee/", "apps/web/modules/ee" & "apps/web/app/(ee)" directories of this repository, if these directories exist, is licensed under the license defined in "packages/ee/LICENSE".
+- All content that resides under the "apps/web/modules/ee" directory of this repository, if these directories exist, is licensed under the license defined in "apps/web/modules/ee/LICENSE".
- All content that resides under the "packages/js/", "packages/react-native/" and "packages/api/" directories of this repository, if that directories exist, is licensed under the "MIT" license as defined in the "LICENSE" files of these packages.
+- All content that resides under the "packages/js/", "packages/android/", "packages/ios/" and "packages/api/" directories of this repository, if that directories exist, is licensed under the "MIT" license as defined in the "LICENSE" files of these packages.
 - All third party components incorporated into the Formbricks Software are licensed under the original license provided by the owner of the applicable component.
 - Content outside of the above mentioned directories or restrictions above is available under the "AGPLv3" license as defined below.
--- a/README.md
+++ b/README.md
@@ -13,14 +13,14 @@
 <h3 align="center">Formbricks</h3>
 <p align="center">
-Harvest user-insights, build irresistible experiences.
+The Open Source Qualtrics Alternative
 <br />
-<a href="https://formbricks.com/">Website</a> | <a href="https://formbricks.com/discord">Join Discord community</a>
+<a href="https://formbricks.com/">Website</a>
 </p>
 </p>
 <p align="center">
-<a href="https://github.com/formbricks/formbricks/blob/main/LICENSE"><img src="https://img.shields.io/badge/License-AGPL-purple" alt="License"></a> <a href="https://formbricks.com/discord"><img src="https://img.shields.io/discord/979077669410979880?label=Discord&logo=discord&logoColor=%23fff" alt="Join Formbricks Discord"></a> <a href="https://github.com/formbricks/formbricks/stargazers"><img src="https://img.shields.io/github/stars/formbricks/formbricks?logo=github" alt="Github Stars"></a>
+<a href="https://github.com/formbricks/formbricks/blob/main/LICENSE"><img src="https://img.shields.io/badge/License-AGPL-purple" alt="License"></a> <a href="https://github.com/formbricks/formbricks/stargazers"><img src="https://img.shields.io/github/stars/formbricks/formbricks?logo=github" alt="Github Stars"></a>
 <a href="https://news.ycombinator.com/item?id=32303986"><img src="https://img.shields.io/badge/Hacker%20News-122-%23FF6600" alt="Hacker News"></a>
 <a href="[https://www.producthunt.com/products/formbricks](https://www.producthunt.com/posts/formbricks)"><img src="https://img.shields.io/badge/Product%20Hunt-455-orange?logo=producthunt&logoColor=%23fff" alt="Product Hunt"></a>
 <a href="https://github.blog/2023-04-12-github-accelerator-our-first-cohort-and-whats-next/"><img src="https://img.shields.io/badge/2023-blue?logo=github&label=Github%20Accelerator" alt="Github Accelerator"></a>
@@ -228,14 +228,14 @@ The Formbricks core application is licensed under the [AGPLv3 Open Source Licens
 ### The Enterprise Edition
-Additional to the AGPL licensed Formbricks core, this repository contains code licensed under an Enterprise license. The [code](https://github.com/formbricks/formbricks/tree/main/packages/ee) and [license](https://github.com/formbricks/formbricks/blob/main/packages/ee/LICENSE) for the enterprise functionality can be found in the `/packages/ee` folder of this repository. This additional functionality is not part of the AGPLv3 licensed Formbricks core and is designed to meet the needs of larger teams and enterprises. This advanced functionality is already included in the Docker images, but you need an [Enterprise License Key](https://formbricks.com/docs/self-hosting/enterprise) to unlock it.
+Additional to the AGPL licensed Formbricks core, this repository contains code licensed under an Enterprise license. The [code](https://github.com/formbricks/formbricks/tree/main/apps/web/modules/ee) and [license](https://github.com/formbricks/formbricks/blob/main/apps/web/modules/ee/LICENSE) for the enterprise functionality can be found in the `/apps/web/modules/ee` folder of this repository. This additional functionality is not part of the AGPLv3 licensed Formbricks core and is designed to meet the needs of larger teams and enterprises. This advanced functionality is already included in the Docker images, but you need an [Enterprise License Key](https://formbricks.com/docs/self-hosting/enterprise) to unlock it.
 ### White-Labeling Formbricks and Other Licensing Needs
-We currently do not offer Formbricks white-labeled. Any other needs? [Send us an email](mailto:hola@formbricks.com).
+We currently do not offer Formbricks white-labeled. That means that we don't sell a license which let's other companies resell Formbricks to third parties under their name nor take parts (like the survey editor) out of Formbricks to add to their own software products. Any other needs? [Send us an email](mailto:hola@formbricks.com).
 ### Why charge for Enterprise Features?
-The Enterprise Edition and White-Label Licenses allow us to fund the development of Formbricks sustainably. It guarantees that the open-source surveying infrastructure we're building will be around for decades to come.
+The Enterprise Edition allows us to fund the development of Formbricks sustainably. It guarantees that the free and open-source surveying infrastructure we're building will be around for decades to come.
 <p align="right"><a href="#top">🔼 Back to top</a></p>
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -1,7 +1,7 @@
 # Security Policy of Formbricks
 This is Formbrick's security policy. Please reach out to us
-on our Discord or, if privately, via <security@formbricks.com>
+on Github or, if privately, via <security@formbricks.com>
 ## Introduction
@@ -40,7 +40,7 @@ We invite you to report if:
 Avoid reporting if:
- Assistance is needed to optimize Formbricks for security – please engage on our Discord for this.
+- Assistance is needed to optimize Formbricks for security – please engage on Github Discussions for this.
 - Help is required for applying security-related updates.
 - The concern is not related to security.
--- a/apps/demo-react-native/.env.example
+++ b/apps/demo-react-native/.env.example
@@ -1,2 +0,0 @@
 EXPO_PUBLIC_API_HOST=http://192.168.178.20:3000
 EXPO_PUBLIC_FORMBRICKS_ENVIRONMENT_ID=clzr04nkd000bcdl110j0ijyq
--- a/apps/demo-react-native/.eslintrc.js
+++ b/apps/demo-react-native/.eslintrc.js
@@ -1,7 +0,0 @@
 module.exports = {
  extends: ["@formbricks/eslint-config/react.js"],
  parserOptions: {
    project: "tsconfig.json",
    tsconfigRootDir: __dirname,
  },
 };
--- a/apps/demo-react-native/.gitignore
+++ b/apps/demo-react-native/.gitignore
@@ -1,35 +0,0 @@
 # Learn more https://docs.github.com/en/get-started/getting-started-with-git/ignoring-files
 # dependencies
 node_modules/
 # Expo
 .expo/
 dist/
 web-build/
 # Native
 *.orig.*
 *.jks
 *.p8
 *.p12
 *.key
 *.mobileprovision
 # Metro
 .metro-health-check*
 # debug
 npm-debug.*
 yarn-debug.*
 yarn-error.*
 # macOS
 .DS_Store
 *.pem
 # local env files
 .env*.local
 # typescript
 *.tsbuildinfo
--- a/apps/demo-react-native/.npmrc
+++ b/apps/demo-react-native/.npmrc
--- a/apps/demo-react-native/app.json
+++ b/apps/demo-react-native/app.json
@@ -1,34 +0,0 @@
 {
  "expo": {
    "android": {
      "adaptiveIcon": {
        "backgroundColor": "#ffffff",
        "foregroundImage": "./assets/adaptive-icon.png"
      }
    },
    "assetBundlePatterns": ["**/*"],
    "icon": "./assets/icon.png",
    "ios": {
      "infoPlist": {
        "NSCameraUsageDescription": "Take pictures for certain activities.",
        "NSMicrophoneUsageDescription": "Need microphone access for recording videos.",
        "NSPhotoLibraryUsageDescription": "Select pictures for certain activities."
      },
      "supportsTablet": true
    },
    "jsEngine": "hermes",
    "name": "react-native-demo",
    "orientation": "portrait",
    "slug": "react-native-demo",
    "splash": {
      "backgroundColor": "#ffffff",
      "image": "./assets/splash.png",
      "resizeMode": "contain"
    },
    "userInterfaceStyle": "light",
    "version": "1.0.0",
    "web": {
      "favicon": "./assets/favicon.png"
    }
  }
 }
--- a/apps/demo-react-native/assets/adaptive-icon.png
+++ b/apps/demo-react-native/assets/adaptive-icon.png
--- a/apps/demo-react-native/assets/favicon.png
+++ b/apps/demo-react-native/assets/favicon.png
--- a/apps/demo-react-native/assets/icon.png
+++ b/apps/demo-react-native/assets/icon.png
--- a/apps/demo-react-native/assets/splash.png
+++ b/apps/demo-react-native/assets/splash.png
--- a/apps/demo-react-native/babel.config.js
+++ b/apps/demo-react-native/babel.config.js
@@ -1,6 +0,0 @@
 module.exports = function babel(api) {
  api.cache(true);
  return {
    presets: ["babel-preset-expo"],
  };
 };
--- a/apps/demo-react-native/index.js
+++ b/apps/demo-react-native/index.js
@@ -1,7 +0,0 @@
 import { registerRootComponent } from "expo";
 import { LogBox } from "react-native";
 import App from "./src/app";
 registerRootComponent(App);
 LogBox.ignoreAllLogs();
--- a/apps/demo-react-native/metro.config.js
+++ b/apps/demo-react-native/metro.config.js
@@ -1,21 +0,0 @@
 // Learn more https://docs.expo.io/guides/customizing-metro
 const path = require("node:path");
 const { getDefaultConfig } = require("expo/metro-config");
 // Find the workspace root, this can be replaced with `find-yarn-workspace-root`
 const workspaceRoot = path.resolve(__dirname, "../..");
 const projectRoot = __dirname;
 const config = getDefaultConfig(projectRoot);
 // 1. Watch all files within the monorepo
 config.watchFolders = [workspaceRoot];
 // 2. Let Metro know where to resolve packages, and in what order
 config.resolver.nodeModulesPaths = [
  path.resolve(projectRoot, "node_modules"),
  path.resolve(workspaceRoot, "node_modules"),
 ];
 // 3. Force Metro to resolve (sub)dependencies only from the `nodeModulesPaths`
 config.resolver.disableHierarchicalLookup = true;
 module.exports = config;
--- a/apps/demo-react-native/package.json
+++ b/apps/demo-react-native/package.json
@@ -1,28 +0,0 @@
 {
  "name": "@formbricks/demo-react-native",
  "version": "1.0.0",
  "main": "./index.js",
  "scripts": {
    "dev": "expo start",
    "android": "expo start --android",
    "ios": "expo start --ios",
    "web": "expo start --web",
    "eject": "expo eject",
    "clean": "rimraf .turbo node_modules .expo"
  },
  "dependencies": {
    "@formbricks/js": "workspace:*",
    "@formbricks/react-native": "workspace:*",
    "expo": "51.0.26",
    "expo-status-bar": "1.12.1",
    "react": "18.3.1",
    "react-native": "0.74.4",
    "react-native-webview": "13.8.6"
  },
  "devDependencies": {
    "@babel/core": "7.25.2",
    "@types/react": "18.3.11",
    "typescript": "5.3.3"
  },
  "private": true
 }
--- a/apps/demo-react-native/src/app.tsx
+++ b/apps/demo-react-native/src/app.tsx
@@ -1,52 +0,0 @@
 import { StatusBar } from "expo-status-bar";
 import { Button, LogBox, StyleSheet, Text, View } from "react-native";
 import Formbricks, { track } from "@formbricks/react-native";
 LogBox.ignoreAllLogs();
 export default function App(): JSX.Element {
  if (!process.env.EXPO_PUBLIC_FORMBRICKS_ENVIRONMENT_ID) {
    throw new Error("EXPO_PUBLIC_FORMBRICKS_ENVIRONMENT_ID is required");
  }
  if (!process.env.EXPO_PUBLIC_API_HOST) {
    throw new Error("EXPO_PUBLIC_API_HOST is required");
  }
  const config = {
    environmentId: process.env.EXPO_PUBLIC_FORMBRICKS_ENVIRONMENT_ID,
    apiHost: process.env.EXPO_PUBLIC_API_HOST,
    userId: "random-user-id",
    attributes: {
      language: "en",
      testAttr: "attr-test",
    },
  };
  return (
    <View style={styles.container}>
      <Text>Formbricks React Native SDK Demo</Text>
      <Button
        title="Trigger Code Action"
        onPress={() => {
          track("code").catch((error: unknown) => {
            // eslint-disable-next-line no-console -- logging is allowed in demo apps
            console.error("Error tracking event:", error);
          });
        }}
      />
      <StatusBar style="auto" />
      <Formbricks initConfig={config} />
    </View>
  );
 }
 const styles = StyleSheet.create({
  container: {
    flex: 1,
    backgroundColor: "#fff",
    alignItems: "center",
    justifyContent: "center",
  },
 });
--- a/apps/demo-react-native/tsconfig.json
+++ b/apps/demo-react-native/tsconfig.json
@@ -1,6 +0,0 @@
 {
  "compilerOptions": {
    "strict": true
  },
  "extends": "expo/tsconfig.base"
 }
--- a/apps/demo/.env.example
+++ b/apps/demo/.env.example
@@ -1,5 +0,0 @@
 NEXT_PUBLIC_FORMBRICKS_API_HOST=http://localhost:3000
 NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID=YOUR_ENVIRONMENT_ID
 # Copy the environment ID for the URL of your Formbricks App and
 # paste it above to connect your Formbricks App with the Demo App.
--- a/apps/demo/.eslintrc.js
+++ b/apps/demo/.eslintrc.js
@@ -1,3 +0,0 @@
 module.exports = {
  extends: ["@formbricks/eslint-config/legacy-next.js"],
 };
--- a/apps/demo/.gitignore
+++ b/apps/demo/.gitignore
@@ -1,36 +0,0 @@
 # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
 # dependencies
 /node_modules
 /.pnp
 .pnp.js
 # testing
 /coverage
 # next.js
 /.next/
 /out/
 # production
 /build
 # misc
 .DS_Store
 *.pem
 # debug
 npm-debug.log*
 yarn-debug.log*
 yarn-error.log*
 .pnpm-debug.log*
 # local env files
 .env*.local
 # vercel
 .vercel
 # typescript
 *.tsbuildinfo
 next-env.d.ts
--- a/apps/demo/components/LayoutApp.tsx
+++ b/apps/demo/components/LayoutApp.tsx
@@ -1,13 +0,0 @@
 import { Sidebar } from "./Sidebar";
 export const LayoutApp = ({ children }: { children: React.ReactNode }) => {
  return (
    <div className="min-h-full">
      {/* Static sidebar for desktop */}
      <div className="hidden lg:fixed lg:inset-y-0 lg:flex lg:w-64 lg:flex-col">
        <Sidebar />
      </div>
      <div className="flex flex-1 flex-col lg:pl-64">{children}</div>
    </div>
  );
 };
--- a/apps/demo/components/Sidebar.tsx
+++ b/apps/demo/components/Sidebar.tsx
@@ -1,65 +0,0 @@
 import {
  ClockIcon,
  CogIcon,
  CreditCardIcon,
  FileBarChartIcon,
  HelpCircleIcon,
  HomeIcon,
  ScaleIcon,
  ShieldCheckIcon,
  UsersIcon,
 } from "lucide-react";
 import { classNames } from "../lib/utils";
 const navigation = [
  { name: "Home", href: "#", icon: HomeIcon, current: true },
  { name: "History", href: "#", icon: ClockIcon, current: false },
  { name: "Balances", href: "#", icon: ScaleIcon, current: false },
  { name: "Cards", href: "#", icon: CreditCardIcon, current: false },
  { name: "Recipients", href: "#", icon: UsersIcon, current: false },
  { name: "Reports", href: "#", icon: FileBarChartIcon, current: false },
 ];
 const secondaryNavigation = [
  { name: "Settings", href: "#", icon: CogIcon },
  { name: "Help", href: "#", icon: HelpCircleIcon },
  { name: "Privacy", href: "#", icon: ShieldCheckIcon },
 ];
 export const Sidebar = () => {
  return (
    <div className="flex flex-grow flex-col overflow-y-auto bg-cyan-700 pb-4 pt-5">
      <nav
        className="mt-5 flex flex-1 flex-col divide-y divide-cyan-800 overflow-y-auto"
        aria-label="Sidebar">
        <div className="space-y-1 px-2">
          {navigation.map((item) => (
            <a
              key={item.name}
              href={item.href}
              className={classNames(
                item.current ? "bg-cyan-800 text-white" : "text-cyan-100 hover:bg-cyan-600 hover:text-white",
                "group flex items-center rounded-md px-2 py-2 text-sm font-medium leading-6"
              )}
              aria-current={item.current ? "page" : undefined}>
              <item.icon className="mr-4 h-6 w-6 flex-shrink-0 text-cyan-200" aria-hidden="true" />
              {item.name}
            </a>
          ))}
        </div>
        <div className="mt-6 pt-6">
          <div className="space-y-1 px-2">
            {secondaryNavigation.map((item) => (
              <a
                key={item.name}
                href={item.href}
                className="group flex items-center rounded-md px-2 py-2 text-sm font-medium leading-6 text-cyan-100 hover:bg-cyan-600 hover:text-white">
                <item.icon className="mr-4 h-6 w-6 text-cyan-200" aria-hidden="true" />
                {item.name}
              </a>
            ))}
          </div>
        </div>
      </nav>
    </div>
  );
 };
--- a/apps/demo/lib/utils.ts
+++ b/apps/demo/lib/utils.ts
@@ -1,3 +0,0 @@
 export const classNames = (...classes: any) => {
  return classes.filter(Boolean).join(" ");
 };
--- a/apps/demo/next-env.d.ts
+++ b/apps/demo/next-env.d.ts
@@ -1,5 +0,0 @@
 /// <reference types="next" />
 /// <reference types="next/image-types/global" />
 // NOTE: This file should not be edited
 // see https://nextjs.org/docs/pages/building-your-application/configuring/typescript for more information.
--- a/apps/demo/next.config.mjs
+++ b/apps/demo/next.config.mjs
@@ -1,17 +0,0 @@
 /** @type {import('next').NextConfig} */
 const nextConfig = {
  images: {
    remotePatterns: [
      {
        protocol: "https",
        hostname: "tailwindui.com",
      },
      {
        protocol: "https",
        hostname: "images.unsplash.com",
      },
    ],
  },
 };
 export default nextConfig;
--- a/apps/demo/package.json
+++ b/apps/demo/package.json
@@ -1,25 +0,0 @@
 {
  "name": "@formbricks/demo",
  "version": "0.1.0",
  "private": true,
  "scripts": {
    "clean": "rimraf .turbo node_modules .next",
    "dev": "next dev -p 3002 --turbo",
    "go": "next dev -p 3002 --turbo",
    "build": "next build",
    "start": "next start",
    "lint": "next lint"
  },
  "dependencies": {
    "@formbricks/js": "workspace:*",
    "@formbricks/ui": "workspace:*",
    "lucide-react": "0.452.0",
    "next": "14.2.15",
    "react": "18.3.1",
    "react-dom": "18.3.1"
  },
  "devDependencies": {
    "@formbricks/eslint-config": "workspace:*",
    "@formbricks/config-typescript": "workspace:*"
  }
 }
--- a/apps/demo/pages/_app.tsx
+++ b/apps/demo/pages/_app.tsx
@@ -1,22 +0,0 @@
 import type { AppProps } from "next/app";
 import Head from "next/head";
 import "@formbricks/ui/globals.css";
 const App = ({ Component, pageProps }: AppProps) => {
  return (
    <>
      <Head>
        <title>Demo App</title>
      </Head>
      {(!process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID ||
        !process.env.NEXT_PUBLIC_FORMBRICKS_API_HOST) && (
        <div className="w-full bg-red-500 p-3 text-center text-sm text-white">
          Please set Formbricks environment variables in apps/demo/.env
        </div>
      )}
      <Component {...pageProps} />
    </>
  );
 };
 export default App;
--- a/apps/demo/pages/_document.tsx
+++ b/apps/demo/pages/_document.tsx
@@ -1,15 +0,0 @@
 import { Head, Html, Main, NextScript } from "next/document";
 const Document = () => {
  return (
    <Html lang="en" className="h-full bg-slate-50">
      <Head />
      <body className="h-full">
        <Main />
        <NextScript />
      </body>
    </Html>
  );
 };
 export default Document;
--- a/apps/demo/pages/index.tsx
+++ b/apps/demo/pages/index.tsx
@@ -1,239 +0,0 @@
 import Image from "next/image";
 import { useRouter } from "next/router";
 import { useEffect, useState } from "react";
 import formbricks from "@formbricks/js";
 import fbsetup from "../public/fb-setup.png";
 declare const window: any;
 const AppPage = ({}) => {
  const [darkMode, setDarkMode] = useState(false);
  const router = useRouter();
  useEffect(() => {
    if (darkMode) {
      document.body.classList.add("dark");
    } else {
      document.body.classList.remove("dark");
    }
  }, [darkMode]);
  useEffect(() => {
    // enable Formbricks debug mode by adding formbricksDebug=true GET parameter
    const addFormbricksDebugParam = () => {
      const urlParams = new URLSearchParams(window.location.search);
      if (!urlParams.has("formbricksDebug")) {
        urlParams.set("formbricksDebug", "true");
        const newUrl = `${window.location.pathname}?${urlParams.toString()}`;
        window.history.replaceState({}, "", newUrl);
      }
    };
    addFormbricksDebugParam();
    if (process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID && process.env.NEXT_PUBLIC_FORMBRICKS_API_HOST) {
      const userId = "THIS-IS-A-VERY-LONG-USER-ID-FOR-TESTING";
      const userInitAttributes = {
        language: "de",
        "Init Attribute 1": "eight",
        "Init Attribute 2": "two",
      };
      formbricks.init({
        environmentId: process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID,
        apiHost: process.env.NEXT_PUBLIC_FORMBRICKS_API_HOST,
        userId,
        attributes: userInitAttributes,
      });
    }
    // Connect next.js router to Formbricks
    if (process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID && process.env.NEXT_PUBLIC_FORMBRICKS_API_HOST) {
      const handleRouteChange = formbricks?.registerRouteChange;
      router.events.on("routeChangeComplete", handleRouteChange);
      return () => {
        router.events.off("routeChangeComplete", handleRouteChange);
      };
    }
  }, []);
  return (
    <div className="min-h-screen bg-white px-12 py-6 dark:bg-slate-800">
      <div className="flex flex-col justify-between md:flex-row">
        <div className="flex flex-col items-center gap-2 sm:flex-row">
          <div>
            <h1 className="text-2xl font-bold text-slate-900 dark:text-white">
              Formbricks In-product Survey Demo App
            </h1>
            <p className="text-slate-700 dark:text-slate-300">
              This app helps you test your app surveys. You can create and test user actions, create and
              update user attributes, etc.
            </p>
          </div>
        </div>
        <button
          className="mt-2 rounded-lg bg-slate-200 px-6 py-1 dark:bg-slate-700 dark:text-slate-100"
          onClick={() => setDarkMode(!darkMode)}>
          {darkMode ? "Toggle Light Mode" : "Toggle Dark Mode"}
        </button>
      </div>
      <div className="my-4 grid grid-cols-1 gap-6 md:grid-cols-2">
        <div>
          <div className="rounded-lg border border-slate-300 bg-slate-100 p-6 dark:border-slate-600 dark:bg-slate-900">
            <h3 className="text-lg font-semibold text-slate-900 dark:text-white">1. Setup .env</h3>
            <p className="text-slate-700 dark:text-slate-300">
              Copy the environment ID of your Formbricks app to the env variable in /apps/demo/.env
            </p>
            <Image src={fbsetup} alt="fb setup" className="mt-4 rounded" priority />
            <div className="mt-4 flex-col items-start text-sm text-slate-700 sm:flex sm:items-center sm:text-base dark:text-slate-300">
              <p className="mb-1 sm:mb-0 sm:mr-2">You&apos;re connected with env:</p>
              <div className="flex items-center">
                <strong className="w-32 truncate sm:w-auto">
                  {process.env.NEXT_PUBLIC_FORMBRICKS_ENVIRONMENT_ID}
                </strong>
                <span className="relative ml-2 flex h-3 w-3">
                  <span className="absolute inline-flex h-full w-full animate-ping rounded-full bg-green-500 opacity-75"></span>
                  <span className="relative inline-flex h-3 w-3 rounded-full bg-green-500"></span>
                </span>
              </div>
            </div>
          </div>
          <div className="mt-4 rounded-lg border border-slate-300 bg-slate-100 p-6 dark:border-slate-600 dark:bg-slate-900">
            <h3 className="text-lg font-semibold text-slate-900 dark:text-white">2. Widget Logs</h3>
            <p className="text-slate-700 dark:text-slate-300">
              Look at the logs to understand how the widget works.{" "}
              <strong className="dark:text-white">Open your browser console</strong> to see the logs.
            </p>
            {/* <div className="max-h-[40vh] overflow-y-auto py-4">
              <LogsContainer />
            </div> */}
          </div>
        </div>
        <div className="md:grid md:grid-cols-3">
          <div className="col-span-3 self-start rounded-lg border border-slate-300 bg-slate-100 p-6 dark:border-slate-600 dark:bg-slate-900">
            <h3 className="text-lg font-semibold dark:text-white">
              Reset person / pull data from Formbricks app
            </h3>
            <p className="text-slate-700 dark:text-slate-300">
              On formbricks.reset() the local state will <strong>be deleted</strong> and formbricks gets{" "}
              <strong>reinitialized</strong>.
            </p>
            <button
              className="my-4 rounded-lg bg-slate-500 px-6 py-3 text-white hover:bg-slate-700 dark:bg-slate-700 dark:hover:bg-slate-600"
              onClick={() => {
                formbricks.reset();
              }}>
              Reset
            </button>
            <p className="text-xs text-slate-700 dark:text-slate-300">
              If you made a change in Formbricks app and it does not seem to work, hit &apos;Reset&apos; and
              try again.
            </p>
          </div>
          <div className="p-6">
            <div>
              <button className="mb-4 rounded-lg bg-slate-800 px-6 py-3 text-white hover:bg-slate-700 dark:bg-slate-700 dark:hover:bg-slate-600">
                No-Code Action
              </button>
            </div>
            <div>
              <p className="text-xs text-slate-700 dark:text-slate-300">
                This button sends a{" "}
                <a
                  href="https://formbricks.com/docs/actions/no-code"
                  className="underline dark:text-blue-500"
                  target="_blank">
                  No Code Action
                </a>{" "}
                as long as you created it beforehand in the Formbricks App.{" "}
                <a
                  href="https://formbricks.com/docs/actions/no-code"
                  target="_blank"
                  className="underline dark:text-blue-500">
                  Here are instructions on how to do it.
                </a>
              </p>
            </div>
          </div>
          <div className="p-6">
            <div>
              <button
                onClick={() => {
                  formbricks.setAttribute("Plan", "Free");
                }}
                className="mb-4 rounded-lg bg-slate-800 px-6 py-3 text-white hover:bg-slate-700 dark:bg-slate-700 dark:hover:bg-slate-600">
                Set Plan to &apos;Free&apos;
              </button>
            </div>
            <div>
              <p className="text-xs text-slate-700 dark:text-slate-300">
                This button sets the{" "}
                <a
                  href="https://formbricks.com/docs/attributes/custom-attributes"
                  target="_blank"
                  className="underline dark:text-blue-500">
                  attribute
                </a>{" "}
                &apos;Plan&apos; to &apos;Free&apos;. If the attribute does not exist, it creates it.
              </p>
            </div>
          </div>
          <div className="p-6">
            <div>
              <button
                onClick={() => {
                  formbricks.setAttribute("Plan", "Paid");
                }}
                className="mb-4 rounded-lg bg-slate-800 px-6 py-3 text-white hover:bg-slate-700 dark:bg-slate-700 dark:hover:bg-slate-600">
                Set Plan to &apos;Paid&apos;
              </button>
            </div>
            <div>
              <p className="text-xs text-slate-700 dark:text-slate-300">
                This button sets the{" "}
                <a
                  href="https://formbricks.com/docs/attributes/custom-attributes"
                  target="_blank"
                  className="underline dark:text-blue-500">
                  attribute
                </a>{" "}
                &apos;Plan&apos; to &apos;Paid&apos;. If the attribute does not exist, it creates it.
              </p>
            </div>
          </div>
          <div className="p-6">
            <div>
              <button
                onClick={() => {
                  formbricks.setEmail("test@web.com");
                }}
                className="mb-4 rounded-lg bg-slate-800 px-6 py-3 text-white hover:bg-slate-700 dark:bg-slate-700 dark:hover:bg-slate-600">
                Set Email
              </button>
            </div>
            <div>
              <p className="text-xs text-slate-700 dark:text-slate-300">
                This button sets the{" "}
                <a
                  href="https://formbricks.com/docs/attributes/identify-users"
                  target="_blank"
                  className="underline dark:text-blue-500">
                  user email
                </a>{" "}
                &apos;test@web.com&apos;
              </p>
            </div>
          </div>
        </div>
      </div>
    </div>
  );
 };
 export default AppPage;
--- a/apps/demo/postcss.config.js
+++ b/apps/demo/postcss.config.js
@@ -1,6 +0,0 @@
 module.exports = {
  plugins: {
    tailwindcss: {},
    autoprefixer: {},
  },
 };
--- a/apps/demo/public/favicon.ico
+++ b/apps/demo/public/favicon.ico
--- a/apps/demo/public/fb-setup.png
+++ b/apps/demo/public/fb-setup.png
--- a/apps/demo/public/next.svg
+++ b/apps/demo/public/next.svg
@@ -1 +0,0 @@
 <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 394 80"><path fill="#000" d="M262 0h68.5v12.7h-27.2v66.6h-13.6V12.7H262V0ZM149 0v12.7H94v20.4h44.3v12.6H94v21h55v12.6H80.5V0h68.7zm34.3 0h-17.8l63.8 79.4h17.9l-32-39.7 32-39.6h-17.9l-23 28.6-23-28.6zm18.3 56.7-9-11-27.1 33.7h17.8l18.3-22.7z"/><path fill="#000" d="M81 79.3 17 0H0v79.3h13.6V17l50.2 62.3H81Zm252.6-.4c-1 0-1.8-.4-2.5-1s-1.1-1.6-1.1-2.6.3-1.8 1-2.5 1.6-1 2.6-1 1.8.3 2.5 1a3.4 3.4 0 0 1 .6 4.3 3.7 3.7 0 0 1-3 1.8zm23.2-33.5h6v23.3c0 2.1-.4 4-1.3 5.5a9.1 9.1 0 0 1-3.8 3.5c-1.6.8-3.5 1.3-5.7 1.3-2 0-3.7-.4-5.3-1s-2.8-1.8-3.7-3.2c-.9-1.3-1.4-3-1.4-5h6c.1.8.3 1.6.7 2.2s1 1.2 1.6 1.5c.7.4 1.5.5 2.4.5 1 0 1.8-.2 2.4-.6a4 4 0 0 0 1.6-1.8c.3-.8.5-1.8.5-3V45.5zm30.9 9.1a4.4 4.4 0 0 0-2-3.3 7.5 7.5 0 0 0-4.3-1.1c-1.3 0-2.4.2-3.3.5-.9.4-1.6 1-2 1.6a3.5 3.5 0 0 0-.3 4c.3.5.7.9 1.3 1.2l1.8 1 2 .5 3.2.8c1.3.3 2.5.7 3.7 1.2a13 13 0 0 1 3.2 1.8 8.1 8.1 0 0 1 3 6.5c0 2-.5 3.7-1.5 5.1a10 10 0 0 1-4.4 3.5c-1.8.8-4.1 1.2-6.8 1.2-2.6 0-4.9-.4-6.8-1.2-2-.8-3.4-2-4.5-3.5a10 10 0 0 1-1.7-5.6h6a5 5 0 0 0 3.5 4.6c1 .4 2.2.6 3.4.6 1.3 0 2.5-.2 3.5-.6 1-.4 1.8-1 2.4-1.7a4 4 0 0 0 .8-2.4c0-.9-.2-1.6-.7-2.2a11 11 0 0 0-2.1-1.4l-3.2-1-3.8-1c-2.8-.7-5-1.7-6.6-3.2a7.2 7.2 0 0 1-2.4-5.7 8 8 0 0 1 1.7-5 10 10 0 0 1 4.3-3.5c2-.8 4-1.2 6.4-1.2 2.3 0 4.4.4 6.2 1.2 1.8.8 3.2 2 4.3 3.4 1 1.4 1.5 3 1.5 5h-5.8z"/></svg>
--- a/apps/demo/public/thirteen.svg
+++ b/apps/demo/public/thirteen.svg
@@ -1 +0,0 @@
 <svg xmlns="http://www.w3.org/2000/svg" width="40" height="31" fill="none"><g opacity=".9"><path fill="url(#a)" d="M13 .4v29.3H7V6.3h-.2L0 10.5V5L7.2.4H13Z"/><path fill="url(#b)" d="M28.8 30.1c-2.2 0-4-.3-5.7-1-1.7-.8-3-1.8-4-3.1a7.7 7.7 0 0 1-1.4-4.6h6.2c0 .8.3 1.4.7 2 .4.5 1 .9 1.7 1.2.7.3 1.6.4 2.5.4 1 0 1.7-.2 2.5-.5.7-.3 1.3-.8 1.7-1.4.4-.6.6-1.2.6-2s-.2-1.5-.7-2.1c-.4-.6-1-1-1.8-1.4-.8-.4-1.8-.5-2.9-.5h-2.7v-4.6h2.7a6 6 0 0 0 2.5-.5 4 4 0 0 0 1.7-1.3c.4-.6.6-1.3.6-2a3.5 3.5 0 0 0-2-3.3 5.6 5.6 0 0 0-4.5 0 4 4 0 0 0-1.7 1.2c-.4.6-.6 1.2-.6 2h-6c0-1.7.6-3.2 1.5-4.5 1-1.3 2.2-2.3 3.8-3C25 .4 26.8 0 28.8 0s3.8.4 5.3 1.1c1.5.7 2.7 1.7 3.6 3a7.2 7.2 0 0 1 1.2 4.2c0 1.6-.5 3-1.5 4a7 7 0 0 1-4 2.2v.2c2.2.3 3.8 1 5 2.2a6.4 6.4 0 0 1 1.6 4.6c0 1.7-.5 3.1-1.4 4.4a9.7 9.7 0 0 1-4 3.1c-1.7.8-3.7 1.1-5.8 1.1Z"/></g><defs><linearGradient id="a" x1="20" x2="20" y1="0" y2="30.1" gradientUnits="userSpaceOnUse"><stop/><stop offset="1" stop-color="#3D3D3D"/></linearGradient><linearGradient id="b" x1="20" x2="20" y1="0" y2="30.1" gradientUnits="userSpaceOnUse"><stop/><stop offset="1" stop-color="#3D3D3D"/></linearGradient></defs></svg>
--- a/apps/demo/public/vercel.svg
+++ b/apps/demo/public/vercel.svg
@@ -1 +0,0 @@
 <svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 283 64"><path fill="black" d="M141 16c-11 0-19 7-19 18s9 18 20 18c7 0 13-3 16-7l-7-5c-2 3-6 4-9 4-5 0-9-3-10-7h28v-3c0-11-8-18-19-18zm-9 15c1-4 4-7 9-7s8 3 9 7h-18zm117-15c-11 0-19 7-19 18s9 18 20 18c6 0 12-3 16-7l-8-5c-2 3-5 4-8 4-5 0-9-3-11-7h28l1-3c0-11-8-18-19-18zm-10 15c2-4 5-7 10-7s8 3 9 7h-19zm-39 3c0 6 4 10 10 10 4 0 7-2 9-5l8 5c-3 5-9 8-17 8-11 0-19-7-19-18s8-18 19-18c8 0 14 3 17 8l-8 5c-2-3-5-5-9-5-6 0-10 4-10 10zm83-29v46h-9V5h9zM37 0l37 64H0L37 0zm92 5-27 48L74 5h10l18 30 17-30h10zm59 12v10l-3-1c-6 0-10 4-10 10v15h-9V17h9v9c0-5 6-9 13-9z"/></svg>
--- a/apps/demo/tailwind.config.js
+++ b/apps/demo/tailwind.config.js
@@ -1,13 +0,0 @@
 /** @type {import('tailwindcss').Config} */
 module.exports = {
  content: [
    "./app/**/*.{js,ts,jsx,tsx}",
    "./pages/**/*.{js,ts,jsx,tsx}",
    "./components/**/*.{js,ts,jsx,tsx}",
  ],
  darkMode: "class",
  theme: {
    extend: {},
  },
  plugins: [require("@tailwindcss/forms")],
 };
--- a/apps/demo/tsconfig.json
+++ b/apps/demo/tsconfig.json
@@ -1,5 +0,0 @@
 {
  "exclude": ["node_modules"],
  "extends": "@formbricks/config-typescript/nextjs.json",
  "include": ["next-env.d.ts", "**/*.ts", "**/*.tsx"]
 }
--- a/apps/docs/.env.example
+++ b/apps/docs/.env.example
@@ -1,10 +0,0 @@
 NEXT_PUBLIC_FORMBRICKS_COM_API_HOST=http://localhost:3000
 NEXT_PUBLIC_FORMBRICKS_COM_ENVIRONMENT_ID=
 NEXT_PUBLIC_FORMBRICKS_COM_DOCS_FEEDBACK_SURVEY_ID=
 # Strapi API Key
 STRAPI_API_KEY=
 NEXT_PUBLIC_DOCSEARCH_APP_ID=
 NEXT_PUBLIC_DOCSEARCH_API_KEY=
 NEXT_PUBLIC_DOCSEARCH_INDEX_NAME=
--- a/apps/docs/.eslintrc.js
+++ b/apps/docs/.eslintrc.js
@@ -1,3 +0,0 @@
 module.exports = {
  extends: ["@formbricks/eslint-config/legacy-next.js"],
 };
--- a/apps/docs/.gitignore
+++ b/apps/docs/.gitignore
@@ -1,38 +0,0 @@
 # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
 # dependencies
 /node_modules
 /.pnp
 .pnp.js
 # testing
 /coverage
 # next.js
 /.next/
 /out/
 # production
 /build
 # misc
 .DS_Store
 *.pem
 # debug
 npm-debug.log*
 yarn-debug.log*
 yarn-error.log*
 # local env files
 .env*.local
 # vercel
 .vercel
 # typescript
 *.tsbuildinfo
 next-env.d.ts
 public/sitemap*.xml
 public/robots.txt
--- a/apps/docs/LICENSE.md
+++ b/apps/docs/LICENSE.md
@@ -1,129 +0,0 @@
 # Tailwind UI License
 ## Personal License
 Tailwind Labs Inc. grants you an on-going, non-exclusive license to use the Components and Templates.
 The license grants permission to **one individual** (the Licensee) to access and use the Components and Templates.
 You **can**:
 - Use the Components and Templates to create unlimited End Products.
 - Modify the Components and Templates to create derivative components and templates. Those components and templates are subject to this license.
 - Use the Components and Templates to create unlimited End Products for unlimited Clients.
 - Use the Components and Templates to create End Products where the End Product is sold to End Users.
 - Use the Components and Templates to create End Products that are open source and freely available to End Users.
 You **cannot**:
 - Use the Components and Templates to create End Products that are designed to allow an End User to build their own End Products using the Components and Templates or derivatives of the Components and Templates.
 - Re-distribute the Components and Templates or derivatives of the Components and Templates separately from an End Product, neither in code or as design assets.
 - Share your access to the Components and Templates with any other individuals.
 - Use the Components and Templates to produce anything that may be deemed by Tailwind Labs Inc, in their sole and absolute discretion, to be competitive or in conflict with the business of Tailwind Labs Inc.
 ### Example usage
 Examples of usage **allowed** by the license:
 - Creating a personal website by yourself.
 - Creating a website or web application for a client that will be owned by that client.
 - Creating a commercial SaaS application (like an invoicing app for example) where end users have to pay a fee to use the application.
 - Creating a commercial self-hosted web application that is sold to end users for a one-time fee.
 - Creating a web application where the primary purpose is clearly not to simply re-distribute the components (like a conference organization app that uses the components for its UI for example) that is free and open source, where the source code is publicly available.
 Examples of usage **not allowed** by the license:
 - Creating a repository of your favorite Tailwind UI components or templates (or derivatives based on Tailwind UI components or templates) and publishing it publicly.
 - Creating a React or Vue version of Tailwind UI and making it available either for sale or for free.
 - Create a Figma or Sketch UI kit based on the Tailwind UI component designs.
 - Creating a "website builder" project where end users can build their own websites using components or templates included with or derived from Tailwind UI.
 - Creating a theme, template, or project starter kit using the components or templates and making it available either for sale or for free.
 - Creating an admin panel tool (like [Laravel Nova](https://nova.laravel.com/) or [ActiveAdmin](https://activeadmin.info/)) that is made available either for sale or for free.
 In simple terms, use Tailwind UI for anything you like as long as it doesn't compete with Tailwind UI.
 ### Personal License Definitions
 Licensee is the individual who has purchased a Personal License.
 Components and Templates are the source code and design assets made available to the Licensee after purchasing a Tailwind UI license.
 End Product is any artifact produced that incorporates the Components or Templates or derivatives of the Components or Templates.
 End User is a user of an End Product.
 Client is an individual or entity receiving custom professional services directly from the Licensee, produced specifically for that individual or entity. Customers of software-as-a-service products are not considered clients for the purpose of this document.
 ## Team License
 Tailwind Labs Inc. grants you an on-going, non-exclusive license to use the Components and Templates.
 The license grants permission for **up to 25 Employees and Contractors of the Licensee** to access and use the Components and Templates.
 You **can**:
 - Use the Components and Templates to create unlimited End Products.
 - Modify the Components and Templates to create derivative components and templates. Those components and templates are subject to this license.
 - Use the Components and Templates to create unlimited End Products for unlimited Clients.
 - Use the Components and Templates to create End Products where the End Product is sold to End Users.
 - Use the Components and Templates to create End Products that are open source and freely available to End Users.
 You **cannot**:
 - Use the Components or Templates to create End Products that are designed to allow an End User to build their own End Products using the Components or Templates or derivatives of the Components or Templates.
 - Re-distribute the Components or Templates or derivatives of the Components or Templates separately from an End Product.
 - Use the Components or Templates to create End Products that are the property of any individual or entity other than the Licensee or Clients of the Licensee.
 - Use the Components or Templates to produce anything that may be deemed by Tailwind Labs Inc, in their sole and absolute discretion, to be competitive or in conflict with the business of Tailwind Labs Inc.
 ### Example usage
 Examples of usage **allowed** by the license:
 - Creating a website for your company.
 - Creating a website or web application for a client that will be owned by that client.
 - Creating a commercial SaaS application (like an invoicing app for example) where end users have to pay a fee to use the application.
 - Creating a commercial self-hosted web application that is sold to end users for a one-time fee.
 - Creating a web application where the primary purpose is clearly not to simply re-distribute the components or templates (like a conference organization app that uses the components or a template for its UI for example) that is free and open source, where the source code is publicly available.
 Examples of use **not allowed** by the license:
 - Creating a repository of your favorite Tailwind UI components or template (or derivatives based on Tailwind UI components or templates) and publishing it publicly.
 - Creating a React or Vue version of Tailwind UI and making it available either for sale or for free.
 - Creating a "website builder" project where end users can build their own websites using components or templates included with or derived from Tailwind UI.
 - Creating a theme or template using the components or templates and making it available either for sale or for free.
 - Creating an admin panel tool (like [Laravel Nova](https://nova.laravel.com/) or [ActiveAdmin](https://activeadmin.info/)) that is made available either for sale or for free.
 - Creating any End Product that is not the sole property of either your company or a client of your company. For example your employees/contractors can't use your company Tailwind UI license to build their own websites or side projects.
 ### Team License Definitions
 Licensee is the business entity who has purchased a Team License.
 Components and Templates are the source code and design assets made available to the Licensee after purchasing a Tailwind UI license.
 End Product is any artifact produced that incorporates the Components or Templates or derivatives of the Components or Templates.
 End User is a user of an End Product.
 Employee is a full-time or part-time employee of the Licensee.
 Contractor is an individual or business entity contracted to perform services for the Licensee.
 Client is an individual or entity receiving custom professional services directly from the Licensee, produced specifically for that individual or entity. Customers of software-as-a-service products are not considered clients for the purpose of this document.
 ## Enforcement
 If you are found to be in violation of the license, access to your Tailwind UI account will be terminated, and a refund may be issued at our discretion. When license violation is blatant and malicious (such as intentionally redistributing the Components or Templates through private warez channels), no refund will be issued.
 The copyright of the Components and Templates is owned by Tailwind Labs Inc. You are granted only the permissions described in this license; all other rights are reserved. Tailwind Labs Inc. reserves the right to pursue legal remedies for any unauthorized use of the Components or Templates outside the scope of this license.
 ## Liability
 Tailwind Labs Inc.’s liability to you for costs, damages, or other losses arising from your use of the Components or Templates — including third-party claims against you — is limited to a refund of your license fee. Tailwind Labs Inc. may not be held liable for any consequential damages related to your use of the Components or Templates.
 This Agreement is governed by the laws of the Province of Ontario and the applicable laws of Canada. Legal proceedings related to this Agreement may only be brought in the courts of Ontario. You agree to service of process at the e-mail address on your original order.
 ## Questions?
 Unsure which license you need, or unsure if your use case is covered by our licenses?
 Email us at [support@tailwindui.com](mailto:support@tailwindui.com) with your questions.
--- a/Show More
+++ b/Show More
		`@@ -0,0 +1,2 @@`
							`echo "{\"branchName\": \"$(git rev-parse --abbrev-ref HEAD)\"}" > ./branch.json`
							`prettier --write ./branch.json`
		`@@ -1,2 +0,0 @@`
			`EXPO_PUBLIC_API_HOST=http://192.168.178.20:3000`
			`EXPO_PUBLIC_FORMBRICKS_ENVIRONMENT_ID=clzr04nkd000bcdl110j0ijyq`
		`@@ -1 +0,0 @@`
			<svg xmlns="http://www.w3.org/2000/svg" fill="none" viewBox="0 0 394 80"><path fill="#000" d="M262 0h68.5v12.7h-27.2v66.6h-13.6V12.7H262V0ZM149 0v12.7H94v20.4h44.3v12.6H94v21h55v12.6H80.5V0h68.7zm34.3 0h-17.8l63.8 79.4h17.9l-32-39.7 32-39.6h-17.9l-23 28.6-23-28.6zm18.3 56.7-9-11-27.1 33.7h17.8l18.3-22.7z"/><path fill="#000" d="M81 79.3 17 0H0v79.3h13.6V17l50.2 62.3H81Zm252.6-.4c-1 0-1.8-.4-2.5-1s-1.1-1.6-1.1-2.6.3-1.8 1-2.5 1.6-1 2.6-1 1.8.3 2.5 1a3.4 3.4 0 0 1 .6 4.3 3.7 3.7 0 0 1-3 1.8zm23.2-33.5h6v23.3c0 2.1-.4 4-1.3 5.5a9.1 9.1 0 0 1-3.8 3.5c-1.6.8-3.5 1.3-5.7 1.3-2 0-3.7-.4-5.3-1s-2.8-1.8-3.7-3.2c-.9-1.3-1.4-3-1.4-5h6c.1.8.3 1.6.7 2.2s1 1.2 1.6 1.5c.7.4 1.5.5 2.4.5 1 0 1.8-.2 2.4-.6a4 4 0 0 0 1.6-1.8c.3-.8.5-1.8.5-3V45.5zm30.9 9.1a4.4 4.4 0 0 0-2-3.3 7.5 7.5 0 0 0-4.3-1.1c-1.3 0-2.4.2-3.3.5-.9.4-1.6 1-2 1.6a3.5 3.5 0 0 0-.3 4c.3.5.7.9 1.3 1.2l1.8 1 2 .5 3.2.8c1.3.3 2.5.7 3.7 1.2a13 13 0 0 1 3.2 1.8 8.1 8.1 0 0 1 3 6.5c0 2-.5 3.7-1.5 5.1a10 10 0 0 1-4.4 3.5c-1.8.8-4.1 1.2-6.8 1.2-2.6 0-4.9-.4-6.8-1.2-2-.8-3.4-2-4.5-3.5a10 10 0 0 1-1.7-5.6h6a5 5 0 0 0 3.5 4.6c1 .4 2.2.6 3.4.6 1.3 0 2.5-.2 3.5-.6 1-.4 1.8-1 2.4-1.7a4 4 0 0 0 .8-2.4c0-.9-.2-1.6-.7-2.2a11 11 0 0 0-2.1-1.4l-3.2-1-3.8-1c-2.8-.7-5-1.7-6.6-3.2a7.2 7.2 0 0 1-2.4-5.7 8 8 0 0 1 1.7-5 10 10 0 0 1 4.3-3.5c2-.8 4-1.2 6.4-1.2 2.3 0 4.4.4 6.2 1.2 1.8.8 3.2 2 4.3 3.4 1 1.4 1.5 3 1.5 5h-5.8z"/></svg>