chore: public-readiness audit — MIT license, community files, CI, sidebar fix

- Switch LICENSE from proprietary to MIT
- Add CHANGELOG.md, CODE_OF_CONDUCT.md, CONTRIBUTING.md, SECURITY.md
- Add GitHub issue templates (bug report, feature request)
- Add CI workflow (lint, typecheck, format, test)
- Update README with badges, "Why AgentDeck?" section, community links
- Update package.json with repository metadata, remove private flag
- Update USER-GUIDE.md version and path fix
- Fix sidebar CSS: templates section crushed when all sections expanded

Co-Authored-By: Rooty

Author: Wintersta7e

.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,41 @@
+---
+name: Bug Report
+about: Report a bug in AgentDeck
+title: "[Bug] "
+labels: bug
+assignees: ''
+---
+
+## Description
+
+A clear description of what the bug is.
+
+## Steps to Reproduce
+
+1. Go to '...'
+2. Click on '...'
+3. See error
+
+## Expected Behavior
+
+What you expected to happen.
+
+## Actual Behavior
+
+What actually happened.
+
+## Environment
+
+- **AgentDeck version**: (e.g. 4.6.0)
+- **Windows version**: (e.g. Windows 11 23H2)
+- **WSL distro**: (e.g. Ubuntu 24.04)
+- **Node.js version**: (e.g. 22.12.0)
+- **Agent(s) involved**: (e.g. Claude Code, Codex)
+
+## Screenshots
+
+If applicable, add screenshots to help explain the problem.
+
+## Additional Context
+
+Any other context about the problem.

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,23 @@
+---
+name: Feature Request
+about: Suggest a new feature for AgentDeck
+title: "[Feature] "
+labels: enhancement
+assignees: ''
+---
+
+## Problem
+
+What problem does this feature solve? Is it related to a frustration?
+
+## Proposed Solution
+
+A clear description of what you'd like to happen.
+
+## Alternatives Considered
+
+Any alternative solutions or features you've considered.
+
+## Additional Context
+
+Any other context, mockups, or examples.

.github/workflows/ci.yml

@@ -0,0 +1,39 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  lint-and-test:
+    runs-on: ubuntu-latest
+
+    strategy:
+      matrix:
+        node-version: [22]
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ matrix.node-version }}
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Lint
+        run: npm run lint
+
+      - name: Type check
+        run: npm run typecheck
+
+      - name: Format check
+        run: npm run format:check
+
+      - name: Test
+        run: npm test

CHANGELOG.md

@@ -0,0 +1,113 @@
+# Changelog
+
+All notable changes to AgentDeck will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [4.6.0] - 2026-03-27
+
+### Added
+- Codex skill discovery — scans projects for SKILL.md files with YAML frontmatter, TTL-cached
+- Project metadata refresh on IPC
+- Agent updater safety: binary verification, npm bin symlink auto-repair, rollback on failure
+
+### Fixed
+- Stale package names in agent updater
+- UX audit: 26/27 issues resolved (welcome card, terminal context menu, a11y, focus traps, toasts, skeleton loaders, validation, breadcrumbs, node duplication, empty states)
+
+### Changed
+- 499 tests (up from 436)
+
+## [4.5.0] - 2026-03-25
+
+### Added
+- Conditional branching — `condition` node type with exit code and output match modes
+- Loop/retry — loop-back edges with max iterations, per-node retry with configurable delay
+- Workflow variables — `{{VAR}}` substitution with typed pre-run dialog
+- Import/export — `.agentdeck-workflow.json` bundles with role remapping
+- Workflow clone — deep copy with new UUID
+- Execution history — per-run summaries with node timing, error tails, History tab
+- 5 new seed workflows (12 total): Test Coverage, Dependency Update, Documentation Pass, Performance Audit, Release Prep
+
+### Changed
+- Engine rewrite: tier-based scheduler replaced with edge-activation scheduler (ready queue, pending edge counts, skip propagation, loop subgraph reset)
+- God-class refactor: `appStore.ts` split into 6 Zustand slices; workflow engine split into 3 files; workflow editor split into 3 files
+- ESLint tightened: `eqeqeq`, `no-console`, `no-eval`, `react-hooks/exhaustive-deps` promoted to error, `--max-warnings=0`
+- TypeScript: added `noImplicitOverride`
+- 436 tests (up from 348)
+
+### Fixed
+- 5 npm dependency vulnerabilities
+- Codex `-C` flag and `--skip-git-repo-check` support
+- WF-1 through WF-15 (signal exit codes, truncated output buffer, scheduler double-complete, loop subgraph reset bug)
+
+## [4.4.0] - 2026-03-22
+
+### Added
+- Test coverage expansion: 293 to 348 tests across 32 files
+- IPC split into 6 modules
+- `terminal-utils.ts` extraction (pure functions)
+- Portability fixes P1-P6
+
+### Fixed
+- TERM-12 through TERM-20 (post-refactor terminal issues)
+
+## [4.3.0] - 2026-03-20
+
+### Fixed
+- Terminal scroll and formatting fixes (5 tasks)
+- TERM-1 through TERM-11 across 3 review rounds (4-way review, 11 issues found, 9 fixed)
+
+## [4.2.0] - 2026-03-18
+
+### Changed
+- Architecture splits: `workflow-seeds.ts`, `store-seeds.ts`, `agent-detector.ts`, `workflow-utils.ts`, `ThemeSubmenu.tsx`, `AgentsSubmenu.tsx`
+
+### Fixed
+- 59 code review fixes across 2 rounds (security, memory, performance, bugs, error handling)
+
+## [4.1.0] - 2026-03-16
+
+### Added
+- 7 seed workflows (Codex-focused)
+- 293 tests
+
+## [4.0.0] - 2026-03-14
+
+### Changed
+- Fusion UI redesign
+- Migrated all icons to Lucide React (tree-shakeable SVGs)
+- Full code review: 38 fixes
+- Hardened security: `sandbox: true` on BrowserWindow
+
+### Added
+- 286 tests
+
+## [3.0.0] - 2026-03-01
+
+### Added
+- Workflow engine with visual node-graph editor
+- Polymorphic tabs (sessions + workflows)
+- Command palette with fuzzy search
+- Terminal performance optimizations
+- WSL resilience (retry, cold-boot handling)
+- Bare terminal sessions
+- 250 tests
+
+## [2.0.0] - 2026-02-15
+
+### Added
+- 8 themes (4 dark + 4 light) with view transitions
+- 16 seed prompt templates
+
+## [1.0.0] - 2026-02-01
+
+### Added
+- Initial release
+- Multi-agent terminal management (7 agents)
+- Project management with WSL path support
+- Split terminal views (1/2/3 panes)
+- Terminal caching and state preservation
+- Prompt template system
+- electron-store persistence

CODE_OF_CONDUCT.md

@@ -0,0 +1,58 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+We as members, contributors, and leaders pledge to make participation in our
+community a harassment-free experience for everyone, regardless of age, body
+size, visible or invisible disability, ethnicity, sex characteristics, gender
+identity and expression, level of experience, education, socio-economic status,
+nationality, personal appearance, race, religion, or sexual identity
+and orientation.
+
+We pledge to act and interact in ways that contribute to an open, welcoming,
+diverse, inclusive, and healthy community.
+
+## Our Standards
+
+Examples of behavior that contributes to a positive environment for our
+community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes,
+  and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the
+  overall community
+
+Examples of unacceptable behavior include:
+
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Enforcement Responsibilities
+
+Community leaders are responsible for clarifying and enforcing our standards of
+acceptable behavior and will take appropriate and fair corrective action in
+response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful.
+
+## Scope
+
+This Code of Conduct applies within all community spaces, and also applies when
+an individual is officially representing the community in public spaces.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the project maintainers via [GitHub Issues](https://github.com/Wintersta7e/agentdeck/issues).
+
+All complaints will be reviewed and investigated promptly and fairly.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant](https://www.contributor-covenant.org),
+version 2.0.

CONTRIBUTING.md

@@ -0,0 +1,71 @@
+# Contributing to AgentDeck
+
+Thanks for your interest in contributing to AgentDeck!
+
+## Getting Started
+
+1. Fork the repository
+2. Clone your fork
+3. Install dependencies:
+   ```bash
+   npm install --no-bin-links
+   ```
+4. Start the dev server:
+   ```bash
+   npm run dev
+   ```
+
+## Prerequisites
+
+- Windows 10/11 with WSL2 (Ubuntu recommended)
+- Node.js 22+
+- At least one AI coding agent installed in WSL
+
+## Code Standards
+
+- **TypeScript strict mode** — all source files are `.ts`/`.tsx`
+- **ESLint** — zero-warning policy (`npm run lint`)
+- **Prettier** — consistent formatting (`npm run format`)
+- **Vitest** — tests run with `npm test`
+
+## Before Submitting a PR
+
+1. Run the full lint check: `npm run lint`
+2. Run all tests: `npm test`
+3. Run the type checker: `npm run typecheck`
+4. Ensure zero warnings and all tests pass
+
+## Commit Messages
+
+- Use imperative mood ("Add feature" not "Added feature")
+- Keep the first line under 72 characters
+- Reference issues where applicable
+
+## Pull Requests
+
+1. Create a feature branch from `main`
+2. Make your changes with clear, focused commits
+3. Ensure all checks pass (lint, tests, typecheck)
+4. Open a PR against `main` with a clear description of what and why
+
+## Architecture
+
+See the [User Guide](./docs/USER-GUIDE.md) for feature documentation.
+
+Key constraints:
+
+- `node-pty` runs in the main process only (native bindings)
+- Context isolation is always on (`contextIsolation: true`, `nodeIntegration: false`, `sandbox: true`)
+- All IPC goes through `contextBridge` — renderer never imports Node modules
+- WSL paths only for project paths
+- All colors come from CSS custom properties in `tokens.css` — never hardcode colors
+
+## Reporting Issues
+
+- Use [GitHub Issues](../../issues) for bugs and feature requests
+- Include steps to reproduce for bugs
+- Check existing issues before creating new ones
+
+## Security
+
+See [SECURITY.md](./SECURITY.md) for reporting security vulnerabilities.

LICENSE

@@ -1,13 +1,21 @@
-Copyright (c) 2025-2026 Wintersta7e. All rights reserved.
+MIT License
 
-This software and associated documentation files (the "Software") are the
-exclusive property of the copyright holder. No part of this Software may be
-used, copied, modified, merged, published, distributed, sublicensed, or sold
-without the prior written permission of the copyright holder.
+Copyright (c) 2025-2026 Wintersta7e
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
 
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-COPYRIGHT HOLDER BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
-IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
-CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.