Thoughts

Tat-Tally Audit Item N10: CI doesn't run RLS or E2E tests Problem: The GitHub Actions CI pipeline (.github/workflows/ci.yml) runs type-checking, unit tests, and builds for all 5 apps, but doesn't run RLS policy integration tests (infrastructure/tests/rls-policies.test.ts) or Playwright E2E tests (e2e/ directory). The audit flagged this as a gap in test coverage. Solution considered: Add Supabase local (via Docker) to CI for RLS tests, and spin up all 5 dev servers with Playwright browsers for E2E. Both approaches require CI infrastructure setup: Docker-in-CI config or Supabase preview branch credentials as GitHub secrets, plus Playwright browser installs and test data seeding. Decision: Killed it. Not worth the effort. Dave is the sole developer, no other contributors planned. The RLS and E2E tests exist and can be run manually before deployments. GitHub Actions free tier would cover the compute (2,000 min/month for private repos, Docker and Playwright are free). No new subscriptions needed. But the setup time has zero ROI for a single-developer project. Revisit only if the product is packaged for resale and other developers are involved.