Harden billing and generation workflow

[Abdulmuiz44]

Summary

• validate Lemon Squeezy checkout setup and add atomic credit transaction tracking
• add Mistral image validation, retries, fallback telemetry, and failed-generation credit refunds
• improve asset rerender UX, landing samples, and LaunchPix branding
• force dynamic rendering for auth-backed routes to keep production builds stable

Verification

• npm run typecheck
• npm run build
• npx supabase db push --linked

[netlify]

✅ Deploy Preview for launchpix ready!

Name	Link
🔨 Latest commit	e25e595
🔍 Latest deploy log	https://app.netlify.com/projects/launchpix/deploys/69f42bb1ee5fa000071cfd40
😎 Deploy Preview	https://deploy-preview-33--launchpix.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
🤖 Make changes	Run an agent on this branch

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e25e595e20

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Restrict execution of grant_credit_pack_atomic

This function is declared security definer and takes caller-controlled p_user_id/p_credits, but the migration does not enforce any caller check or lock down EXECUTE privileges. In a Supabase setup where public RPCs are reachable, an authenticated user can call this function directly (with fresh p_provider_reference values) to grant arbitrary credits without a real payment event, bypassing the webhook path entirely.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Make refund credit update atomic

The refund path writes credits_remaining from a stale in-memory value (current.credits_remaining + 1) instead of incrementing in-database. If another balance mutation happens between the read and this update (for example, a concurrent refund or a webhook credit grant), this update can overwrite the newer total and lose purchased/refunded credits. The refund should use an atomic increment strategy rather than read-modify-write from application code.

Useful? React with 👍 / 👎.