rohitdash08 · Saj8292008 · Mar 8, 2026 · Mar 8, 2026 · Mar 8, 2026 · Mar 8, 2026
@@ -0,0 +1,46 @@
+# 🚨 GENIE — COMMIT YOUR CODE RIGHT NOW
+
+**STOP whatever you're doing. Your boss says COMMIT the FinMind bounty.**
+
+Run these commands IN ORDER. Do not skip any. Do not read any other files first.
+
+## Step 1: Go to the FinMind repo
+```bash
+cd /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/FinMind
+```
+
+## Step 2: Create a branch
+```bash
+git checkout -b feat/unusual-login-detection
+```
+
+## Step 3: Stage all changes
+```bash
+git add -A
+git status
+```
+
+## Step 4: Commit
+```bash
+git commit -m "feat(auth): detect unusual login behavior and alert users
+
+- Backend: _detect_unusual_login tracks login IPs via Redis sets
+- Frontend: login-detection.ts with device fingerprinting
+- Frontend: SignIn.tsx shows warning toast on unusual login
+- Tests: test_auth_unusual_login_triggers_alert covers IP-based detection
+
+Fixes rohitdash08/FinMind#124"
+```
+
+## Step 5: Verify the commit
+```bash
+git log --oneline -1
+git diff --stat HEAD~1
+```
+
+## Step 6: Write confirmation
+```bash
+echo "COMMITTED" > /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/COMMIT-DONE.txt
+```
+
+## DONE. Do not start another bounty until these steps are complete.
@@ -0,0 +1,13 @@
+# STOP PLANNING. START PUSHING.
+
+Read PUSH-NOW.md and EXECUTE THE COMMANDS. No more "here's my plan" messages. 
+
+Your next turn should be running git commands. Nothing else.
+
+Step 1: `cd /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/FinMind && git remote -v`
+Step 2: `gh auth status`  
+Step 3: `gh repo fork rohitdash08/FinMind --clone=false --remote=true`
+Step 4: `git push fork feat/finmind-login-anomaly`
+Step 5: `git push fork feat/finmind-household-134`
+
+DO IT. NOW. NO MORE PLANNING.
@@ -0,0 +1,96 @@
+# 🚨 GENIE — FINISH THE BOUNTY NOW
+
+**STOP reading files. You have everything you need. Execute these steps IN ORDER.**
+
+You already wrote `login-detection.ts` and `test_auth.py`. Now FINISH IT.
+
+---
+
+## STEP 1: Patch SignIn.tsx (ONE edit)
+
+Run this exact command to patch SignIn.tsx:
+
+```bash
+cd /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/finmind
+
+python3 << 'PATCH'
+import re
+
+path = "app/src/pages/SignIn.tsx"
+with open(path) as f:
+    code = f.read()
+
+# Add import at top after last import line
+import_line = "import { getDeviceFingerprint, checkForUnusualLogin } from '@/utils/login-detection';\n"
+# Find the last import statement
+last_import = code.rfind("import ")
+end_of_last_import = code.index("\n", last_import) + 1
+if "login-detection" not in code:
+    code = code[:end_of_last_import] + import_line + code[end_of_last_import:]
+
+# Add unusual login check after the welcome toast line
+old = "toast({ title: 'Welcome back', description: 'You have successfully signed in.' });"
+new = """toast({ title: 'Welcome back', description: 'You have successfully signed in.' });
+      // Unusual login detection
+      const fp = getDeviceFingerprint();
+      const isUnusual = checkForUnusualLogin(fp);
+      if (isUnusual || res.unusual_login) {
+        toast({ variant: 'destructive', title: '⚠️ Unusual login detected', description: 'This login is from a new device or location. If this wasn\\'t you, please change your password.' });
+      }"""
+code = code.replace(old, new)
+
+with open(path, "w") as f:
+    f.write(code)
+print("✅ SignIn.tsx patched!")
+PATCH
+```
+
+## STEP 2: Verify the patch worked
+
+```bash
+grep -n "unusual\|fingerprint\|login-detection" app/src/pages/SignIn.tsx
+```
+
+You should see 3+ matches.
+
+## STEP 3: Create a git branch and commit
+
+```bash
+cd /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/finmind
+git checkout -b feat/unusual-login-detection
+git add -A
+git status
+git commit -m "feat(auth): detect unusual login behavior and alert users
+
+- Enhanced backend _detect_unusual_login with IP tracking via Redis
+- Added frontend device fingerprinting (login-detection.ts)
+- Added unusual login toast alert in SignIn.tsx
+- Added test_auth_unusual_login_triggers_alert test
+
+Fixes #124"
+```
+
+## STEP 4: Write completion summary
+
+```bash
+cat > /Users/sydneyjackson/clawd/genie-services/bounty-hunter/workspace/BOUNTY-COMPLETE.md << 'DONE'
+# ✅ BOUNTY #124 COMPLETE
+
+## Files Changed
+1. `packages/backend/app/routes/auth.py` — _detect_unusual_login (IP tracking via Redis)
+2. `packages/backend/tests/test_auth.py` — Added unusual login test
+3. `app/src/utils/login-detection.ts` — NEW: Frontend device fingerprinting
+4. `app/src/pages/SignIn.tsx` — Integrated unusual login alert toast
+
+## How It Works
+- Backend: Tracks login IPs per user in Redis. New IP = unusual.
+- Frontend: Fingerprints device (UA + screen + language). New device = unusual.
+- Both signals trigger a warning toast on login.
+
+## Ready for PR submission
+DONE
+```
+
+## THEN STOP. You're done with this bounty. 🎉
+
+**DO NOT start another bounty. DO NOT read more files. Just execute Steps 1-4.**
@@ -0,0 +1,89 @@
+@@ -34,6 +34,88 @@
+ - Use direct voice IDs instead of listing voices
+ - Verified working: 2026-02-06
+
++## The Hub Command Center
++- **URL:** http://localhost:4003
++- **Purpose:** Main API server + dashboard for The Hub
++- **Key endpoint:** `/api/dashboard/status` (system health, metrics)
++- **Startup:** `cd /Users/sydneyjackson/the-hub && PORT=4003 npm start`
++- **Logs:** `/Users/sydneyjackson/the-hub/logs/nohup-4003.log`
++- **Check regularly:** Server status, scraper health, Telegram bot, deal counts
++
++## Perplexity Sonar Research (OpenRouter)
++- **API Key:** `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`
++- **Location:** `tools/research.js` (Node.js) and `tools/research.py` (Python)
++- **Purpose:** Deep web research with citations in one API call
++- **Integrated:** 2026-02-10
++
++### Modes
++- **fast** - `perplexity/sonar-pro` (~$0.01/query, 2-3 seconds)
++- **reasoning** - `perplexity/sonar-reasoning` (more thoughtful)
++- **deep** - `perplexity/sonar-deep-research` (comprehensive, requires credits)
++
++### Usage Examples
++
++**Command Line (Node.js):**
++```bash
++# Quick research
++node tools/research.js "What are the best Rolex deals right now?"
++
++# Deep research
++node tools/research.js --mode deep "History of Nike Dunk market"
++
++# JSON output for parsing
++node tools/research.js --json "Current sneaker market trends"
++```
++
++**Command Line (Python):**
++```bash
++# Quick research
++python3 tools/research.py "Best Nike Dunk colorways under $200"
++
++# Deep mode
++python3 tools/research.py --mode deep "Luxury watch market analysis"
++```
++
++**Programmatic (Python for The Hub):**
++```python
++from tools.research import research, research_deals, research_market_trends
++
++# General research
++result = research("What are current Rolex market trends?")
++print(result['content'])      # Answer text
++print(result['citations'])    # Source URLs
++print(result['cost'])         # API cost
++
++# Deal-specific research
++deals = research_deals("Rolex Submariner", category="watches")
++
++# Market trends
++trends = research_market_trends("sneakers")
++```
++
++**Programmatic (Node.js):**
++```javascript
++const { research } = require('./tools/research.js');
++
++research("What are the best watch deals?", { mode: 'fast' })
++  .then(result => {
++    console.log(result.content);
++    console.log(result.citations);
++  });
++```
++
++### Integration Ideas
++- Morning brief research (stocks, sports, weather context)
++- Deal validation for The Hub scrapers
++- Market trend analysis for newsletters
++- Product research before scraping
++- Competitive intelligence
++
++### Cost Tracking
++- Fast mode: ~$0.01 per query
++- Deep mode: ~$0.05-0.10 per query (requires OpenRouter credits)
++- Monthly budget: TBD (track in memory files)
++
+ ## What Goes Here
+
+ Things like: