Fimo as a DX Platform
POC → Production

Two templates exist and will drift apart: one sandbox-managed (still carries a committed .fimo/ runtime folder from the pre-CLI era) and one CLI-managed (uses fimo/ui + fimo/vite, nothing to commit). Every improvement to one has to be manually ported to the other. This is the POC shortcut we need to unwind before building anything else on top — every later item touches the template surface one way or another.

The CLI template becomes the canonical source. The API copies it into new sandboxes the same way fimo create does locally. There is no .fimo/ folder in the template — everything that used to live there has already moved into package exports (fimo/ui, fimo/vite, fimo/client) and CLI commands. The project just imports from fimo, with nothing extra on disk.

The .fimo/ folder is gone — not relocated, not gitignored, not regenerated. Everything it used to host has already migrated into fimo/ui, fimo/vite, the incoming fimo/client (M4), and CLI commands. The project imports from fimo like any other npm dependency. Nothing to scaffold, nothing to keep in sync, no runtime artefact on disk. Upgrading the runtime is pnpm update fimo.

The dashboard was built for sandbox-only projects where the sandbox is the source of truth. With the CLI, code lives in the user's local repo plus the Fimo git remote, and the sandbox just mirrors that state — but the dashboard shows none of it. An editor opening a project can't tell whether the code is up-to-date with the developer's latest push, whether there's unpushed work in progress, or which branch the environment tracks. The CLI workflow is silent from the dashboard side, which erodes trust in what's being edited.

Teach the dashboard to reflect git and sync state through a small set of always-visible affordances. The goal isn't to turn the dashboard into a git UI — it's to give editors enough context to trust what they're seeing and to coordinate with developers without leaving the browser.

• Environment badge in the project chrome — always visible. Production · main or (once M2 lands) Preview · feature/hero. One-glance answer to "what am I editing?".
• Sync status panel — last git push (time, branch, commit subject), last sandbox reload, any divergence between the two. Backed by a new GET /projects/:id/sync-status endpoint.
• Pending-push indicator — when the developer has committed locally but not pushed, or has uncommitted changes while dev is running, show a subtle banner: "Dev is mid-work, the environment may change soon." Requires a lightweight heartbeat from fimo/vite (or the CLI) to the API.
• Activity feed — git commits and dashboard edits merged into one timeline per environment. "Alex pushed 3 commits at 14:23" next to "Marie updated the hero copy at 14:45". Lets both personas see what the other just did.
• Branch switcher (depends on M2) — when previews are live, editors pick which environment they're editing from the same chrome element that shows the badge.

Translations currently live in two stores: translations/<locale>.json in git and a translations table in the tenant DB. They diverge under the CLI workflow. Making the file the source of truth creates a different problem: dashboard edits are never reflected locally unless the developer manually syncs.

Make the DB the single source of truth. Remove translations/<locale>.json from git entirely. A new fimo/vite plugin fetches translations from the API at dev-server start and at build time, injecting them as a virtual module. New keys found in source code are pushed to the DB via fimo sync — a one-shot command, run manually or by an AI agent when it adds new t() calls. No manual extraction step.

fimo sync scans source files for t() calls and fully reconciles them against the DB: new keys are created (using the fallback string as the initial value), keys no longer present in source are deleted, and existing DB values are never overwritten. Runs on deploy and preview automatically. During dev, an AI agent or a human can run it at any time — the running dev server won't pick up the change until restart in v1 (see below).

dev start    →  plugin fetches all locales from API once
              →  injects virtual:fimo/translations into module graph
              →  dev session uses this snapshot until restart

fimo sync    →  updates DB (new/removed keys)
              →  plugin logs: "translations changed — restart dev to see updates"

vite build   →  plugin fetches translations synchronously
              →  bakes into bundle (no runtime fetch in production)

Not a special concern — the build needs the API for entries, media, and schemas anyway, so an unreachable API means the build can't complete for multiple reasons. No dedicated cache layer is added just for translations.

If translations specifically fail to load (while other API calls succeed, which is an unusual failure mode), the plugin emits an empty virtual:fimo/translations module. At runtime, t('hero.title', 'Welcome') falls back to its second argument — so the app stays functional in the source language rather than breaking outright. Same behaviour during dev if the initial fetch fails.

Developers working locally have no way to manage content, media, or translations without opening the Fimo web app and finding their project. The terminal workflow is seamless for code; content management requires a context switch.

Add a lightweight fimo/studio entrypoint to the fimo npm package. fimo studio opens a minimal admin UI using the stored CLI credentials — no second login. Covers at minimum: CMS collections + entries, media library, translations, form submissions.

The exact feature scope and delivery model (locally-served SPA bundled in the fimo package vs hosted fimo.ai/studio/:projectId opened via OTT handoff) is an open product decision. The key constraint: it lives in the fimo package, ships with the CLI, and works without the Fimo web app being in the loop.

Scripts and CI authenticate with FIMO_API_TOKEN. Tokens are issued from two places with identical capabilities:

• Dashboard — Settings → API keys, at the org or project level. List, create, revoke, copy token on creation (shown once, hashed server-side thereafter).
• CLI — fimo token create --name ci-deploy [--project <id>] [--expires 90d] prints a fresh token to stdout. Companion commands: fimo token list, fimo token revoke <id>. The CLI path is what makes this AI-friendly: an agent can create a token and pipe it into gh secret set FIMO_API_TOKEN without a browser round-trip.

• Scope — org-level (all projects in the org) or project-level (one project). User picks at creation.
• Name — human-readable label (e.g. ci-deploy, preview-bot) for audit clarity.
• Expiration — optional; none by default, configurable in days or a fixed date.
• Audit trail — each key records creation time, last-used timestamp, and last IP. Visible in the dashboard for compliance reviews.

The POC has a single sandbox per project that serves as both "preview" and "production". Content edits happen directly against the live site. Developers can't test a schema change without risking live data, and editors have no notion of "draft vs published" — what they type is live. There's no place to try changes safely, and no clear publish step.

Introduce a two-level environment hierarchy that mirrors the branch model. develop becomes the default environment the dashboard opens on — always available, always tracking the develop branch, safe to edit. feature/* branches can spawn their own isolated previews on top of develop for testing code + content changes together. main is protected — only reached by a deliberate fimo publish from develop.

• Multi-environment sandbox model: each project has at minimum a develop and a main environment; additional previews come and go per feature branch.
• Branch-scoped URLs: develop.example.com, <branch>-<hash>.preview.example.com, site.example.com for main.
• Neon branches forked along the hierarchy: main ← develop ← feature/*. Promote = merge git + fast-forward Neon branch with replacement. Publish = same, one level up.
• Dashboard always opens on develop. Environment switcher (N2) lets editors pick a preview to review.

• Cross-harness detection — every agent has its own install layout (Claude's ~/.claude/skills/, Cursor's .cursor/rules/, Codex configs). How much of this do we want to track, vs. defer to the ecosystem?
• Bundle format — roll our own, or adopt an emerging standard (agentskills.io, skills.sh, plain SKILL.md)? Likely the latter once something stabilises.
• Distribution — bundled with the CLI, fetched from a CDN on install, or published as separate skill packages? Each has a different upgrade story.
• Overlap with MCP — L2 sketches fimo_install_skill as an MCP tool. For harnesses that speak MCP, the MCP path is simpler and works without a local CLI. A CLI-based installer may only be worth building for harnesses that don't support MCP.
• Security — "install a skill" means different things in different harnesses: files on disk, runtime plugins, server-side config. What's the trust model?

Schemas and forms are defined as JSON files, then a code-gen step produces .ts files that must be committed. The generated files are awkward to review, types are indirect, and there's no clean way to bundle multiple schemas into a single typed client.

Replace JSON schema and form files with defineSchema() and defineForm() TypeScript functions exported from the fimo package. Types are inferred directly — no code-gen step, no generated files to commit. A createFimoClient() factory bundles them into a single fully-typed client with hooks and submit helpers.

A new fimo sync command is the single sync primitive for all local definitions. It reads defineSchema / defineForm files and pushes them to the API, and it also reconciles t() translation keys with the DB (the translation-specific behaviour is described in N3). It runs automatically as part of fimo deploy and fimo preview; otherwise it's a one-shot, invoked manually or by an AI agent when local definitions change.

Schemas and forms are scaffolded by the CLI — no JSON files, ever:

AI agents (via the MCP server or in-project skill) call the equivalent tools and produce the same .ts files. One code path for humans and agents; one file format everywhere.

fimo/client is the runtime for every Fimo project when M4 lands — CLI-created and sandbox-created alike. The generated hook files (hooks-template-v3.eta) go away at the same time as the unified template (N1) drops the two-template split. One template, one runtime, no parallel code paths.

Existing projects with legacy JSON schemas re-create them as .ts via fimo schema create (same CLI path new projects use). No dedicated fimo migrate command to maintain — the create command is the migration path. Mechanical and safe: once every schema has a .ts twin, the JSON files are deleted.

Each resource is a single .ts file. Types flow from the definition — no code-gen, no generated files. The client factory bundles them into one typed entry point.

import { defineSchema } from 'fimo'

export default defineSchema({
  uid: 'BlogPost',
  fields: {
    title:       { type: 'string',   required: true },
    slug:        { type: 'string',   required: true, unique: true },
    body:        { type: 'richtext', required: true },
    coverImage:  { type: 'media',    mediaType: 'image' },
    publishedAt: { type: 'date' },
    author:      { type: 'relation', target: 'Author' },
    tags:        { type: 'relation', target: 'Tag', multiple: true },
  },
})

import { defineForm } from 'fimo'

export default defineForm({
  name: 'contact-us',
  fields: [
    { name: 'email',   type: 'email',    required: true, label: 'Your email' },
    { name: 'subject', type: 'string',   required: true },
    { name: 'message', type: 'textarea', required: true, maxLength: 2000 },
  ],
  submitLabel: 'Send message',
})

import { createFimoClient } from 'fimo/client'
import BlogPost   from './schemas/BlogPost'
import Author     from './schemas/Author'
import ContactUs  from './forms/contact-us'

export const fimo = createFimoClient({
  schemas: { BlogPost, Author },
  forms:   { ContactUs },
})

// Fully typed — imperative & React Query hook APIs derived from the schemas above.

Every resource exposes both an imperative API (fimo.X.list(), fimo.X.getBySlug()) for loaders, RSCs and static generation, and React Query hooks (fimo.X.useList(), fimo.X.useGetBySlug()) for client transitions. Server-fetched data hydrates the hook cache automatically — no double fetch.

// app/routes/blog._index.tsx
import type { Route } from './+types/blog._index'
import { fimo } from '~/fimo'

// Runs at request time (SSR) — or at build time if the route is pre-rendered (SSG)
export async function loader(_: Route.LoaderArgs) {
  const posts = await fimo.BlogPost.list({ sort: '-publishedAt', limit: 20 })
  return { posts }
}

export default function BlogIndex({ loaderData }: Route.ComponentProps) {
  // Hydrates from loaderData; stays fresh on the client via React Query.
  const { data: posts } = fimo.BlogPost.useList(
    { sort: '-publishedAt', limit: 20 },
    { initialData: loaderData.posts },
  )
  return <PostList posts={posts} />
}

// app/blog/[slug]/page.tsx — Server Component
import { fimo } from '@/lib/fimo'

// Static generation at build — enumerate every post
export async function generateStaticParams() {
  const posts = await fimo.BlogPost.list({ fields: ['slug'] })
  return posts.map(({ slug }) => ({ slug }))
}

// ISR — rebuild hourly in the background
export const revalidate = 3600

export default async function Post({ params }: { params: { slug: string } }) {
  const post = await fimo.BlogPost.getBySlug(params.slug)
  return <Article post={post} />
}

// app/routes/blog.tsx
import { createFileRoute } from '@tanstack/react-router'
import { fimo } from '~/fimo'

export const Route = createFileRoute('/blog')({
  loader: () => fimo.BlogPost.list({ sort: '-publishedAt' }),
  component: BlogIndex,
})

function BlogIndex() {
  const { data: posts } = fimo.BlogPost.useList(
    { sort: '-publishedAt' },
    { initialData: Route.useLoaderData() },
  )
  return <PostList posts={posts} />
}

There is a gap between starting from fimo create (well-defined CLI path) and an AI agent saying "create a website with Fimo" (no canonical entry point, no up-to-date docs the agent can read, no way to discover what Fimo can do without a bundled skill file).

A machine-readable index of all Fimo documentation following the llms.txt convention. Agents fetch this at session start to understand the API surface, CLI commands, schema format, and deploy pipeline — no skill bundle needed on disk.

All documentation served as clean markdown at predictable URLs. Pairs with llms.txt as the discovery layer. Agents can fetch specific pages when they need depth on a topic.

After scaffolding, the CLI offers to wire up the AI agent automatically — running fimo plugin install for the detected agent. No separate step required.

When an agent is inside a Fimo project, the skill bundle's rules direct it to use the CLI rather than raw API calls. When there is no project (global agent context via MCP), the agent uses MCP tools directly. Both paths converge on the same underlying API — no divergence.

• Push to any feature branch → preview URL posted as PR commit status / GitHub Environment.
• PR merge to develop → fimo promote runs in CI (branch → develop, DB replaced).
• PR merge to main (separate release PR, gated) → fimo publish runs in CI (develop → main, live).
• PR close → preview environment garbage-collected automatically.

On top of M2's branch-scoped environments, the server maintains a fimo/preview/<env> tracking branch per environment. When a feature branch is pushed, the server merges it into the tracking branch rather than letting it touch sandbox main directly — so production code stays clean no matter what a preview PR does. DB isolation is inherited from M2 (Neon branch per environment).

A single one-line install pointing to a hosted SSE endpoint at mcp.fimo.ai. Auth via OAuth or API token. No local server to run.

Rather than one tool per endpoint (brittle as the API grows, exhausts agent context with dozens of tool schemas), expose the whole API through a small set of general-purpose tools — inspired by the pattern Cloudflare uses for its MCP servers.

• React Router v7: detected via react-router.config.ts → Cloudflare adapter applied automatically.
• TanStack Start: detected via app.config.ts → Cloudflare adapter applied automatically.
• Fallback: plain Vite SPA (today's default).

• Secrets / env vars for Workers (currently only public VITE_* vars exist).
• Wrangler config: ship in template or generate at build time?
• Edge caching and CDN invalidation on publish — different model from static assets.