# André Bassi — Architecture & Boilerplate Patterns

> Index of canonical pattern specs, one llms.txt per stack. Point an LLM at the file for the stack being worked on — or at this index for a new full-stack project — and it scaffolds, codes and deploys exactly in these patterns. All rules are INVIOLABLE unless explicitly overridden by the user.

Canonical URL: https://llms.andrebassi.com.br/llms.txt
Owner: André Bassi (andrebassi@gmail.com), Brazil. Workspace: /Users/andrebassi/works.
Code identifiers English-only; user-facing UI strings pt-BR; communication with user in Portuguese (BR).

## Stacks

- [Go Backend — Hexagonal](llms-golang.txt): Ports & Adapters layout, chi v5, pgx/v5 + DBTX (no ORM), Temporal, slog, testing with pgxmock, coverage gates, main.go wiring.
- [Frontend — Next.js 16](llms-frontend.txt): App Router, React 19, Tailwind 4, pnpm, apiFetch contract, Supabase auth, production gotchas (proxy.ts, force-dynamic, OAuth callback, SSE), vitest.
- [DevOps](llms-devops.txt): Taskfile-first + scripts/, Docker multi-stage chainguard, Fly.io configs, Supabase migrations/RLS, Cloudflare, Kubernetes rules, credentials via pass, CI/CD.
- [Terraform / Terragrunt](llms-terraform.txt): OpenTofu + Terragrunt Stacks, _units/ templates, env/{dev,qas,prd}, generate blocks, S3+DynamoDB state, YAML manifest wrapper (CRD-style) as the standard config interface — edit YAML not HCL, versioned module repo.
- [Ansible](llms-ansible.txt): phased playbooks, YAML inventories with hostgroups, hardening roles, idempotency-first modules, tags, secrets via pass, Taskfile entrypoint.
- [Taskfile](llms-taskfile.txt): version 3 anatomy, namespace taxonomy, CLI_ARGS, deps gates, prompt: safety, status:/sources: idempotency, includes, SSH remote pattern.
- [AIOX SDD](llms-sdd.txt): mandatory spec flow PRD -> architecture -> stories, exact file paths and section orders, executor/quality-gate rules, implementation loop.

## Cross-Stack Inviolable Rules

1. New project: AIOX SDD specs BEFORE any code (llms-sdd.txt).
2. Go backend: hexagonal `adapters/ -> ports/ -> domain/`, never reverse. No ORM.
3. Frontend: pnpm only, App Router only, apiFetch only.
4. DevOps: Taskfile-first, tests gate deploys, chainguard images, credentials only via pass.
5. Docs are part of "Done": PRD, stories and CLAUDE.md stay in sync with code.
6. Every shell command: `timeout 30s` + output to `2>&1 | tee /tmp/log.txt`.

## Default Stack

Go 1.26 + chi + pgx/v5 + Temporal | PostgreSQL 15+ (Supabase) | Next.js 16 + React 19 + Tailwind 4 | Fly.io (iad/gru) | chainguard/static | Taskfile | GitLab CI / ArgoCD | Sentry + slog | Stripe (native API) | Resend | Groq Whisper / Claude via OpenRouter.