From e121f85e09bae5ae48b46d79e2051de5c0c1840b Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 12:52:25 +0200
Subject: [PATCH 1/8] Refine feature scoring UI (#828)

---
 frontend/src/App.svelte                       | 12 ++--
 .../src/routes/StewardFeatureReviews.svelte   | 62 ++++++++++++-------
 2 files changed, 48 insertions(+), 26 deletions(-)

diff --git a/frontend/src/App.svelte b/frontend/src/App.svelte
index 86654b52..a62017f1 100644
--- a/frontend/src/App.svelte
+++ b/frontend/src/App.svelte
@@ -262,13 +262,15 @@
     setRouteMeta($location);
   });
 
+  let normalizedLocation = $derived(($location || '/').replace(/\/+$/, '') || '/');
+
   // Pages that need full-bleed (no padding): immersive docs and full-width steward review surfaces
   let isFullBleedPage = $derived(
-    $location === '/how-it-works' ||
-    $location === '/stewards/feature-reviews' ||
-    $location.startsWith('/genesis') ||
-    $location.startsWith('/foundations') ||
-    $location === '/manifesto'
+    normalizedLocation === '/how-it-works' ||
+    normalizedLocation === '/stewards/feature-reviews' ||
+    normalizedLocation.startsWith('/genesis') ||
+    normalizedLocation.startsWith('/foundations') ||
+    normalizedLocation === '/manifesto'
   );
   
   // Function to hide tooltips - used for route changes
diff --git a/frontend/src/routes/StewardFeatureReviews.svelte b/frontend/src/routes/StewardFeatureReviews.svelte
index c7f80d71..4a419bc5 100644
--- a/frontend/src/routes/StewardFeatureReviews.svelte
+++ b/frontend/src/routes/StewardFeatureReviews.svelte
@@ -9,13 +9,18 @@
 
   const TITLE_PREVIEW_LENGTH = 80;
   const DESCRIPTION_PREVIEW_LENGTH = 220;
+  const socialIconPaths = {
+    GitHub: 'M12 2C6.477 2 2 6.477 2 12c0 4.42 2.87 8.17 6.84 9.5.5.08.66-.23.66-.5v-1.69c-2.77.6-3.36-1.34-3.36-1.34-.45-1.15-1.11-1.46-1.11-1.46-.91-.62.07-.6.07-.6 1 .07 1.53 1.03 1.53 1.03.87 1.52 2.34 1.07 2.91.83.09-.65.35-1.09.63-1.34-2.22-.25-4.55-1.11-4.55-4.92 0-1.11.38-2 1.03-2.71-.1-.25-.45-1.29.1-2.64 0 0 .84-.27 2.75 1.02.79-.22 1.65-.33 2.5-.33.85 0 1.71.11 2.5.33 1.91-1.29 2.75-1.02 2.75-1.02.55 1.35.2 2.39.1 2.64.65.71 1.03 1.6 1.03 2.71 0 3.82-2.34 4.66-4.57 4.91.36.31.69.92.69 1.85V21c0 .27.16.59.67.5C19.14 20.16 22 16.42 22 12A10 10 0 0 0 12 2z',
+    X: 'M18.244 2.25h3.308l-7.227 8.26 8.502 11.24H16.17l-5.214-6.817L4.99 21.75H1.68l7.73-8.835L1.254 2.25H8.08l4.713 6.231zm-1.161 17.52h1.833L7.084 4.126H5.117z',
+    Discord: 'M20.317 4.37A19.79 19.79 0 0 0 15.366 2.8a.074.074 0 0 0-.079.037c-.213.38-.45.875-.616 1.265a18.27 18.27 0 0 0-5.487 0 12.64 12.64 0 0 0-.626-1.265.077.077 0 0 0-.079-.037 19.74 19.74 0 0 0-4.951 1.57.07.07 0 0 0-.032.026C.533 8.824-.319 13.144.079 17.41a.082.082 0 0 0 .031.057 19.9 19.9 0 0 0 6.073 3.075.078.078 0 0 0 .084-.027c.468-.638.885-1.312 1.24-2.02a.076.076 0 0 0-.041-.105 13.1 13.1 0 0 1-1.872-.892.077.077 0 0 1-.008-.128c.126-.094.252-.192.372-.291a.074.074 0 0 1 .077-.01c3.928 1.793 8.18 1.793 12.062 0a.074.074 0 0 1 .078.009c.12.099.246.198.373.292a.077.077 0 0 1-.007.128 12.3 12.3 0 0 1-1.873.891.077.077 0 0 0-.04.106c.36.707.777 1.381 1.238 2.019a.076.076 0 0 0 .084.028 19.84 19.84 0 0 0 6.082-3.075.077.077 0 0 0 .031-.055c.477-4.932-.8-9.216-3.419-13.015a.061.061 0 0 0-.031-.028ZM8.02 14.801c-1.183 0-2.157-1.086-2.157-2.419 0-1.333.955-2.419 2.157-2.419 1.211 0 2.176 1.096 2.157 2.419 0 1.333-.955 2.419-2.157 2.419Zm7.975 0c-1.183 0-2.157-1.086-2.157-2.419 0-1.333.955-2.419 2.157-2.419 1.211 0 2.176 1.096 2.157 2.419 0 1.333-.946 2.419-2.157 2.419Z',
+  };
   const scoreOptions = [
     {
       value: 0,
       label: 'Not interesting',
-      guideClass: 'border-gray-200 bg-gray-50 text-gray-700',
-      selectedClass: 'border-gray-700 bg-gray-800 text-white shadow-sm',
-      numberClass: 'bg-gray-200 text-gray-800',
+      guideClass: 'border-red-200 bg-red-50 text-red-700',
+      selectedClass: 'border-red-600 bg-red-600 text-white shadow-sm',
+      numberClass: 'bg-red-100 text-red-700',
     },
     {
       value: 1,
@@ -188,30 +193,37 @@
     if (github) {
       connections.push({
         platform: 'GitHub',
-        label: `GitHub ${github}`,
+        label: 'GitHub',
+        title: `GitHub ${github}`,
         href: `https://github.com/${encodeURIComponent(github)}`,
-        className: 'border-gray-200 bg-gray-50 text-gray-700 hover:border-gray-400 hover:text-gray-950',
+        className: 'border-gray-200 bg-white text-gray-700 hover:border-gray-400 hover:text-gray-950',
       });
     }
     if (twitter) {
       connections.push({
         platform: 'X',
-        label: `X ${twitter}`,
+        label: 'X',
+        title: `X ${twitter}`,
         href: `https://x.com/${encodeURIComponent(twitter)}`,
-        className: 'border-sky-100 bg-sky-50 text-sky-700 hover:border-sky-300 hover:text-sky-900',
+        className: 'border-gray-200 bg-white text-gray-900 hover:border-gray-400',
       });
     }
     if (discord) {
       connections.push({
         platform: 'Discord',
-        label: `Discord ${discord}`,
+        label: 'Discord',
+        title: `Discord ${discord}`,
         href: '',
-        className: 'border-indigo-100 bg-indigo-50 text-indigo-700',
+        className: 'border-gray-200 bg-white text-indigo-600',
       });
     }
     return connections;
   }
 
+  function socialIconPath(platform) {
+    return socialIconPaths[platform] || socialIconPaths.Discord;
+  }
+
   function evidenceUrl(item) {
     return item?.url || item?.file || '';
   }
@@ -413,10 +425,9 @@
             {reviewFilterTab === 'scored' ? 'No scored candidates yet.' : 'All visible candidates have been scored.'}
           </div>
         {:else}
-          <div class="overflow-hidden rounded-lg border border-emerald-100 bg-white/90 shadow-sm">
-            <div class="divide-y divide-emerald-100/80">
+          <div class="space-y-3">
           {#each filteredCandidates as candidate}
-            <article class="grid gap-4 p-4 transition-colors hover:bg-emerald-50/30 xl:grid-cols-[minmax(0,1fr)_220px] xl:items-start">
+            <article class="grid gap-4 rounded-lg border border-gray-200 bg-white p-4 shadow-sm transition-colors hover:border-emerald-200 hover:bg-emerald-50/20 xl:grid-cols-[minmax(0,1fr)_220px] xl:items-start">
                   <div class="min-w-0">
                     <div class="flex items-start gap-2">
                       <h3 class="min-w-0 flex-1 whitespace-pre-wrap text-lg font-semibold leading-7 text-gray-950 {expandedTitles.has(candidate.id) ? '' : 'line-clamp-2'}">
@@ -442,23 +453,23 @@
                         <a
                           href={profileHref(candidate.user_details)}
                           onclick={(event) => { event.preventDefault(); goToProfile(candidate.user_details); }}
-                          class="inline-flex items-center gap-2 rounded-full border border-emerald-100 bg-emerald-50 px-2.5 py-1.5 text-xs font-semibold text-[#137f4c] transition-colors hover:border-[#19A663] hover:bg-white"
+                          class="inline-flex items-center gap-2 text-sm font-semibold text-gray-950 transition-colors hover:text-[#137f4c]"
                         >
                           {#if candidate.user_details?.profile_image_url}
                             <img
                               src={candidate.user_details.profile_image_url}
                               alt=""
-                              class="h-5 w-5 rounded-full object-cover"
+                              class="h-7 w-7 rounded-full border border-gray-200 object-cover"
                             />
                           {:else}
-                            <span class="inline-flex h-5 w-5 items-center justify-center rounded-full bg-white text-[10px] font-bold text-[#137f4c]">
+                            <span class="inline-flex h-7 w-7 items-center justify-center rounded-full border border-gray-200 bg-gray-50 text-xs font-bold text-[#137f4c]">
                               {profileInitial(candidate.user_details)}
                             </span>
                           {/if}
                           <span>{displayName(candidate.user_details)}</span>
                         </a>
                       {:else}
-                        <span>by {displayName(candidate.user_details)}</span>
+                        <span class="text-sm font-semibold text-gray-950">by {displayName(candidate.user_details)}</span>
                       {/if}
 	                      {#each socialConnections(candidate.user_details) as social}
                         {#if social.href}
@@ -466,13 +477,23 @@
                             href={social.href}
                             target="_blank"
                             rel="noopener noreferrer"
-                            class="rounded-full border px-2.5 py-1 text-xs font-semibold transition-colors {social.className}"
+                            aria-label={social.title}
+                            title={social.title}
+                            class="inline-flex h-8 w-8 items-center justify-center rounded-md border transition-colors {social.className}"
                           >
-                            {social.label}
+                            <svg class="h-4 w-4" viewBox="0 0 24 24" fill="currentColor" aria-hidden="true">
+                              <path d={socialIconPath(social.platform)} />
+                            </svg>
                           </a>
                         {:else}
-                          <span class="rounded-full border px-2.5 py-1 text-xs font-semibold {social.className}">
-                            {social.label}
+                          <span
+                            class="inline-flex h-8 w-8 items-center justify-center rounded-md border {social.className}"
+                            aria-label={social.title}
+                            title={social.title}
+                          >
+                            <svg class="h-4 w-4" viewBox="0 0 24 24" fill="currentColor" aria-hidden="true">
+                              <path d={socialIconPath(social.platform)} />
+                            </svg>
 	                          </span>
 	                        {/if}
 	                      {/each}
@@ -562,7 +583,6 @@
                   </div>
             </article>
 	          {/each}
-	        </div>
           </div>
         {/if}
 	      {/if}

From e71352ce35c0d815e86e1bd1338f72398d50ced6 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 14:30:55 +0200
Subject: [PATCH 2/8] Add steward score reasons (#829)

* Add steward score reasons

* Address steward score review feedback
---
 backend/stewards/admin.py                     |  6 +-
 .../0012_feature_candidate_score_reason.py    | 16 ++++
 backend/stewards/models.py                    |  6 ++
 backend/stewards/serializers.py               |  9 +-
 backend/stewards/tests.py                     | 24 ++++-
 backend/stewards/views.py                     | 44 +++++++---
 frontend/src/lib/api.js                       |  2 +-
 .../src/routes/StewardFeatureReviews.svelte   | 88 +++++++++++++++++--
 8 files changed, 167 insertions(+), 28 deletions(-)
 create mode 100644 backend/stewards/migrations/0012_feature_candidate_score_reason.py

diff --git a/backend/stewards/admin.py b/backend/stewards/admin.py
index ed605aa7..50ef2117 100644
--- a/backend/stewards/admin.py
+++ b/backend/stewards/admin.py
@@ -63,7 +63,7 @@ class StewardPermissionAdmin(admin.ModelAdmin):
 
 @admin.register(FeatureCandidateScore)
 class FeatureCandidateScoreAdmin(admin.ModelAdmin):
-    list_display = ('submission', 'steward', 'score', 'created_at', 'updated_at')
+    list_display = ('submission', 'steward', 'score', 'reason_preview', 'created_at', 'updated_at')
     list_filter = ('score', 'created_at', 'updated_at')
     search_fields = (
         'submission__title',
@@ -76,6 +76,10 @@ class FeatureCandidateScoreAdmin(admin.ModelAdmin):
     readonly_fields = ('created_at', 'updated_at')
     ordering = ('-updated_at',)
 
+    def reason_preview(self, obj):
+        return obj.reason[:80] + '...' if len(obj.reason) > 80 else obj.reason
+    reason_preview.short_description = 'Reason'
+
 
 @admin.register(ReviewTemplate)
 class ReviewTemplateAdmin(admin.ModelAdmin):
diff --git a/backend/stewards/migrations/0012_feature_candidate_score_reason.py b/backend/stewards/migrations/0012_feature_candidate_score_reason.py
new file mode 100644
index 00000000..9fac39dc
--- /dev/null
+++ b/backend/stewards/migrations/0012_feature_candidate_score_reason.py
@@ -0,0 +1,16 @@
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('stewards', '0011_feature_candidate_scoring'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='featurecandidatescore',
+            name='reason',
+            field=models.TextField(blank=True, default='', help_text='Reviewer note explaining what stood out for this score.', max_length=2000),
+        ),
+    ]
diff --git a/backend/stewards/models.py b/backend/stewards/models.py
index c1959241..39b53540 100644
--- a/backend/stewards/models.py
+++ b/backend/stewards/models.py
@@ -42,6 +42,12 @@ class FeatureCandidateScore(BaseModel):
         validators=[MinValueValidator(0), MaxValueValidator(3)],
         help_text="0 = not interesting, 1 = weak, 2 = good, 3 = strong.",
     )
+    reason = models.TextField(
+        max_length=2000,
+        blank=True,
+        default='',
+        help_text="Reviewer note explaining what stood out for this score.",
+    )
 
     class Meta:
         unique_together = ['submission', 'steward']
diff --git a/backend/stewards/serializers.py b/backend/stewards/serializers.py
index ad974a90..9f55ed63 100644
--- a/backend/stewards/serializers.py
+++ b/backend/stewards/serializers.py
@@ -81,13 +81,18 @@ class FeatureCandidateSubmissionSerializer(serializers.Serializer):
     created_at = serializers.DateTimeField(read_only=True)
     updated_at = serializers.DateTimeField(read_only=True)
     own_score = serializers.SerializerMethodField()
+    own_score_reason = serializers.SerializerMethodField()
     user_details = serializers.SerializerMethodField()
     contribution_type_details = serializers.SerializerMethodField()
     evidence_items = serializers.SerializerMethodField()
 
     def get_own_score(self, obj):
-        score_map = self.context.get('own_score_map', {})
-        return score_map.get(obj.id)
+        review_map = self.context.get('own_review_map', {})
+        return (review_map.get(obj.id) or {}).get('score')
+
+    def get_own_score_reason(self, obj):
+        review_map = self.context.get('own_review_map', {})
+        return (review_map.get(obj.id) or {}).get('reason') or ''
 
     def get_user_details(self, obj):
         return feature_candidate_user_data(obj.user)
diff --git a/backend/stewards/tests.py b/backend/stewards/tests.py
index b82d10f8..4c682833 100644
--- a/backend/stewards/tests.py
+++ b/backend/stewards/tests.py
@@ -193,6 +193,7 @@ def test_reviewer_list_is_blind_and_only_includes_interesting_accepted_projects(
         self.assertEqual(row['state'], 'accepted')
         self.assertEqual(row['contribution_type_details']['slug'], 'projects')
         self.assertIsNone(row['own_score'])
+        self.assertEqual(row['own_score_reason'], '')
         self.assertNotIn('id', row['user_details'])
         self.assertEqual(row['user_details']['address'], self.submitter.address)
         self.assertEqual(row['user_details']['github_connection'], {'platform_username': 'submitter-gh'})
@@ -220,21 +221,29 @@ def test_reviewer_can_create_and_edit_own_score(self):
 
         create_response = self.client.post(
             f'/api/v1/stewards/feature-reviews/{self.submission.id}/score/',
-            {'score': 2},
+            {'score': 2, 'reason': 'Strong ecosystem fit, but the demo needs polish.'},
         )
         edit_response = self.client.post(
             f'/api/v1/stewards/feature-reviews/{self.submission.id}/score/',
-            {'score': 3},
+            {'score': 3, 'reason': 'The contract design and working demo stood out.'},
         )
 
         self.assertEqual(create_response.status_code, status.HTTP_200_OK)
+        self.assertEqual(create_response.data['reason'], 'Strong ecosystem fit, but the demo needs polish.')
         self.assertEqual(edit_response.status_code, status.HTTP_200_OK)
         scores = FeatureCandidateScore.objects.filter(
             submission=self.submission,
             steward=self.reviewer_steward,
         )
         self.assertEqual(scores.count(), 1)
-        self.assertEqual(scores.get().score, 3)
+        score = scores.get()
+        self.assertEqual(score.score, 3)
+        self.assertEqual(score.reason, 'The contract design and working demo stood out.')
+
+        list_response = self.client.get('/api/v1/stewards/feature-reviews/')
+        row = list_response.data['results'][0]
+        self.assertEqual(row['own_score'], 3)
+        self.assertEqual(row['own_score_reason'], 'The contract design and working demo stood out.')
 
     def test_unpermitted_steward_cannot_score(self):
         self.client.force_authenticate(user=self.denied_user)
@@ -264,6 +273,15 @@ def test_reviewer_score_validation_rejects_invalid_values(self):
                 self.assertIn('score', response.data)
                 self.assertFalse(FeatureCandidateScore.objects.exists())
 
+        response = self.client.post(
+            url,
+            {'score': 2, 'reason': 'x' * 2001},
+            format='json',
+        )
+        self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
+        self.assertIn('reason', response.data)
+        self.assertFalse(FeatureCandidateScore.objects.exists())
+
     def test_staff_admin_sees_aggregates_and_manual_review_flag(self):
         second_user = User.objects.create_user(
             email='second-reviewer@example.com',
diff --git a/backend/stewards/views.py b/backend/stewards/views.py
index 02897537..1f389fc8 100644
--- a/backend/stewards/views.py
+++ b/backend/stewards/views.py
@@ -69,17 +69,21 @@ def _interesting_queryset(self, include_scores=False):
             queryset = queryset.prefetch_related('feature_candidate_scores')
         return queryset
 
-    def _own_score_map(self, request):
+    def _own_review_map(self, request):
         if not hasattr(request.user, 'steward'):
             return {}
-        return dict(
-            FeatureCandidateScore.objects.filter(
+        return {
+            review['submission_id']: {
+                'score': review['score'],
+                'reason': review['reason'] or '',
+            }
+            for review in FeatureCandidateScore.objects.filter(
                 steward=request.user.steward,
                 submission__is_interesting=True,
                 submission__state='accepted',
                 submission__contribution_type__slug='projects',
-            ).values_list('submission_id', 'score')
-        )
+            ).values('submission_id', 'score', 'reason')
+        }
 
     def _summary_map(self, submissions):
         result = {}
@@ -106,13 +110,13 @@ def list(self, request):
             )
 
         submissions = list(self._interesting_queryset())
-        own_score_map = self._own_score_map(request)
+        own_review_map = self._own_review_map(request)
         serializer = FeatureCandidateSubmissionSerializer(
             submissions,
             many=True,
-            context={'own_score_map': own_score_map},
+            context={'own_review_map': own_review_map},
         )
-        scored_count = sum(1 for submission in submissions if submission.id in own_score_map)
+        scored_count = sum(1 for submission in submissions if submission.id in own_review_map)
         return Response({
             'results': serializer.data,
             'progress': {
@@ -129,21 +133,35 @@ def score(self, request, pk=None):
                 status=status.HTTP_403_FORBIDDEN,
             )
 
+        errors = {}
         try:
             score = serializers.IntegerField(min_value=0, max_value=3).run_validation(
                 request.data.get('score')
             )
         except serializers.ValidationError as exc:
-            return Response({'score': exc.detail}, status=status.HTTP_400_BAD_REQUEST)
+            errors['score'] = exc.detail
+
+        try:
+            reason = serializers.CharField(
+                required=False,
+                allow_blank=True,
+                trim_whitespace=True,
+                max_length=2000,
+            ).run_validation(request.data.get('reason', ''))
+        except serializers.ValidationError as exc:
+            errors['reason'] = exc.detail
+
+        if errors:
+            return Response(errors, status=status.HTTP_400_BAD_REQUEST)
 
         submission = get_object_or_404(self._interesting_queryset(), pk=pk)
         FeatureCandidateScore.objects.update_or_create(
             submission=submission,
             steward=request.user.steward,
-            defaults={'score': score},
+            defaults={'score': score, 'reason': reason},
         )
 
-        return Response({'submission': str(submission.id), 'score': score})
+        return Response({'submission': str(submission.id), 'score': score, 'reason': reason})
 
     @action(detail=False, methods=['get'], url_path='admin')
     def admin(self, request):
@@ -154,7 +172,7 @@ def admin(self, request):
             )
 
         submissions = list(self._interesting_queryset(include_scores=True))
-        own_score_map = self._own_score_map(request)
+        own_review_map = self._own_review_map(request)
         summary_map = self._summary_map(submissions)
         submissions.sort(
             key=lambda submission: (
@@ -168,7 +186,7 @@ def admin(self, request):
         serializer = FeatureCandidateAdminSerializer(
             submissions,
             many=True,
-            context={'own_score_map': own_score_map, 'summary_map': summary_map},
+            context={'own_review_map': own_review_map, 'summary_map': summary_map},
         )
         return Response({'results': serializer.data})
 
diff --git a/frontend/src/lib/api.js b/frontend/src/lib/api.js
index e0b60ce7..075065a4 100644
--- a/frontend/src/lib/api.js
+++ b/frontend/src/lib/api.js
@@ -324,7 +324,7 @@ export const stewardAPI = {
   // Feature candidate scoring
   getFeatureReviewAccess: () => api.get('/stewards/feature-reviews/access/'),
   getFeatureReviewCandidates: () => api.get('/stewards/feature-reviews/'),
-  scoreFeatureReviewCandidate: (id, score) => api.post(`/stewards/feature-reviews/${id}/score/`, { score }),
+  scoreFeatureReviewCandidate: (id, score, reason = '') => api.post(`/stewards/feature-reviews/${id}/score/`, { score, reason }),
   getFeatureReviewAdmin: () => api.get('/stewards/feature-reviews/admin/')
 };
 
diff --git a/frontend/src/routes/StewardFeatureReviews.svelte b/frontend/src/routes/StewardFeatureReviews.svelte
index 4a419bc5..8762a585 100644
--- a/frontend/src/routes/StewardFeatureReviews.svelte
+++ b/frontend/src/routes/StewardFeatureReviews.svelte
@@ -56,6 +56,7 @@
   let activeTab = $state('review');
   let reviewFilterTab = $state('not_scored');
   let saving = $state(new Set());
+  let scoreDrafts = $state({});
   let expandedTitles = $state(new Set());
   let expandedDescriptions = $state(new Set());
   let expandedAdminRows = $state(new Set());
@@ -116,6 +117,15 @@
     const response = await stewardAPI.getFeatureReviewCandidates();
     candidates = response.data?.results || [];
     progress = response.data?.progress || { scored: 0, total: candidates.length };
+    scoreDrafts = Object.fromEntries(
+      candidates.map(candidate => [
+        candidate.id,
+        {
+          score: candidate.own_score,
+          reason: candidate.own_score_reason || '',
+        },
+      ])
+    );
   }
 
   async function loadAdminRows() {
@@ -138,21 +148,64 @@
     }
   }
 
-  async function scoreCandidate(candidate, score) {
+  function draftFor(candidate) {
+    return scoreDrafts[candidate.id] || {
+      score: candidate.own_score,
+      reason: candidate.own_score_reason || '',
+    };
+  }
+
+  function draftScore(candidate) {
+    return draftFor(candidate).score;
+  }
+
+  function draftReason(candidate) {
+    return draftFor(candidate).reason || '';
+  }
+
+  function updateScoreDraft(candidate, patch) {
+    scoreDrafts = {
+      ...scoreDrafts,
+      [candidate.id]: {
+        ...draftFor(candidate),
+        ...patch,
+      },
+    };
+  }
+
+  async function scoreCandidate(candidate) {
+    const draft = draftFor(candidate);
+    if (!Number.isInteger(draft.score)) {
+      showError('Select a score before saving.');
+      return;
+    }
+
     saving.add(candidate.id);
     saving = new Set(saving);
     try {
-      await stewardAPI.scoreFeatureReviewCandidate(candidate.id, score);
+      const response = await stewardAPI.scoreFeatureReviewCandidate(
+        candidate.id,
+        draft.score,
+        draft.reason || ''
+      );
+      const savedReason = response.data?.reason ?? draft.reason ?? '';
       const wasUnscored = candidate.own_score === null || candidate.own_score === undefined;
       candidates = candidates.map(item =>
-        item.id === candidate.id ? { ...item, own_score: score } : item
+        item.id === candidate.id
+          ? { ...item, own_score: draft.score, own_score_reason: savedReason }
+          : item
       );
+      updateScoreDraft(candidate, { score: draft.score, reason: savedReason });
       if (wasUnscored) {
         progress = { ...progress, scored: progress.scored + 1 };
       }
       showSuccess('Score saved');
     } catch (err) {
-      showError(err.response?.data?.detail || err.response?.data?.score || 'Failed to save score.');
+      const apiError = err.response?.data;
+      const scoreError = Array.isArray(apiError?.score) ? apiError.score[0] : apiError?.score;
+      const reasonError = Array.isArray(apiError?.reason) ? apiError.reason[0] : apiError?.reason;
+      const message = apiError?.detail || scoreError || reasonError || 'Failed to save score.';
+      showError(typeof message === 'string' ? message : 'Failed to save score.');
     } finally {
       saving.delete(candidate.id);
       saving = new Set(saving);
@@ -308,12 +361,12 @@
   }
 
   function scoreButtonClass(candidate, option) {
-    if (candidate.own_score === option.value) return option.selectedClass;
+    if (draftScore(candidate) === option.value) return option.selectedClass;
     return `${option.guideClass} hover:border-[#19A663] hover:bg-white hover:text-gray-950`;
   }
 
   function scoreNumberClass(candidate, option) {
-    if (candidate.own_score === option.value) return 'bg-white/20 text-current';
+    if (draftScore(candidate) === option.value) return 'bg-white/20 text-current';
     return option.numberClass;
   }
 
@@ -564,12 +617,12 @@
                     {/if}
                   </div>
 
-                  <div class="grid grid-cols-1 gap-2">
+                  <div class="grid grid-cols-1 gap-3">
                     {#each scoreOptions as option}
                       <button
                         type="button"
                         disabled={saving.has(candidate.id)}
-                        onclick={() => scoreCandidate(candidate, option.value)}
+                        onclick={() => updateScoreDraft(candidate, { score: option.value })}
                         title={`${option.value} - ${option.label}`}
                         aria-label={`Score ${option.value} - ${option.label}`}
                         class="flex min-h-16 items-center justify-start gap-3 rounded-md border px-3 py-2 text-left text-xs font-semibold transition-colors active:scale-[0.96] disabled:cursor-not-allowed disabled:opacity-60 {scoreButtonClass(candidate, option)}"
@@ -580,6 +633,25 @@
                         <span class="leading-tight">{option.label}</span>
                       </button>
                     {/each}
+                    <label class="block">
+                      <span class="text-xs font-semibold uppercase tracking-wide text-gray-500">Reason</span>
+                      <textarea
+                        value={draftReason(candidate)}
+                        oninput={(event) => updateScoreDraft(candidate, { reason: event.currentTarget.value })}
+                        maxlength="2000"
+                        rows="4"
+                        placeholder="What stood out in this project for the score?"
+                        class="mt-2 min-h-28 w-full resize-y rounded-md border border-gray-200 bg-white px-3 py-2 text-sm leading-5 text-gray-800 shadow-sm outline-none transition-colors placeholder:text-gray-400 focus:border-[#19A663] focus:ring-2 focus:ring-emerald-100"
+                      ></textarea>
+                    </label>
+                    <button
+                      type="button"
+                      disabled={saving.has(candidate.id) || !Number.isInteger(draftScore(candidate))}
+                      onclick={() => scoreCandidate(candidate)}
+                      class="inline-flex min-h-11 items-center justify-center rounded-md bg-[#19A663] px-4 py-2 text-sm font-semibold text-white shadow-sm transition-colors hover:bg-[#137f4c] disabled:cursor-not-allowed disabled:bg-gray-300"
+                    >
+                      {saving.has(candidate.id) ? 'Saving...' : 'Save opinion'}
+                    </button>
                   </div>
             </article>
 	          {/each}

From efd5b59212c0f3f651eef3c55202c6fd5d2e6520 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 16:16:08 +0200
Subject: [PATCH 3/8] Add metric snapshots admin

---
 backend/api/admin.py | 41 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 41 insertions(+)
 create mode 100644 backend/api/admin.py

diff --git a/backend/api/admin.py b/backend/api/admin.py
new file mode 100644
index 00000000..d0052b92
--- /dev/null
+++ b/backend/api/admin.py
@@ -0,0 +1,41 @@
+from django.contrib import admin
+
+from .models import MetricSnapshot
+
+
+@admin.register(MetricSnapshot)
+class MetricSnapshotAdmin(admin.ModelAdmin):
+    list_display = (
+        'metric_key',
+        'source',
+        'status',
+        'value',
+        'unit',
+        'observed_at',
+        'created_at',
+    )
+    list_filter = ('metric_key', 'source', 'status', 'unit')
+    search_fields = ('metric_key', 'source', 'label', 'error')
+    readonly_fields = (
+        'metric_key',
+        'source',
+        'label',
+        'value',
+        'unit',
+        'observed_at',
+        'dimensions',
+        'raw_payload',
+        'status',
+        'error',
+        'created_at',
+        'updated_at',
+    )
+    ordering = ('-observed_at', '-created_at')
+    date_hierarchy = 'observed_at'
+    actions = None
+
+    def has_add_permission(self, request):
+        return False
+
+    def has_delete_permission(self, request, obj=None):
+        return False

From ec40c3ab050d51ad1844680ef160ef3f7952d523 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 16:56:41 +0200
Subject: [PATCH 4/8] Make public dashboards and profiles accessible

---
 backend/api/metrics_views.py                  |   8 +-
 backend/api/tests.py                          |  65 ++++-
 .../tests/test_canceled_submissions.py        |  33 +++
 .../tests/test_is_submittable.py              |   7 +-
 .../tests/test_steward_permissions.py         |  20 +-
 backend/contributions/views.py                |  43 ++-
 backend/leaderboard/tests/test_stats.py       |   4 +-
 backend/leaderboard/views.py                  |   2 +-
 backend/stewards/tests.py                     |  24 ++
 backend/stewards/views.py                     |   2 +-
 backend/tally/settings.py                     |   3 +
 backend/users/tests/test_email_security.py    |  71 ++++-
 backend/users/views.py                        |  21 +-
 frontend/src/App.svelte                       |  24 +-
 frontend/src/components/AuthButton.svelte     |   7 +
 frontend/src/components/Navbar.svelte         |  18 +-
 frontend/src/components/Sidebar.svelte        | 154 ++++-------
 .../src/components/ui/SectionHeader.svelte    |  23 +-
 frontend/src/routes/Dashboard.svelte          | 258 ++++++------------
 frontend/src/routes/Leaderboard.svelte        |  88 +++---
 frontend/src/routes/Metrics.svelte            |  47 +---
 21 files changed, 499 insertions(+), 423 deletions(-)

diff --git a/backend/api/metrics_views.py b/backend/api/metrics_views.py
index 585c3e7d..ed458f30 100644
--- a/backend/api/metrics_views.py
+++ b/backend/api/metrics_views.py
@@ -19,6 +19,7 @@
 from utils.pagination import SafePageNumberPagination
 from validators.permissions import IsCronToken
 from .overview_metrics import (
+    build_overview_payload,
     empty_network_activity_payload,
     empty_overview_payload,
     latest_network_activity,
@@ -39,7 +40,12 @@ class OverviewMetricsView(APIView):
     permission_classes = [permissions.AllowAny]
 
     def get(self, request):
-        return Response(latest_overview_payload() or empty_overview_payload())
+        try:
+            payload = latest_overview_payload() or build_overview_payload()
+        except Exception:
+            logger.exception("Failed to build public overview metrics payload")
+            payload = empty_overview_payload()
+        return Response(payload)
 
 
 class RefreshOverviewMetricsView(APIView):
diff --git a/backend/api/tests.py b/backend/api/tests.py
index 387c50b6..7ce6ccea 100644
--- a/backend/api/tests.py
+++ b/backend/api/tests.py
@@ -661,14 +661,75 @@ def test_public_overview_returns_latest_aggregated_payload(self):
         self.assertEqual(response.data['top_validators'][1]['name'], 'Validator One')
         self.assertEqual(response.data['top_validators'][1]['total_stake_gen'], 250)
 
-    def test_public_overview_without_aggregate_does_not_rebuild_live_payload(self):
+    def test_public_overview_without_aggregate_includes_live_portal_counts(self):
+        builder_user = self._create_user(
+            'overview-fallback-builder@example.com',
+            '0x0000000000000000000000000000000000001201',
+            'Fallback Builder',
+        )
+        validator_user = self._create_user(
+            'overview-fallback-validator@example.com',
+            '0x0000000000000000000000000000000000001202',
+            'Fallback Validator',
+        )
+        community_user = self._create_user(
+            'overview-fallback-community@example.com',
+            '0x0000000000000000000000000000000000001203',
+            'Fallback Community',
+        )
+        Validator.objects.create(user=validator_user)
+
+        builder_category, _ = Category.objects.get_or_create(
+            slug='builder',
+            defaults={'name': 'Builder'},
+        )
+        builder_type, _ = ContributionType.objects.get_or_create(
+            slug='overview-fallback-builder-work',
+            defaults={
+                'name': 'Fallback builder work',
+                'category': builder_category,
+                'is_submittable': True,
+            },
+        )
+        community_category, _ = Category.objects.get_or_create(
+            slug='community',
+            defaults={'name': 'Community'},
+        )
+        community_type, _ = ContributionType.objects.get_or_create(
+            slug='overview-fallback-community-post',
+            defaults={
+                'name': 'Fallback community post',
+                'category': community_category,
+                'is_submittable': True,
+            },
+        )
+        Contribution.objects.bulk_create([
+            Contribution(
+                user=builder_user,
+                contribution_type=builder_type,
+                points=10,
+                frozen_global_points=10,
+                contribution_date=timezone.now(),
+            ),
+            Contribution(
+                user=community_user,
+                contribution_type=community_type,
+                points=5,
+                frozen_global_points=5,
+                contribution_date=timezone.now(),
+            )
+        ])
         MetricSnapshot.objects.create(metric_key='discord_members', source='discord', value=111)
 
         response = self.client.get('/api/v1/metrics/overview/')
 
         self.assertEqual(response.status_code, status.HTTP_200_OK)
         self.assertEqual(response.data['version'], 1)
-        self.assertIsNone(response.data['metrics']['discord_members'])
+        self.assertEqual(response.data['metrics']['builders']['value'], 1)
+        self.assertEqual(response.data['metrics']['validators']['value'], 1)
+        self.assertEqual(response.data['metrics']['community_members']['value'], 1)
+        self.assertEqual(response.data['metrics']['contributions']['value'], 2)
+        self.assertEqual(response.data['metrics']['discord_members']['value'], 111.0)
         self.assertEqual(response.data['top_validators'], [])
 
     @override_settings(CRON_SYNC_TOKEN='overview-secret')
diff --git a/backend/contributions/tests/test_canceled_submissions.py b/backend/contributions/tests/test_canceled_submissions.py
index 26ed9869..b4a0a5af 100644
--- a/backend/contributions/tests/test_canceled_submissions.py
+++ b/backend/contributions/tests/test_canceled_submissions.py
@@ -93,6 +93,39 @@ def test_canceled_submissions_are_not_counted_as_rejected(self):
         self.assertEqual(response.data['totals']['rejected'], 1)
         self.assertEqual(response.data['totals']['canceled'], 1)
 
+    def test_daily_metrics_are_public_aggregate_counts(self):
+        self._create_submission(state='accepted', staff_reply='Accepted')
+        self.client.force_authenticate(user=None)
+
+        today = timezone.now().date().isoformat()
+        response = self.client.get(
+            '/api/v1/steward-submissions/daily-metrics/',
+            {
+                'group_by': 'day',
+                'start_date': today,
+                'end_date': today,
+            },
+        )
+
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data['totals']['accepted'], 1)
+
+    def test_steward_stats_are_public_aggregate_counts_for_anonymous_users(self):
+        self._create_submission(state='pending')
+        self._create_submission(state='accepted', staff_reply='Accepted')
+        self._create_submission(state='rejected', staff_reply='Rejected')
+        self._create_submission(state='canceled', staff_reply='Canceled by user')
+        self.client.force_authenticate(user=None)
+
+        response = self.client.get('/api/v1/steward-submissions/stats/')
+
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data['pending_count'], 1)
+        self.assertEqual(response.data['total_reviewed'], 2)
+        self.assertEqual(response.data['total_accepted'], 1)
+        self.assertEqual(response.data['total_rejected'], 1)
+        self.assertEqual(response.data['acceptance_rate'], 50.0)
+
     def test_canceled_submissions_are_not_reviewed_decisions(self):
         self._create_submission(state='rejected', staff_reply='Not valid')
         self._create_submission(state='canceled', staff_reply='Canceled by user')
diff --git a/backend/contributions/tests/test_is_submittable.py b/backend/contributions/tests/test_is_submittable.py
index d308aacd..242f7e5c 100644
--- a/backend/contributions/tests/test_is_submittable.py
+++ b/backend/contributions/tests/test_is_submittable.py
@@ -69,15 +69,12 @@ def setUp(self):
         
         self.api_url = reverse('contributiontype-list')
 
-    def test_contribution_types_require_authentication(self):
+    def test_contribution_types_allow_public_read_access(self):
         self.client.force_authenticate(user=None)
 
         response = self.client.get(self.api_url)
 
-        self.assertIn(
-            response.status_code,
-            [status.HTTP_401_UNAUTHORIZED, status.HTTP_403_FORBIDDEN],
-        )
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
     
     def test_is_submittable_field_default_value(self):
         """Test that is_submittable defaults to True."""
diff --git a/backend/contributions/tests/test_steward_permissions.py b/backend/contributions/tests/test_steward_permissions.py
index 7ce0f332..a800355c 100644
--- a/backend/contributions/tests/test_steward_permissions.py
+++ b/backend/contributions/tests/test_steward_permissions.py
@@ -118,9 +118,11 @@ def test_non_authenticated_cannot_access_steward_endpoints(self):
         )
         self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
         
-        # Steward stats require steward permission.
+        # Steward stats are public aggregate counts for the dashboard.
         response = self.client.get('/api/v1/steward-submissions/stats/')
-        self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data['pending_count'], 1)
+        self.assertEqual(response.data['total_reviewed'], 0)
     
     def test_regular_user_cannot_access_steward_endpoints(self):
         """Test that regular users cannot access steward endpoints."""
@@ -138,9 +140,11 @@ def test_regular_user_cannot_access_steward_endpoints(self):
         )
         self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
         
-        # Steward stats require steward permission.
+        # Steward stats are public aggregate counts for the dashboard.
         response = self.client.get('/api/v1/steward-submissions/stats/')
-        self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data['pending_count'], 1)
+        self.assertEqual(response.data['total_reviewed'], 0)
     
     def test_steward_can_access_steward_endpoints(self):
         """Test that stewards can access steward endpoints."""
@@ -214,9 +218,11 @@ def test_propose_only_steward_only_sees_pending_permitted_submissions(self):
         response = self.client.get('/api/v1/steward-submissions/daily-metrics/')
 
         self.assertEqual(response.status_code, status.HTTP_200_OK)
-        self.assertEqual(response.data['totals']['pending_review'], 1)
-        self.assertEqual(response.data['totals']['accepted'], 0)
-        self.assertEqual(response.data['totals']['points_awarded'], 0)
+        # Daily metrics are public aggregate data for the Overview > Metrics
+        # page, so they are not scoped to the steward's review permissions.
+        self.assertEqual(response.data['totals']['pending_review'], 2)
+        self.assertEqual(response.data['totals']['accepted'], 1)
+        self.assertEqual(response.data['totals']['points_awarded'], accepted_contribution.frozen_global_points)
 
     def test_propose_only_steward_can_edit_active_proposal_note(self):
         """Proposal-only stewards can correct their generated note while pending."""
diff --git a/backend/contributions/views.py b/backend/contributions/views.py
index 9f27e065..713efb5d 100644
--- a/backend/contributions/views.py
+++ b/backend/contributions/views.py
@@ -68,7 +68,7 @@ class ContributionTypeViewSet(viewsets.ReadOnlyModelViewSet):
     """
     queryset = ContributionType.objects.all()
     serializer_class = ContributionTypeSerializer
-    permission_classes = [permissions.IsAuthenticated]
+    permission_classes = [permissions.AllowAny]
     filter_backends = [filters.SearchFilter, filters.OrderingFilter]
     search_fields = ['name', 'description']
     ordering_fields = ['name', 'created_at']
@@ -2355,17 +2355,33 @@ def update_accepted(self, request, pk=None):
             status=status.HTTP_200_OK
         )
 
-    @action(detail=False, methods=['get'], url_path='stats')
+    @action(
+        detail=False,
+        methods=['get'],
+        url_path='stats',
+        permission_classes=[permissions.AllowAny],
+    )
     def stats(self, request):
         """Get statistics for steward dashboard."""
-        visible_qs = self._visible_submission_queryset()
-        total_pending = visible_qs.filter(state='pending').count()
+        is_steward_user = bool(
+            request.user
+            and request.user.is_authenticated
+            and hasattr(request.user, 'steward')
+        )
+        if is_steward_user:
+            visible_qs = self._visible_submission_queryset()
+            reviewed_qs = visible_qs.filter(reviewed_by=request.user).exclude(state='canceled')
+        else:
+            visible_qs = SubmittedContribution.objects.filter(user__visible=True)
+            reviewed_qs = visible_qs.filter(
+                state__in=['accepted', 'rejected', 'more_info_needed']
+            )
 
-        reviewed_qs = visible_qs.filter(reviewed_by=request.user).exclude(state='canceled')
+        total_pending = visible_qs.filter(state='pending').count()
         total_reviewed = reviewed_qs.count()
 
         # Get last review time
-        last_review = reviewed_qs.order_by('-reviewed_at').first()
+        last_review = reviewed_qs.filter(reviewed_at__isnull=False).order_by('-reviewed_at').first()
 
         last_review_time = last_review.reviewed_at if last_review else None
 
@@ -2388,7 +2404,13 @@ def stats(self, request):
             'total_info_requested': total_info_requested
         })
 
-    @action(detail=False, methods=['get'], url_path='daily-metrics')
+    @action(
+        detail=False,
+        methods=['get'],
+        url_path='daily-metrics',
+        permission_classes=[permissions.AllowAny],
+        authentication_classes=[],
+    )
     def daily_metrics(self, request):
         """
         Get time-series metrics for submissions.
@@ -2414,9 +2436,10 @@ def daily_metrics(self, request):
         """
         from datetime import datetime, timedelta
         from django.db.models import Min, Max
-        # Build base queryset with steward visibility and optional filters first
-        # (needed for date detection).
-        base_qs = self._visible_submission_queryset()
+        # Public aggregate metrics for the Overview > Metrics page. This action
+        # returns counts only; detailed steward review lists/actions remain
+        # protected by the viewset's default IsSteward permission.
+        base_qs = SubmittedContribution.objects.filter(user__visible=True)
 
         category = request.query_params.get('category')
         if category:
diff --git a/backend/leaderboard/tests/test_stats.py b/backend/leaderboard/tests/test_stats.py
index 36fe932c..2de1a9e7 100644
--- a/backend/leaderboard/tests/test_stats.py
+++ b/backend/leaderboard/tests/test_stats.py
@@ -135,12 +135,12 @@ def _create_current_mee6_xp(self, user, discord_id, xp):
             synced_at=now,
         )
 
-    def test_leaderboard_requires_authentication(self):
+    def test_leaderboard_allows_public_read_access(self):
         self.client.force_authenticate(user=None)
 
         response = self.client.get('/api/v1/leaderboard/')
 
-        self.assertIn(response.status_code, [401, 403])
+        self.assertEqual(response.status_code, 200)
 
     def test_community_member_count_uses_accepted_community_contributions(self):
         now = timezone.now()
diff --git a/backend/leaderboard/views.py b/backend/leaderboard/views.py
index d8c65a0d..cf7dfe4c 100644
--- a/backend/leaderboard/views.py
+++ b/backend/leaderboard/views.py
@@ -60,7 +60,7 @@ class LeaderboardViewSet(viewsets.ReadOnlyModelViewSet):
     """
     queryset = LeaderboardEntry.objects.filter(user__visible=True)
     serializer_class = LeaderboardEntrySerializer
-    permission_classes = [permissions.IsAuthenticated]
+    permission_classes = [permissions.AllowAny]
     filter_backends = [filters.SearchFilter, filters.OrderingFilter]
     search_fields = ['user__name', 'user__address']
     ordering_fields = ['rank', 'total_points', 'updated_at']
diff --git a/backend/stewards/tests.py b/backend/stewards/tests.py
index b82d10f8..f41de52a 100644
--- a/backend/stewards/tests.py
+++ b/backend/stewards/tests.py
@@ -42,6 +42,30 @@ def test_regular_user_cannot_mutate_arbitrary_steward_profile(self):
 
         self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
 
+    def test_public_steward_list_only_includes_visible_users(self):
+        visible_user = User.objects.create_user(
+            email='visible-steward@example.com',
+            password='testpass123',
+            name='Visible Steward',
+            visible=True,
+        )
+        hidden_user = User.objects.create_user(
+            email='hidden-steward@example.com',
+            password='testpass123',
+            name='Hidden Steward',
+            visible=False,
+        )
+        Steward.objects.create(user=visible_user)
+        Steward.objects.create(user=hidden_user)
+        self.client.force_authenticate(user=None)
+
+        response = self.client.get('/api/v1/stewards/')
+
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        names = {item['name'] for item in response.data}
+        self.assertIn('Visible Steward', names)
+        self.assertNotIn('Hidden Steward', names)
+
 
 class FeatureCandidateReviewAPITestCase(APITestCase):
     def setUp(self):
diff --git a/backend/stewards/views.py b/backend/stewards/views.py
index 02897537..10444cc6 100644
--- a/backend/stewards/views.py
+++ b/backend/stewards/views.py
@@ -225,7 +225,7 @@ def list(self, request, *args, **kwargs):
         List all stewards with user details, role, and permitted categories.
         Allow public access to view steward list.
         """
-        stewards = self.get_queryset().select_related('user').prefetch_related(
+        stewards = self.get_queryset().filter(user__visible=True).select_related('user').prefetch_related(
             'permissions__contribution_type'
         )
         data = []
diff --git a/backend/tally/settings.py b/backend/tally/settings.py
index 9692514f..e52a9415 100644
--- a/backend/tally/settings.py
+++ b/backend/tally/settings.py
@@ -211,6 +211,9 @@ def get_required_env(key):
         'poap_claim_secret': '10/minute',
         # SIWE nonce/login are unauthenticated: bound per-IP brute force
         'siwe_auth': '30/minute',
+        # Public profile/search surfaces: allow normal browsing, bound scraping
+        'public_user_search': '30/minute',
+        'public_user_profile': '60/minute',
         # Wallet linking is a one-time action per validator
         'wallet_link': '10/hour',
     },
diff --git a/backend/users/tests/test_email_security.py b/backend/users/tests/test_email_security.py
index 43f4cfef..33421fc1 100644
--- a/backend/users/tests/test_email_security.py
+++ b/backend/users/tests/test_email_security.py
@@ -1,11 +1,15 @@
 """
 Tests for email security - authentication emails are only exposed to the owner.
 """
+from unittest.mock import patch
+
+from django.core.cache import cache
 from django.test import TestCase
 from django.contrib.auth import get_user_model
 from django.utils import timezone
 from rest_framework.test import APIClient
 from rest_framework import status
+from rest_framework.throttling import SimpleRateThrottle
 from rest_framework_simplejwt.tokens import RefreshToken
 from contributions.node_upgrade.models import TargetNodeVersion
 from leaderboard.models import LeaderboardEntry
@@ -20,6 +24,7 @@ class EmailSecurityTests(TestCase):
     
     def setUp(self):
         """Set up test client and users."""
+        cache.clear()
         self.client = APIClient()
         
         # Create a user with auto-generated email (unverified)
@@ -150,9 +155,11 @@ def test_verified_email_shown_in_own_profile(self):
         self.assertTrue(response.data['is_email_verified'])
     
     def test_unverified_email_not_exposed_in_public_profile(self):
-        """Test that user profile endpoint requires auth and hides email from other users."""
+        """Test that public user profile endpoint hides email fields."""
         response = self.client.get(f'/api/v1/users/by-address/{self.unverified_user.address}/')
-        self.assert_requires_authentication(response)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertNotIn('email', response.data)
+        self.assertNotIn('is_email_verified', response.data)
         
         self.authenticate(self.other_user)
         response = self.client.get(f'/api/v1/users/by-address/{self.unverified_user.address}/')
@@ -163,7 +170,18 @@ def test_unverified_email_not_exposed_in_public_profile(self):
     def test_verified_email_not_shown_in_public_profile(self):
         """Test that verified email is not exposed to anonymous or other users."""
         response = self.client.get(f'/api/v1/users/by-address/{self.verified_user.address}/')
-        self.assert_requires_authentication(response)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        for field in [
+            'email',
+            'is_email_verified',
+            'is_banned',
+            'ban_reason',
+            'referral_code',
+            'referred_by_info',
+            'total_referrals',
+            'referral_details',
+        ]:
+            self.assertNotIn(field, response.data)
 
         self.authenticate(self.other_user)
         response = self.client.get(f'/api/v1/users/by-address/{self.verified_user.address}/')
@@ -251,10 +269,12 @@ def test_email_becomes_visible_after_verification(self):
         self.assertEqual(response.data['email'], 'newemail@gmail.com')
         self.assertTrue(response.data['is_email_verified'])
         
-        # User endpoint should reject anonymous clients
+        # Public profile should not expose the authentication email.
         self.client.credentials()  # Clear authentication
         response = self.client.get(f'/api/v1/users/by-address/{self.unverified_user.address}/')
-        self.assert_requires_authentication(response)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertNotIn('email', response.data)
+        self.assertNotIn('is_email_verified', response.data)
     
     def test_no_email_field_leakage_in_list_view(self):
         """Test that auth emails are not exposed in authenticated user list view."""
@@ -333,15 +353,49 @@ def test_hidden_users_are_not_publicly_enumerable(self):
         response = self.client.get(f'/api/v1/users/by-address/{self.hidden_user.address}/')
         self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
 
+        self.client.credentials()
+        response = self.client.get(f'/api/v1/users/by-address/{self.hidden_user.address}/')
+        self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
+
+        response = self.client.get(f'/api/v1/users/by-address/{self.hidden_user.address}/highlights/')
+        self.assertEqual(response.status_code, status.HTTP_404_NOT_FOUND)
+
         self.authenticate(self.hidden_user)
         response = self.client.get('/api/v1/users/me/')
         self.assertEqual(response.status_code, status.HTTP_200_OK)
         self.assertEqual(response.data['email'], 'hidden@example.com')
 
+    def test_public_profile_lookup_is_throttled(self):
+        """Test public profile reads are rate-limited for anonymous clients."""
+        cache.clear()
+        try:
+            with patch.dict(SimpleRateThrottle.THROTTLE_RATES, {'public_user_profile': '1/minute'}):
+                response = self.client.get(f'/api/v1/users/by-address/{self.verified_user.address}/')
+                self.assertEqual(response.status_code, status.HTTP_200_OK)
+
+                response = self.client.get(f'/api/v1/users/by-address/{self.unverified_user.address}/')
+                self.assertEqual(response.status_code, status.HTTP_429_TOO_MANY_REQUESTS)
+        finally:
+            cache.clear()
+
+    def test_public_search_is_throttled(self):
+        """Test public user search is rate-limited for anonymous clients."""
+        cache.clear()
+        try:
+            with patch.dict(SimpleRateThrottle.THROTTLE_RATES, {'public_user_search': '1/minute'}):
+                response = self.client.get('/api/v1/users/search/', {'q': 'Verified'})
+                self.assertEqual(response.status_code, status.HTTP_200_OK)
+
+                response = self.client.get('/api/v1/users/search/', {'q': 'Other'})
+                self.assertEqual(response.status_code, status.HTTP_429_TOO_MANY_REQUESTS)
+        finally:
+            cache.clear()
+
     def test_public_search_does_not_match_auth_email(self):
-        """Test that user search requires auth and cannot use auth email as a lookup key."""
+        """Test that public user search cannot use auth email as a lookup key."""
         response = self.client.get('/api/v1/users/search/', {'q': 'verified@example.com'})
-        self.assert_requires_authentication(response)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data, [])
 
         self.authenticate(self.other_user)
         response = self.client.get('/api/v1/users/search/', {'q': 'verified@example.com'})
@@ -373,7 +427,8 @@ def test_leaderboard_search_does_not_match_auth_email(self):
         )
 
         response = self.client.get('/api/v1/leaderboard/', {'search': 'verified@example.com'})
-        self.assert_requires_authentication(response)
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(response.data, [])
 
         self.authenticate(self.other_user)
         response = self.client.get('/api/v1/leaderboard/', {'search': 'verified@example.com'})
diff --git a/backend/users/views.py b/backend/users/views.py
index e129961c..00aef20c 100644
--- a/backend/users/views.py
+++ b/backend/users/views.py
@@ -40,6 +40,22 @@ class UserViewSet(UserPoapMixin, viewsets.ReadOnlyModelViewSet):
     filter_backends = [filters.OrderingFilter]
     ordering_fields = ['date_joined', 'created_at']
 
+    def get_permissions(self):
+        public_actions = {'retrieve', 'by_address', 'user_highlights', 'search'}
+        if self.action in public_actions:
+            return [permissions.AllowAny()]
+        return super().get_permissions()
+
+    def get_throttles(self):
+        action = getattr(self, 'action', None)
+        if action in {'retrieve', 'by_address', 'user_highlights'}:
+            self.throttle_scope = 'public_user_profile'
+        elif action == 'search':
+            self.throttle_scope = 'public_user_search'
+        else:
+            self.throttle_scope = None
+        return super().get_throttles()
+
     def _can_view_user(self, user):
         request_user = self.request.user
         return bool(
@@ -117,6 +133,9 @@ def user_highlights(self, request, address=None):
         from contributions.serializers import ContributionHighlightSerializer
 
         user = get_object_or_404(User, address__iexact=address)
+        if not self._can_view_user(user):
+            raise Http404
+
         limit = int(request.query_params.get('limit', 5))
         category = request.query_params.get('category')
 
@@ -870,7 +889,7 @@ def referrals(self, request):
         from leaderboard.models import get_referral_breakdown
         return Response(get_referral_breakdown(request.user))
 
-    @action(detail=False, methods=['get'], permission_classes=[permissions.IsAuthenticated])
+    @action(detail=False, methods=['get'], permission_classes=[permissions.AllowAny])
     def search(self, request):
         """Search visible users by public identifiers."""
         query = request.query_params.get('q', '').strip()
diff --git a/frontend/src/App.svelte b/frontend/src/App.svelte
index a62017f1..5af48bb7 100644
--- a/frontend/src/App.svelte
+++ b/frontend/src/App.svelte
@@ -163,18 +163,18 @@
     // Global/Testnet Asimov routes
     // Overview and Testnet Asimov routes
     '/': Overview,
-    '/testnets': protectedRoute(GlobalDashboard),
+    '/testnets': GlobalDashboard,
     '/how-it-works': HowItWorks,
     '/contributions': protectedRoute(Contributions),
     '/all-contributions': protectedRoute(AllContributions),
-    '/leaderboard': protectedRoute(Leaderboard),
+    '/leaderboard': Leaderboard,
     '/participants': Validators,
     '/referrals': protectedRoute(Referrals),
-    '/community': protectedRoute(Dashboard),
+    '/community': Dashboard,
     '/community/contributions': protectedRoute(Contributions),
     '/community/all-contributions': protectedRoute(AllContributions),
     '/community/referrals': LegacyReferralRedirect,
-    '/community/leaderboard': protectedRoute(Leaderboard),
+    '/community/leaderboard': Leaderboard,
     '/community/poaps': CommunityPoaps,
     '/community/poaps/recover': PoapRecovery,
     '/community/poaps/:slug': PoapDetail,
@@ -186,10 +186,10 @@
     '/referral-program': ReferralProgram,
 
     // Builders routes
-    '/builders': protectedRoute(Dashboard),
+    '/builders': Dashboard,
     '/builders/contributions': protectedRoute(Contributions),
     '/builders/all-contributions': protectedRoute(AllContributions),
-    '/builders/leaderboard': protectedRoute(Leaderboard),
+    '/builders/leaderboard': Leaderboard,
 
     '/builders/resources': Resources,
     '/builders/projects/:slug/edit': protectedRoute(ProjectPageEditor),
@@ -198,10 +198,10 @@
     '/builders/startup-requests/:id': StartupRequestDetail,
     
     // Validators routes
-    '/validators': protectedRoute(Dashboard),
+    '/validators': Dashboard,
     '/validators/contributions': protectedRoute(Contributions),
     '/validators/all-contributions': protectedRoute(AllContributions),
-    '/validators/leaderboard': protectedRoute(Leaderboard),
+    '/validators/leaderboard': Leaderboard,
     '/validators/tasks': protectedRoute(SocialTasks),
     '/validators/participants': Validators,
     '/validators/wall-of-shame': WallOfShame,
@@ -210,7 +210,7 @@
     '/validators/waitlist/join': ValidatorWaitlist,
     
     // Shared routes
-    '/participant/:address': protectedRoute(Profile),
+    '/participant/:address': Profile,
     '/contribution/:id': protectedRoute(ContributionPreview),
     '/builders/contribution/:id': protectedRoute(ContributionPreview),
     '/validators/contribution/:id': protectedRoute(ContributionPreview),
@@ -226,9 +226,9 @@
 
     // Steward routes
     '/stewards': StewardDashboard,
-    '/stewards/submissions': StewardSubmissions,
-    '/stewards/feature-reviews': StewardFeatureReviews,
-    '/stewards/discord-xp': StewardDiscordXP,
+    '/stewards/submissions': protectedRoute(StewardSubmissions),
+    '/stewards/feature-reviews': protectedRoute(StewardFeatureReviews),
+    '/stewards/discord-xp': protectedRoute(StewardDiscordXP),
 
     // Legal routes
     '/terms-of-use': TermsOfUse,
diff --git a/frontend/src/components/AuthButton.svelte b/frontend/src/components/AuthButton.svelte
index a7749143..099f5dd3 100644
--- a/frontend/src/components/AuthButton.svelte
+++ b/frontend/src/components/AuthButton.svelte
@@ -194,6 +194,13 @@
     font-size: 0.875rem;
   }
 
+  .auth-button:not(.connected) {
+    min-width: 168px;
+    height: 44px;
+    padding: 0.625rem 1.25rem;
+    font-size: 0.9375rem;
+  }
+
   .auth-button:hover {
     background-color: #1a1a24;
   }
diff --git a/frontend/src/components/Navbar.svelte b/frontend/src/components/Navbar.svelte
index d4c8b72f..7f9b905e 100644
--- a/frontend/src/components/Navbar.svelte
+++ b/frontend/src/components/Navbar.svelte
@@ -158,17 +158,17 @@
     <div class="hidden md:flex items-center gap-2">
       <WhatsNewTrigger />
       <NotificationCenter />
+      <SearchBar />
       {#if $authState.isAuthenticated}
-        <SearchBar />
+        <button
+          onclick={handleSubmitContribution}
+          class={submitButtonBaseClass}
+          style={submitButtonStyle}
+        >
+          <span>Submit a contribution</span>
+          <img src="/assets/icons/add-line.svg" alt="" class="w-4 h-4">
+        </button>
       {/if}
-      <button
-        onclick={handleSubmitContribution}
-        class={submitButtonBaseClass}
-        style={submitButtonStyle}
-      >
-        <span>Submit a contribution</span>
-        <img src="/assets/icons/add-line.svg" alt="" class="w-4 h-4">
-      </button>
       <AuthButton />
     </div>
 
diff --git a/frontend/src/components/Sidebar.svelte b/frontend/src/components/Sidebar.svelte
index ad04324c..2e95d41e 100644
--- a/frontend/src/components/Sidebar.svelte
+++ b/frontend/src/components/Sidebar.svelte
@@ -119,7 +119,7 @@
   // Determine which top-level section is active
   function getActiveSection() {
     const path = $location;
-    if (path === '/' || path === '/testnets' || path === '/metrics') return 'global';
+    if (path === '/' || path === '/testnets' || path === '/metrics' || path === '/leaderboard') return 'global';
     if (path.startsWith('/builders')) return 'builder';
     if (path.startsWith('/validators')) return 'validator';
     if (path.startsWith('/community')) return 'community';
@@ -217,6 +217,15 @@
             >
               Metrics
             </a>
+            <a
+              href="/leaderboard"
+              onclick={(e) => { e.preventDefault(); navigate('/leaderboard'); }}
+              class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
+                isActive('/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
+              }"
+            >
+              Leaderboards
+            </a>
           </div>
         {/if}
       </div>
@@ -250,7 +259,7 @@
           {/if}
         </button>
 
-        {#if !collapsed && getActiveSection() === 'builder'}
+        {#if !collapsed && getActiveSection() === 'builder' && $authState.isAuthenticated}
           <div class="pl-5">
             <a
               href="/builders/contributions"
@@ -261,15 +270,6 @@
             >
               Contributions
             </a>
-            <a
-              href="/builders/leaderboard"
-              onclick={(e) => { e.preventDefault(); navigate('/builders/leaderboard'); }}
-              class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-                isActive('/builders/leaderboard') ? 'border-[#EE8D24]' : 'border-[#f5f5f5]'
-              }"
-            >
-              Leaderboard
-            </a>
             <a
               href="/builders/resources"
               onclick={(e) => { e.preventDefault(); navigate('/builders/resources'); }}
@@ -303,7 +303,7 @@
           {/if}
         </button>
 
-        {#if !collapsed && getActiveSection() === 'validator'}
+        {#if !collapsed && getActiveSection() === 'validator' && $authState.isAuthenticated}
           <div class="pl-5">
             <a
               href="/validators/contributions"
@@ -314,15 +314,6 @@
             >
               Contributions
             </a>
-            <a
-              href="/validators/leaderboard"
-              onclick={(e) => { e.preventDefault(); navigate('/validators/leaderboard'); }}
-              class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-                isActive('/validators/leaderboard') ? 'border-[#387DE8]' : 'border-[#f5f5f5]'
-              }"
-            >
-              Leaderboard
-            </a>
             <a
               href="/validators/participants"
               onclick={(e) => { e.preventDefault(); navigate('/validators/participants'); }}
@@ -341,15 +332,6 @@
             >
               Wall of Shame
             </a>
-            <a
-              href="/validators/waitlist"
-              onclick={(e) => { e.preventDefault(); navigate('/validators/waitlist'); }}
-              class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-                isActive('/validators/waitlist') ? 'border-[#387DE8]' : 'border-[#f5f5f5]'
-              }"
-            >
-              Waitlist
-            </a>
           </div>
         {/if}
       </div>
@@ -374,7 +356,7 @@
           {/if}
         </button>
 
-        {#if !collapsed && getActiveSection() === 'community'}
+        {#if !collapsed && getActiveSection() === 'community' && $authState.isAuthenticated}
           <div class="pl-5">
             <a
               href="/community/contributions"
@@ -385,15 +367,6 @@
             >
               Contributions
             </a>
-            <a
-              href="/community/leaderboard"
-              onclick={(e) => { e.preventDefault(); navigate('/community/leaderboard'); }}
-              class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-                isActive('/community/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
-              }"
-            >
-              Leaderboard
-            </a>
             <a
               href="/community/poaps"
               onclick={(e) => { e.preventDefault(); navigate('/community/poaps'); }}
@@ -580,22 +553,24 @@
     {/if}
 
     <!-- Submit Contribution link -->
-    {#if !collapsed}
-      <button
-        onclick={handleSubmitContribution}
-        class="w-full flex items-center gap-2 px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors text-left"
-      >
-        <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
-        <span class="text-[14px] font-medium text-[#656567] tracking-[0.28px]">Submit Contribution</span>
-      </button>
-    {:else}
-      <button
-        onclick={handleSubmitContribution}
-        class="w-full flex px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors"
-        title="Submit Contribution"
-      >
-        <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
-      </button>
+    {#if $authState.isAuthenticated}
+      {#if !collapsed}
+        <button
+          onclick={handleSubmitContribution}
+          class="w-full flex items-center gap-2 px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors text-left"
+        >
+          <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
+          <span class="text-[14px] font-medium text-[#656567] tracking-[0.28px]">Submit Contribution</span>
+        </button>
+      {:else}
+        <button
+          onclick={handleSubmitContribution}
+          class="w-full flex px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors"
+          title="Submit Contribution"
+        >
+          <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
+        </button>
+      {/if}
     {/if}
 
     <!-- My Submissions link (authenticated only) -->
@@ -699,6 +674,15 @@
           >
             Metrics
           </a>
+          <a
+            href="/leaderboard"
+            onclick={(e) => { e.preventDefault(); navigate('/leaderboard'); }}
+            class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
+              isActive('/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
+            }"
+          >
+            Leaderboards
+          </a>
         </div>
       {/if}
 
@@ -721,7 +705,7 @@
         <span>Builders</span>
       </button>
 
-      {#if getActiveSection() === 'builder'}
+      {#if getActiveSection() === 'builder' && $authState.isAuthenticated}
         <div class="pl-5">
           <a
             href="/builders/contributions"
@@ -732,15 +716,6 @@
           >
             Contributions
           </a>
-          <a
-            href="/builders/leaderboard"
-            onclick={(e) => { e.preventDefault(); navigate('/builders/leaderboard'); }}
-            class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-              isActive('/builders/leaderboard') ? 'border-[#EE8D24]' : 'border-[#f5f5f5]'
-            }"
-          >
-            Leaderboard
-          </a>
           <a
             href="/builders/resources"
             onclick={(e) => { e.preventDefault(); navigate('/builders/resources'); }}
@@ -767,7 +742,7 @@
         <span>Validators</span>
       </button>
 
-      {#if getActiveSection() === 'validator'}
+      {#if getActiveSection() === 'validator' && $authState.isAuthenticated}
         <div class="pl-5">
           <a
             href="/validators/contributions"
@@ -778,15 +753,6 @@
           >
             Contributions
           </a>
-          <a
-            href="/validators/leaderboard"
-            onclick={(e) => { e.preventDefault(); navigate('/validators/leaderboard'); }}
-            class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-              isActive('/validators/leaderboard') ? 'border-[#387DE8]' : 'border-[#f5f5f5]'
-            }"
-          >
-            Leaderboard
-          </a>
           <a
             href="/validators/participants"
             onclick={(e) => { e.preventDefault(); navigate('/validators/participants'); }}
@@ -805,15 +771,6 @@
           >
             Wall of Shame
           </a>
-          <a
-            href="/validators/waitlist"
-            onclick={(e) => { e.preventDefault(); navigate('/validators/waitlist'); }}
-            class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-              isActive('/validators/waitlist') ? 'border-[#387DE8]' : 'border-[#f5f5f5]'
-            }"
-          >
-            Waitlist
-          </a>
         </div>
       {/if}
 
@@ -831,7 +788,7 @@
         <span>Community</span>
       </button>
 
-      {#if getActiveSection() === 'community'}
+      {#if getActiveSection() === 'community' && $authState.isAuthenticated}
         <div class="pl-5">
           <a
             href="/community/contributions"
@@ -842,15 +799,6 @@
           >
             Contributions
           </a>
-          <a
-            href="/community/leaderboard"
-            onclick={(e) => { e.preventDefault(); navigate('/community/leaderboard'); }}
-            class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
-              isActive('/community/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
-            }"
-          >
-            Leaderboard
-          </a>
           <a
             href="/community/poaps"
             onclick={(e) => { e.preventDefault(); navigate('/community/poaps'); }}
@@ -989,13 +937,15 @@
       </svg>
       <span class="text-[14px] font-medium tracking-[0.28px] {isActive('/how-it-works') ? 'text-[#6D5DD3]' : 'text-[#656567]'}">How it works</span>
     </button>
-    <button
-      onclick={handleSubmitContribution}
-      class="w-full flex items-center gap-2 px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors text-left"
-    >
-      <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
-      <span class="text-[14px] font-medium text-[#656567] tracking-[0.28px]">Submit Contribution</span>
-    </button>
+    {#if $authState.isAuthenticated}
+      <button
+        onclick={handleSubmitContribution}
+        class="w-full flex items-center gap-2 px-3 py-2 rounded-[8px] hover:bg-[#f5f5f5] transition-colors text-left"
+      >
+        <img src="/assets/icons/add-line-sidebar.svg" alt="" class="w-4 h-4 flex-shrink-0">
+        <span class="text-[14px] font-medium text-[#656567] tracking-[0.28px]">Submit Contribution</span>
+      </button>
+    {/if}
     {#if $authState.isAuthenticated}
       <button
         onclick={() => navigate('/my-submissions')}
diff --git a/frontend/src/components/ui/SectionHeader.svelte b/frontend/src/components/ui/SectionHeader.svelte
index 51f50a9f..78b48e56 100644
--- a/frontend/src/components/ui/SectionHeader.svelte
+++ b/frontend/src/components/ui/SectionHeader.svelte
@@ -1,7 +1,26 @@
 <script>
   import { push } from 'svelte-spa-router';
+  import { authState } from '../../lib/auth.js';
 
-  let { title = '', subtitle = '', linkText = 'View all', linkPath = '', showLink = true, showArrow = true } = $props();
+  let {
+    title = '',
+    subtitle = '',
+    linkText = 'View all',
+    linkPath = '',
+    showLink = true,
+    showArrow = true,
+    requiresAuth = false,
+  } = $props();
+
+  function handleLinkClick() {
+    if (requiresAuth && !$authState.isAuthenticated) {
+      sessionStorage.setItem('redirectAfterLogin', linkPath);
+      const authButton = document.querySelector('[data-auth-button]');
+      if (authButton) authButton.click();
+      return;
+    }
+    push(linkPath);
+  }
 </script>
 
 <div class="flex items-center justify-between mb-4">
@@ -13,7 +32,7 @@
   </div>
   {#if showLink && linkPath}
     <button
-      onclick={() => push(linkPath)}
+      onclick={handleLinkClick}
       class="flex items-center gap-1 text-[14px] text-[#6b6b6b] hover:text-black transition-colors flex-shrink-0"
       style="letter-spacing: 0.28px;"
     >
diff --git a/frontend/src/routes/Dashboard.svelte b/frontend/src/routes/Dashboard.svelte
index 25b8bc57..ce31d828 100644
--- a/frontend/src/routes/Dashboard.svelte
+++ b/frontend/src/routes/Dashboard.svelte
@@ -1,5 +1,4 @@
 <script>
-  import { push } from 'svelte-spa-router';
   import { contributionsAPI, statsAPI, leaderboardAPI, validatorsAPI, buildersAPI } from '../lib/api';
   import { currentCategory } from '../stores/category.js';
 
@@ -21,14 +20,12 @@
   let statsData = $state([]);
   let leaderboardEntries = $state([]);
   let newestMembers = $state([]);
-  let waitlistEntries = $state([]);
   let trendingEntries = $state([]);
   let recentContributions = $state([]);
 
   let statsLoading = $state(true);
   let leaderboardLoading = $state(true);
   let membersLoading = $state(true);
-  let waitlistLoading = $state(true);
   let trendingLoading = $state(true);
   let recentLoading = $state(true);
   let recentSlider = $state(null);
@@ -56,7 +53,7 @@
         ? 'All-time validator contributors'
         : 'Curated builds from the last 30 days'
   );
-  let leaderboardPath = $derived(isBuilder ? '/builders/leaderboard' : isCommunity ? '/community/leaderboard' : '/validators/leaderboard');
+  let leaderboardPath = $derived(isBuilder ? '/leaderboard?type=builder' : isCommunity ? '/leaderboard?type=community' : '/leaderboard?type=validator');
   let podiumTitle = $derived(isValidator ? 'All-time Podium' : 'Last 30 Days Podium');
   let podiumSubtitle = $derived(
     isCommunity
@@ -66,7 +63,7 @@
         : "Who's contributing more to GenLayer over the last 30 days?"
   );
   let newestTitle = $derived(isBuilder ? 'Newest Builders' : isCommunity ? 'Newest Community Contributors' : 'Newest Validators');
-  let newestPath = $derived(isBuilder ? '/builders/leaderboard' : isCommunity ? '/community/all-contributions' : '/validators/participants');
+  let newestPath = $derived(isBuilder ? '/leaderboard?type=builder' : isCommunity ? '/community/all-contributions' : '/validators/participants');
   let highlightsPath = $derived(
     isBuilder ? '/builders/all-contributions?view=highlights' : isCommunity ? '/community/all-contributions?view=highlights' : '/validators/all-contributions?view=highlights'
   );
@@ -142,13 +139,11 @@
     statsData = [];
     leaderboardEntries = [];
     newestMembers = [];
-    waitlistEntries = [];
     trendingEntries = [];
     recentContributions = [];
     statsLoading = true;
     leaderboardLoading = true;
     membersLoading = true;
-    waitlistLoading = true;
     trendingLoading = true;
     recentLoading = true;
     canRecentLeft = false;
@@ -224,27 +219,6 @@
       );
     }
 
-    // Validator-only fetches
-    if (cat === 'validator') {
-      promises.push(
-        leaderboardAPI.getWaitlistTop(5).then(res => {
-          if (requestId !== dashboardRequestSequence) return;
-          waitlistEntries = Array.isArray(res.data) ? res.data : (res.data?.results ?? []);
-          waitlistLoading = false;
-        }).catch(() => {
-          if (requestId === dashboardRequestSequence) waitlistLoading = false;
-        }),
-
-        contributionsAPI.getContributions({ limit: 5, category: cat, exclude_onboarding: 'true' }).then(res => {
-          if (requestId !== dashboardRequestSequence) return;
-          recentContributions = res.data?.results ?? res.data ?? [];
-          recentLoading = false;
-        }).catch(() => {
-          if (requestId === dashboardRequestSequence) recentLoading = false;
-        })
-      );
-    }
-
     // Builder-only fetches
     if (cat === 'builder') {
       promises.push(
@@ -268,23 +242,6 @@
     fetchDashboardData(cat);
   });
 
-  // Helper: format date for recent contributions
-  function formatContribDate(dateStr) {
-    if (!dateStr) return '';
-    try {
-      const d = new Date(dateStr);
-      return d.toLocaleDateString('en-US', { month: 'short', day: 'numeric', year: 'numeric' });
-    } catch {
-      return dateStr;
-    }
-  }
-
-  function contributionPath(contrib) {
-    if (isCommunity) return `/community/contribution/${contrib.id}`;
-    if (isBuilder) return `/builders/contribution/${contrib.id}`;
-    return `/badge/${contrib.id}`;
-  }
-
   function updateRecentArrows() {
     if (!recentSlider) return;
     const { scrollLeft, scrollWidth, clientWidth } = recentSlider;
@@ -355,12 +312,13 @@
 
   <!-- 4. Newest Members -->
   <div>
-    <SectionHeader
-      title={newestTitle}
-      subtitle="New"
-      linkText="View all"
-      linkPath={newestPath}
-    />
+      <SectionHeader
+        title={newestTitle}
+        subtitle="New"
+        linkText="View all"
+        linkPath={newestPath}
+        requiresAuth={isCommunity}
+      />
     <UserCardScroller entries={newestAsEntries} loading={membersLoading} />
   </div>
 
@@ -376,7 +334,7 @@
         title="Trending Contributors"
         subtitle="Highest Builder Points Contributions this week"
         linkText="View all"
-        linkPath="/leaderboard"
+        linkPath="/leaderboard?type=builder"
       />
       <UserCardScroller entries={trendingEntries} loading={trendingLoading} showPointIncrease={true} />
     </div>
@@ -389,6 +347,7 @@
       subtitle="Latest standout contributions"
       linkText="Explore all"
       linkPath={highlightsPath}
+      requiresAuth={true}
     />
     <PortalHighlights
       category={category}
@@ -397,142 +356,83 @@
     />
   </div>
 
-  <!-- 8. Validator-only Waitlist + Recent Contributions, or Community Recent Contributions -->
-  {#if isValidator || isCommunity}
-    <div class={isCommunity ? 'grid grid-cols-1 gap-6' : 'grid grid-cols-1 lg:grid-cols-2 gap-6'}>
-      {#if isValidator}
-        <div>
-          <SectionHeader
-            title="Waitlist"
-            subtitle="Top waitlisted validators"
-            linkText="View all"
-            linkPath="/validators/waitlist/join"
-          />
-          <RankedList
-            entries={waitlistEntries}
-            loading={waitlistLoading}
-            accentColor="#4f76f6"
-            valueLabel="VP"
-            showDelta={false}
-          />
-        </div>
-      {/if}
+  <!-- 8. Community Recent Contributions -->
+  {#if isCommunity}
+    <div class="grid grid-cols-1 gap-6">
       <div>
         <SectionHeader
-          title={isCommunity ? 'Recent Community Contributions' : 'Recent Contributions'}
-          subtitle={isCommunity ? 'Latest accepted community work' : 'Latest validator contributions'}
+          title="Recent Community Contributions"
+          subtitle="Latest accepted community work"
           linkText="View all"
-          linkPath={isCommunity ? '/community/all-contributions' : '/validators/contributions'}
+          linkPath="/community/all-contributions"
+          requiresAuth={true}
         />
-        {#if isCommunity}
-          <div class="relative">
-            {#if recentLoading}
-              <div class="flex gap-3 overflow-hidden pb-2">
-                {#each [1, 2, 3, 4, 5] as _}
-                  <div class="w-[300px] h-[180px] flex-shrink-0 rounded-[8px] border border-[#f0f0f0] bg-white p-4 animate-pulse">
-                    <div class="flex items-center justify-between">
-                      <div class="flex items-center gap-2">
-                        <div class="w-6 h-6 rounded-full bg-gray-200"></div>
-                        <div class="h-3 w-20 rounded bg-gray-200"></div>
-                      </div>
-                      <div class="h-5 w-14 rounded-full bg-gray-100"></div>
-                    </div>
-                    <div class="mt-5 space-y-2">
-                      <div class="h-3 w-3/4 rounded bg-gray-200"></div>
-                      <div class="h-2.5 w-full rounded bg-gray-100"></div>
-                      <div class="h-2.5 w-5/6 rounded bg-gray-100"></div>
-                    </div>
-                    <div class="mt-8 flex items-center justify-between">
-                      <div class="h-5 w-24 rounded-full bg-gray-100"></div>
-                      <div class="h-3 w-16 rounded bg-gray-100"></div>
+        <div class="relative">
+          {#if recentLoading}
+            <div class="flex gap-3 overflow-hidden pb-2">
+              {#each [1, 2, 3, 4, 5] as _}
+                <div class="w-[300px] h-[180px] flex-shrink-0 rounded-[8px] border border-[#f0f0f0] bg-white p-4 animate-pulse">
+                  <div class="flex items-center justify-between">
+                    <div class="flex items-center gap-2">
+                      <div class="w-6 h-6 rounded-full bg-gray-200"></div>
+                      <div class="h-3 w-20 rounded bg-gray-200"></div>
                     </div>
+                    <div class="h-5 w-14 rounded-full bg-gray-100"></div>
                   </div>
-                {/each}
-              </div>
-            {:else if recentContributions.length === 0}
-              <div class="rounded-[8px] border border-dashed border-[#e6e6e6] bg-[#fafafa] px-6 py-10 text-center text-sm text-[#6b6b6b]">
-                No recent contributions
-              </div>
-            {:else}
-              <div
-                bind:this={recentSlider}
-                onscroll={updateRecentArrows}
-                class="hide-scrollbar flex gap-3 overflow-x-auto pb-2 -mx-1 px-1 scroll-smooth"
-              >
-                {#each recentContributions as contribution (contribution.id)}
-                  <div class="w-[300px] max-w-[82vw] flex-shrink-0">
-                    <PortalContributionCard
-                      {contribution}
-                      category="community"
-                      pathPrefix="/community/contribution"
-                    />
+                  <div class="mt-5 space-y-2">
+                    <div class="h-3 w-3/4 rounded bg-gray-200"></div>
+                    <div class="h-2.5 w-full rounded bg-gray-100"></div>
+                    <div class="h-2.5 w-5/6 rounded bg-gray-100"></div>
                   </div>
-                {/each}
-              </div>
-              {#if canRecentLeft}
-                <button
-                  type="button"
-                  onclick={() => scrollRecent(-1)}
-                  aria-label="Scroll recent contributions left"
-                  class="absolute left-0 top-1/2 z-10 hidden h-11 w-11 -translate-x-1/2 -translate-y-1/2 items-center justify-center rounded-full border border-[#e6e6e6] bg-white shadow-md transition-all hover:bg-[#fafafa] hover:shadow-lg sm:flex"
-                >
-                  <img src="/assets/icons/arrow-left-s-line.svg" alt="" class="h-5 w-5" />
-                </button>
-              {/if}
-              {#if canRecentRight}
-                <button
-                  type="button"
-                  onclick={() => scrollRecent(1)}
-                  aria-label="Scroll recent contributions right"
-                  class="absolute right-0 top-1/2 z-10 hidden h-11 w-11 translate-x-1/2 -translate-y-1/2 items-center justify-center rounded-full border border-[#e6e6e6] bg-white shadow-md transition-all hover:bg-[#fafafa] hover:shadow-lg sm:flex"
-                >
-                  <img src="/assets/icons/arrow-right-s-line.svg" alt="" class="h-5 w-5" />
-                </button>
-              {/if}
-            {/if}
-          </div>
-        {:else}
-          <div class="bg-white border border-[#f7f7f7] rounded-[8px] overflow-clip p-[16px]">
-            {#if recentLoading}
-              <div class="space-y-3 animate-pulse">
-                {#each [1, 2, 3, 4, 5] as _}
-                  <div class="h-[40px] flex items-center gap-3">
-                    <div class="w-8 h-8 rounded-full bg-gray-200"></div>
-                    <div class="flex-1 space-y-1">
-                      <div class="h-3 bg-gray-200 rounded w-32"></div>
-                      <div class="h-2.5 bg-gray-100 rounded w-20"></div>
-                    </div>
-                    <div class="h-3 bg-gray-100 rounded w-16"></div>
+                  <div class="mt-8 flex items-center justify-between">
+                    <div class="h-5 w-24 rounded-full bg-gray-100"></div>
+                    <div class="h-3 w-16 rounded bg-gray-100"></div>
                   </div>
-                {/each}
-              </div>
-            {:else if recentContributions.length === 0}
-              <div class="py-6 text-center text-sm text-[#6b6b6b]">No recent contributions</div>
-            {:else}
-              <div class="space-y-2">
-                {#each recentContributions as contrib}
-                  <button
-                    onclick={() => push(contributionPath(contrib))}
-                    class="w-full flex items-center gap-3 py-2 px-1 hover:bg-gray-50 rounded transition-colors text-left"
-                  >
-                    {#if contrib.user_details?.profile_image_url}
-                      <img src={contrib.user_details.profile_image_url} alt="" class="w-8 h-8 rounded-full">
-                    {:else}
-                      <div class="w-8 h-8 rounded-full flex items-center justify-center text-xs font-medium bg-sky-100 text-sky-600">
-                        {(contrib.user_details?.name || contrib.user_name || '?')[0].toUpperCase()}
-                      </div>
-                    {/if}
-                    <div class="flex-1 min-w-0">
-                      <p class="text-[13px] font-medium text-black truncate">{contrib.contribution_type_name || 'Contribution'}</p>
-                      <p class="text-[11px] text-[#999]">{contrib.user_details?.name || contrib.user_name || 'Anonymous'}</p>
-                    </div>
-                    <span class="text-[12px] text-[#bbb] flex-shrink-0">{formatContribDate(contrib.contribution_date)}</span>
-                  </button>
-                {/each}
-              </div>
+                </div>
+              {/each}
+            </div>
+          {:else if recentContributions.length === 0}
+            <div class="rounded-[8px] border border-dashed border-[#e6e6e6] bg-[#fafafa] px-6 py-10 text-center text-sm text-[#6b6b6b]">
+              No recent contributions
+            </div>
+          {:else}
+            <div
+              bind:this={recentSlider}
+              onscroll={updateRecentArrows}
+              class="hide-scrollbar flex gap-3 overflow-x-auto pb-2 -mx-1 px-1 scroll-smooth"
+            >
+              {#each recentContributions as contribution (contribution.id)}
+                <div class="w-[300px] max-w-[82vw] flex-shrink-0">
+                  <PortalContributionCard
+                    {contribution}
+                    category="community"
+                    pathPrefix="/community/contribution"
+                  />
+                </div>
+              {/each}
+            </div>
+            {#if canRecentLeft}
+              <button
+                type="button"
+                onclick={() => scrollRecent(-1)}
+                aria-label="Scroll recent contributions left"
+                class="absolute left-0 top-1/2 z-10 hidden h-11 w-11 -translate-x-1/2 -translate-y-1/2 items-center justify-center rounded-full border border-[#e6e6e6] bg-white shadow-md transition-all hover:bg-[#fafafa] hover:shadow-lg sm:flex"
+              >
+                <img src="/assets/icons/arrow-left-s-line.svg" alt="" class="h-5 w-5" />
+              </button>
+            {/if}
+            {#if canRecentRight}
+              <button
+                type="button"
+                onclick={() => scrollRecent(1)}
+                aria-label="Scroll recent contributions right"
+                class="absolute right-0 top-1/2 z-10 hidden h-11 w-11 translate-x-1/2 -translate-y-1/2 items-center justify-center rounded-full border border-[#e6e6e6] bg-white shadow-md transition-all hover:bg-[#fafafa] hover:shadow-lg sm:flex"
+              >
+                <img src="/assets/icons/arrow-right-s-line.svg" alt="" class="h-5 w-5" />
+              </button>
             {/if}
-          </div>
-        {/if}
+          {/if}
+        </div>
       </div>
     </div>
   {/if}
diff --git a/frontend/src/routes/Leaderboard.svelte b/frontend/src/routes/Leaderboard.svelte
index c30910bb..702e8102 100644
--- a/frontend/src/routes/Leaderboard.svelte
+++ b/frontend/src/routes/Leaderboard.svelte
@@ -5,6 +5,7 @@
   import { leaderboardAPI } from '../lib/api';
   import { currentCategory } from '../stores/category.js';
   import { getCategoryGradientStyle } from '../lib/categoryPresentation.js';
+  import { push, querystring } from 'svelte-spa-router';
   
   const PAGE_SIZE = 10;
   const PODIUM_SIZE = 3;
@@ -27,16 +28,6 @@
   let requestSequence = 0;
 
   const categoryConfig = {
-    global: {
-      title: 'Global Leaderboard',
-      label: 'participants',
-      description: 'All-time rankings across the GenLayer ecosystem.',
-      icon: '/assets/icons/group-white.svg',
-      iconClass: 'bg-black',
-      accentColor: '#7f52e1',
-      valueLabel: 'GP',
-      podiumCategory: 'global',
-    },
     builder: {
       title: 'Builders Leaderboard',
       label: 'builders',
@@ -57,16 +48,6 @@
       valueLabel: 'VP',
       podiumCategory: 'validator',
     },
-    steward: {
-      title: 'Stewards Leaderboard',
-      label: 'stewards',
-      description: 'All-time steward contribution rankings.',
-      icon: '/assets/icons/group-white.svg',
-      iconClass: 'bg-emerald-500',
-      accentColor: '#3eb359',
-      valueLabel: 'SP',
-      podiumCategory: 'steward',
-    },
     community: {
       title: 'Community Leaderboard',
       label: 'community',
@@ -79,9 +60,21 @@
     },
   };
 
-  let pageConfig = $derived(categoryConfig[$currentCategory] || categoryConfig.global);
-  let activeGradientCategory = $derived($currentCategory || 'global');
-  let gradientStyle = $derived(getCategoryGradientStyle(activeGradientCategory, pageConfig.accentColor));
+  const leaderboardCategories = [
+    { id: 'builder', label: 'Builders' },
+    { id: 'validator', label: 'Validators' },
+    { id: 'community', label: 'Community' },
+  ];
+
+  function normalizeCategory(category) {
+    return categoryConfig[category] ? category : 'builder';
+  }
+
+  let selectedCategory = $derived(
+    normalizeCategory(new URLSearchParams($querystring || '').get('type') || $currentCategory)
+  );
+  let pageConfig = $derived(categoryConfig[selectedCategory]);
+  let gradientStyle = $derived(getCategoryGradientStyle(selectedCategory, pageConfig.accentColor));
   let topEntries = $derived(podiumEntries);
   let tableEntries = $derived(leaderboard);
   let isSearching = $derived(searchQuery.trim().length > 0 || activeSearch.length > 0);
@@ -104,11 +97,6 @@
 
   function fetchEntries(category, options) {
     const params = activeSearch ? { ...options, search: activeSearch } : options;
-
-    if (category === 'global') {
-      return leaderboardAPI.getLeaderboard(params);
-    }
-
     return leaderboardAPI.getLeaderboard({ type: category, order: 'asc', ...params });
   }
 
@@ -121,7 +109,7 @@
   }
 
   async function fetchLeaderboard(page = 1, { reset = false } = {}) {
-    const category = $currentCategory || 'global';
+    const category = selectedCategory;
     const shouldShowFullLoader = reset || (podiumEntries.length === 0 && leaderboard.length === 0);
     const requestId = ++requestSequence;
 
@@ -133,7 +121,7 @@
       const podiumResponse = await fetchEntries(category, { limit: PODIUM_SIZE, offset: 0, include_count: true });
 
       if (requestId !== requestSequence) return;
-      if (category !== ($currentCategory || 'global')) return;
+      if (category !== selectedCategory) return;
 
       const podiumData = extractEntries(podiumResponse.data);
       const availableForPodium = extractCount(podiumResponse.data, podiumData.length);
@@ -144,7 +132,7 @@
       const tableResponse = await fetchEntries(category, { limit: REQUEST_SIZE, offset: tableOffset, include_count: true });
 
       if (requestId !== requestSequence) return;
-      if (category !== ($currentCategory || 'global')) return;
+      if (category !== selectedCategory) return;
 
       const tableData = extractEntries(tableResponse.data);
       const responseCount = extractCount(tableResponse.data, availableForPodium);
@@ -177,9 +165,10 @@
 
   // Re-fetch when category changes
   $effect(() => {
-    const category = $currentCategory || 'global';
+    const category = selectedCategory;
     if (category && category !== activeCategory) {
       activeCategory = category;
+      currentCategory.set(category);
       searchQuery = '';
       activeSearch = '';
       pendingPage = null;
@@ -187,6 +176,13 @@
     }
   });
 
+  function selectCategory(category) {
+    const nextCategory = normalizeCategory(category);
+    if (nextCategory === selectedCategory) return;
+    currentCategory.set(nextCategory);
+    push(`/leaderboard?type=${nextCategory}`);
+  }
+
   $effect(() => {
     const query = searchQuery.trim();
     clearTimeout(searchTimer);
@@ -208,15 +204,7 @@
     class="absolute inset-x-0 top-0 h-[320px] pointer-events-none overflow-hidden"
     style="-webkit-mask-image: linear-gradient(to bottom, black 0%, transparent 100%); mask-image: linear-gradient(to bottom, black 0%, transparent 100%);"
   >
-    {#if activeGradientCategory === 'global'}
-      <img
-        src="/assets/illustrations/welcome-gradient.png"
-        alt=""
-        class="absolute inset-0 w-full h-full object-cover opacity-70"
-      />
-    {:else}
-      <div class="absolute inset-0" style={gradientStyle}></div>
-    {/if}
+    <div class="absolute inset-0" style={gradientStyle}></div>
     <div class="absolute inset-0 bg-white/25"></div>
   </div>
 
@@ -260,6 +248,24 @@
       {/if}
     </header>
 
+    <div class="inline-flex max-w-full flex-wrap items-center gap-1 rounded-[10px] border border-white/70 bg-white/82 p-1 shadow-[0_8px_22px_rgba(31,42,68,0.08)] backdrop-blur-md">
+      {#each leaderboardCategories as category}
+        <button
+          type="button"
+          onclick={() => selectCategory(category.id)}
+          class={`min-h-10 rounded-[8px] px-4 text-[14px] font-semibold transition-colors ${
+            selectedCategory === category.id
+              ? 'text-white shadow-[0_6px_14px_rgba(31,42,68,0.12)]'
+              : 'text-[#4b5565] hover:bg-[#f5f6fa] hover:text-black'
+          }`}
+          style={selectedCategory === category.id ? `background-color: ${pageConfig.accentColor};` : ''}
+          aria-pressed={selectedCategory === category.id}
+        >
+          {category.label}
+        </button>
+      {/each}
+    </div>
+
     <section class="rounded-[10px] border border-white/70 bg-white/78 p-5 sm:p-7 md:p-8 shadow-[0_18px_55px_rgba(38,48,75,0.15)] backdrop-blur-md">
       {#if loading}
         <div class="space-y-8">
diff --git a/frontend/src/routes/Metrics.svelte b/frontend/src/routes/Metrics.svelte
index 814756e4..677fcd5f 100644
--- a/frontend/src/routes/Metrics.svelte
+++ b/frontend/src/routes/Metrics.svelte
@@ -2,8 +2,6 @@
   import { onMount, onDestroy, tick } from 'svelte';
   import { Chart, registerables } from 'chart.js';
   import api from '../lib/api.js';
-  import { authState, verifyAuth } from '../lib/auth.js';
-  import { userStore } from '../lib/userStore.js';
   import CategoryIcon from '../components/portal/CategoryIcon.svelte';
 
   Chart.register(...registerables);
@@ -193,7 +191,6 @@
   }));
   let submissionsByCategory = $state(/** @type {Record<string, SubmissionsResponse>} */ ({}));
   let contributionTypes = $state(/** @type {ContributionType[]} */ ([]));
-  let canViewSubmissionAnalytics = $state(false);
 
   let submissionGroupBy = $state(/** @type {SubmissionGroupBy} */ ('week'));
   let submissionStartDate = $state('');
@@ -301,39 +298,11 @@
 
       participantsData = participantsResponse.data.data || [];
 
-      let isAuthenticated = $authState.isAuthenticated;
-      if (!isAuthenticated) {
-        try {
-          isAuthenticated = await verifyAuth();
-        } catch (err) {
-          isAuthenticated = false;
-        }
-      }
-
-      if (isAuthenticated) {
-        let activeUser = /** @type {any} */ ($userStore.user);
-
-        if (!activeUser) {
-          try {
-            activeUser = await userStore.loadUser();
-          } catch (err) {
-            // Keep public metrics usable even if the authenticated user payload is unavailable.
-          }
-        }
-
-        canViewSubmissionAnalytics = Boolean(activeUser?.steward);
-
-        const typesResponse = await api.get('/contribution-types/', { params: { page_size: 1000 } });
-        contributionTypes = normalizeContributionTypes(
-          typesResponse.data.results || typesResponse.data || []
-        );
-
-        if (canViewSubmissionAnalytics) {
-          await fetchSubmissionsData({ syncDates: true });
-        }
-      } else {
-        canViewSubmissionAnalytics = false;
-      }
+      const typesResponse = await api.get('/contribution-types/', { params: { page_size: 1000 } });
+      contributionTypes = normalizeContributionTypes(
+        typesResponse.data.results || typesResponse.data || []
+      );
+      await fetchSubmissionsData({ syncDates: true });
 
       loading = false;
       await tick();
@@ -1796,8 +1765,7 @@
       </div>
     </section>
 
-    {#if canViewSubmissionAnalytics}
-      <section class="portal-section">
+    <section class="portal-section">
         <div class="section-heading">
           <div>
             <h2>Portal contributions</h2>
@@ -1953,8 +1921,7 @@
             {/if}
           </div>
         </div>
-      </section>
-    {/if}
+    </section>
   </div>
 </div>
 

From 00c0f6e76e8308560f813cfbe2e5bd2e9c80d020 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 16:59:13 +0200
Subject: [PATCH 5/8] Improve steward dashboard (#832)

---
 .../components/WorkingGroupsSection.svelte    | 398 ++++++++++------
 frontend/src/routes/StewardDashboard.svelte   | 438 ++++++++----------
 2 files changed, 461 insertions(+), 375 deletions(-)

diff --git a/frontend/src/components/WorkingGroupsSection.svelte b/frontend/src/components/WorkingGroupsSection.svelte
index ba443c41..3aed360f 100644
--- a/frontend/src/components/WorkingGroupsSection.svelte
+++ b/frontend/src/components/WorkingGroupsSection.svelte
@@ -4,6 +4,7 @@
   import { userStore } from '../lib/userStore.js';
   import { stewardAPI } from '../lib/api.js';
   import Avatar from './Avatar.svelte';
+  import CategoryIcon from './portal/CategoryIcon.svelte';
   import { showSuccess, showError } from '../lib/toastStore.js';
   import { categoryTheme } from '../stores/category.js';
   import { parseMarkdown } from '../lib/markdownLoader.js';
@@ -13,6 +14,10 @@
   // Working groups state
   let workingGroups = $state([]);
   let loading = $state(true);
+  let expandedGroupIds = $state(new Set());
+  let totalParticipantCount = $derived(
+    workingGroups.reduce((total, group) => total + memberCount(group), 0)
+  );
 
   // Create/Edit modal state
   let showGroupModal = $state(false);
@@ -56,8 +61,10 @@
       );
 
       workingGroups = detailedGroups;
+      expandedGroupIds = new Set();
     } catch (err) {
       workingGroups = [];
+      expandedGroupIds = new Set();
     } finally {
       loading = false;
     }
@@ -199,177 +206,238 @@
       searchResults = [];
     }
   });
+
+  function memberCount(group) {
+    return group?.participant_count || group?.participants?.length || 0;
+  }
+
+  function participantName(participant) {
+    if (participant?.name) return participant.name;
+    if (participant?.address) return `${participant.address.slice(0, 6)}...${participant.address.slice(-4)}`;
+    return 'Unnamed member';
+  }
+
+  function openParticipant(participant) {
+    if (participant?.address) {
+      push(`/participant/${participant.address}`);
+    }
+  }
+
+  function isGroupExpanded(groupId) {
+    return expandedGroupIds.has(groupId);
+  }
+
+  function toggleGroup(groupId) {
+    const nextExpandedGroupIds = new Set(expandedGroupIds);
+    if (nextExpandedGroupIds.has(groupId)) {
+      nextExpandedGroupIds.delete(groupId);
+    } else {
+      nextExpandedGroupIds.add(groupId);
+    }
+    expandedGroupIds = nextExpandedGroupIds;
+  }
 </script>
 
-<!-- Working Groups Container with Colored Header -->
-<div class="{$categoryTheme.bg} rounded-lg shadow-sm border {$categoryTheme.border} overflow-hidden">
-  <!-- Colored Header Bar -->
-  <div class="{$categoryTheme.bgSecondary} px-5 py-3 border-b {$categoryTheme.border}">
-    <div class="flex items-center justify-between">
-      <h2 class="text-lg font-semibold {$categoryTheme.text} uppercase tracking-wider flex items-center">
-        <svg class="w-5 h-5 mr-2" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-          <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 20h5v-2a3 3 0 00-5.356-1.857M17 20H7m10 0v-2c0-.656-.126-1.283-.356-1.857M7 20H2v-2a3 3 0 015.356-1.857M7 20v-2c0-.656.126-1.283.356-1.857m0 0a5.002 5.002 0 019.288 0M15 7a3 3 0 11-6 0 3 3 0 016 0zm6 3a2 2 0 11-4 0 2 2 0 014 0zM7 10a2 2 0 11-4 0 2 2 0 014 0z"></path>
-        </svg>
-        Working Groups
-      </h2>
-      {#if isSteward}
-        <button
-          onclick={openCreateModal}
-          class="px-3 py-1.5 bg-primary-600 text-white text-sm rounded-md hover:bg-primary-700 transition-colors flex items-center gap-1.5"
-        >
-          <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 4v16m8-8H4"></path>
-          </svg>
-          Create Group
-        </button>
-      {/if}
+<section class="working-groups-shell rounded-[10px] border border-white/70 bg-white/78 p-5 shadow-[0_18px_55px_rgba(38,48,75,0.15)] backdrop-blur-md sm:p-7 md:p-8">
+  <div class="mb-5 flex flex-col gap-4 md:flex-row md:items-start md:justify-between">
+    <div class="flex items-start gap-3">
+      <CategoryIcon category="steward" mode="hexagon" size={42} />
+      <div class="min-w-0">
+        <div class="flex flex-wrap items-center gap-3">
+          <h2 class="text-[22px] font-semibold font-display leading-none text-black sm:text-[25px]">Working Groups</h2>
+          <span class="inline-flex h-[25px] items-center rounded-full border border-[#d8f3e4] bg-white px-3 text-[12px] font-semibold text-[#137f4c]">
+            {workingGroups.length} groups
+          </span>
+          <span class="inline-flex h-[25px] items-center rounded-full border border-[#e8ebf2] bg-white px-3 text-[12px] font-semibold text-[#506078]">
+            {totalParticipantCount} members
+          </span>
+        </div>
+        <p class="mt-2 max-w-2xl text-[13px] text-[#506078] sm:text-[14px]">
+          Focused steward groups with member rosters and private coordination links where available.
+        </p>
+      </div>
     </div>
+
+    {#if isSteward}
+      <button
+        type="button"
+        onclick={openCreateModal}
+        class="inline-flex min-h-11 w-full items-center justify-center gap-2 rounded-[8px] border border-[#19A663] bg-[#19A663] px-3.5 text-[13px] font-semibold text-white shadow-[0_8px_22px_rgba(25,166,99,0.22)] transition-transform hover:-translate-y-0.5 active:scale-[0.96] sm:w-auto"
+      >
+        <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+          <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 4v16m8-8H4"></path>
+        </svg>
+        Create Group
+      </button>
+    {/if}
   </div>
 
-  <!-- Content Area -->
-  <div class="p-5 space-y-6">
-    <!-- Description -->
-    <p class="text-gray-600 text-sm">
-      Specialized teams focused on different aspects of the GenLayer ecosystem.
-    </p>
-
-    <!-- Contact @ras message -->
-    <div class="bg-white rounded-lg border {$categoryTheme.border} p-3">
-      <p class="text-sm text-gray-600">
-        <span class="mr-1">💡</span> <strong>Interested in joining?</strong> Contact <span class="font-mono {$categoryTheme.bgSecondary} px-1.5 py-0.5 rounded {$categoryTheme.text} font-semibold">@ras</span> on <a href="https://discord.gg/genlayerlabs" target="_blank" rel="noopener noreferrer" class="{$categoryTheme.text} hover:text-green-700 underline font-semibold">Discord</a> to learn more.
-      </p>
-    </div>
+  <div class="mb-5 rounded-[8px] border border-[#d8f3e4] bg-white/70 px-3 py-2 text-[13px] text-[#506078]">
+    Contact <span class="font-mono font-semibold text-[#137f4c]">@ras</span> on
+    <a href="https://discord.gg/genlayerlabs" target="_blank" rel="noopener noreferrer" class="font-semibold text-[#137f4c] underline">Discord</a>
+    to join.
+  </div>
 
-    <!-- Loading State -->
+  <div>
     {#if loading}
-      <div class="flex justify-center py-8">
-        <div class="animate-spin rounded-full h-8 w-8 border-b-2 border-primary-600"></div>
+      <div class="grid grid-cols-1 gap-4 lg:grid-cols-2">
+        {#each [1, 2] as _}
+          <div class="h-[236px] animate-pulse rounded-[8px] border border-[#eef1f4] bg-white/80 p-4">
+            <div class="h-5 w-40 rounded bg-gray-200"></div>
+            <div class="mt-4 h-4 w-full rounded bg-gray-100"></div>
+            <div class="mt-6 grid grid-cols-2 gap-2">
+              <div class="h-12 rounded bg-gray-100"></div>
+              <div class="h-12 rounded bg-gray-100"></div>
+            </div>
+          </div>
+        {/each}
       </div>
-    <!-- Empty State -->
     {:else if workingGroups.length === 0}
-      <div class="text-center text-gray-500 py-6">
-        <svg class="mx-auto h-12 w-12 text-gray-400 mb-3" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-          <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 20h5v-2a3 3 0 00-5.356-1.857M17 20H7m10 0v-2c0-.656-.126-1.283-.356-1.857M7 20H2v-2a3 3 0 015.356-1.857M7 20v-2c0-.656.126-1.283.356-1.857m0 0a5.002 5.002 0 019.288 0M15 7a3 3 0 11-6 0 3 3 0 016 0zm6 3a2 2 0 11-4 0 2 2 0 014 0zM7 10a2 2 0 11-4 0 2 2 0 014 0z"></path>
-        </svg>
-        <p>No working groups yet</p>
+      <div class="rounded-[8px] border border-dashed border-[#d8f3e4] bg-white/70 p-8 text-center">
+        <div class="mx-auto flex w-fit">
+          <CategoryIcon category="steward" mode="hexagon" size={54} />
+        </div>
+        <p class="mt-4 text-sm font-medium text-gray-900">No working groups yet</p>
         {#if isSteward}
           <button
             onclick={openCreateModal}
-            class="mt-3 {$categoryTheme.text} hover:text-green-700 font-medium"
+            class="mt-3 text-sm font-semibold text-[#137f4c] transition-colors hover:text-[#0f6b40]"
           >
             Create the first one
           </button>
         {/if}
       </div>
-    <!-- Working Groups List -->
     {:else}
-      <div class="divide-y divide-gray-200">
+      <div class="space-y-3">
         {#each workingGroups as group (group.id)}
-          <div class="space-y-3 py-5 first:pt-0 last:pb-0">
-            <!-- Group Header (smaller than parent) -->
-            <div class="flex items-center justify-between">
-              <div class="flex items-center gap-2">
-                <span class="text-lg">{group.icon || '👥'}</span>
-                <h3 class="text-base font-medium text-gray-900">{group.name}</h3>
-                <span class="text-xs text-gray-500 bg-gray-100 px-2 py-0.5 rounded-full">
-                  {group.participant_count || group.participants?.length || 0} members
-                </span>
-              </div>
-              {#if isSteward}
-                <div class="flex items-center gap-1">
-                  <button
-                    onclick={() => openAddParticipantModal(group.id)}
-                    class="p-1.5 text-gray-500 hover:text-green-600 hover:bg-green-50 rounded transition-colors"
-                    title="Add member"
-                  >
-                    <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                      <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M18 9v3m0 0v3m0-3h3m-3 0h-3m-2-5a4 4 0 11-8 0 4 4 0 018 0zM3 20a6 6 0 0112 0v1H3v-1z"></path>
-                    </svg>
-                  </button>
-                  <button
-                    onclick={() => openEditModal(group)}
-                    class="p-1.5 text-gray-500 hover:text-blue-600 hover:bg-blue-50 rounded transition-colors"
-                    title="Edit group"
-                  >
-                    <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                      <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M11 5H6a2 2 0 00-2 2v11a2 2 0 002 2h11a2 2 0 002-2v-5m-1.414-9.414a2 2 0 112.828 2.828L11.828 15H9v-2.828l8.586-8.586z"></path>
-                    </svg>
-                  </button>
+          <article class="working-group-card overflow-hidden rounded-[8px] bg-white/86">
+            <div class="p-4">
+              <div class="flex flex-col gap-3 lg:flex-row lg:items-center lg:justify-between">
+                <div class="flex min-w-0 items-start gap-3">
+                  <div class="flex h-11 w-11 shrink-0 items-center justify-center rounded-[8px] bg-white text-lg shadow-[0_8px_18px_rgba(25,166,99,0.10)]">
+                    {#if group.icon}
+                      <span aria-hidden="true">{group.icon}</span>
+                    {:else}
+                      <CategoryIcon category="steward" mode="hexagon" size={30} />
+                    {/if}
+                  </div>
+                  <div class="min-w-0 flex-1">
+                    <div class="flex flex-wrap items-center gap-2">
+                      <h3 class="truncate text-base font-semibold text-gray-950">{group.name}</h3>
+                      <span class="rounded-full bg-[#fbfbfb] px-2 py-0.5 text-xs font-semibold text-gray-500">
+                        {memberCount(group)} members
+                      </span>
+                    </div>
+                    {#if group.description}
+                      <div class="markdown-content working-group-description mt-2 text-sm leading-6 text-[#6b6b6b]" title={group.description}>
+                        {@html parseMarkdown(group.description)}
+                      </div>
+                    {/if}
+                  </div>
+                </div>
+
+                <div class="flex shrink-0 flex-wrap items-center gap-1 lg:justify-end">
+                  {#if group.discord_url}
+                    <a
+                      href={group.discord_url}
+                      target="_blank"
+                      rel="noopener noreferrer"
+                      class="inline-flex h-10 items-center gap-2 rounded-[8px] border border-[#d8f3e4] bg-white px-3 text-sm font-semibold text-[#137f4c] shadow-[0_8px_18px_rgba(31,42,68,0.06)] transition-colors hover:bg-[#f0fdf4]"
+                    >
+                      <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M13.5 6H18m0 0v4.5M18 6l-7.5 7.5M6 8.25v9A1.75 1.75 0 007.75 19h8.5A1.75 1.75 0 0018 17.25v-3"></path>
+                      </svg>
+                      Discord
+                    </a>
+                  {/if}
+
+                  {#if isSteward}
+                    <button
+                      onclick={() => openAddParticipantModal(group.id)}
+                      class="inline-flex h-10 w-10 items-center justify-center rounded-[8px] text-gray-500 transition-colors hover:bg-[#f0fdf4] hover:text-[#137f4c]"
+                      title="Add member"
+                    >
+                      <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M18 9v3m0 0v3m0-3h3m-3 0h-3m-2-5a4 4 0 11-8 0 4 4 0 018 0zM3 20a6 6 0 0112 0v1H3v-1z"></path>
+                      </svg>
+                    </button>
+                    <button
+                      onclick={() => openEditModal(group)}
+                      class="inline-flex h-10 w-10 items-center justify-center rounded-[8px] text-gray-500 transition-colors hover:bg-[#f4f9ff] hover:text-[#2563eb]"
+                      title="Edit group"
+                    >
+                      <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M11 5H6a2 2 0 00-2 2v11a2 2 0 002 2h11a2 2 0 002-2v-5m-1.414-9.414a2 2 0 112.828 2.828L11.828 15H9v-2.828l8.586-8.586z"></path>
+                      </svg>
+                    </button>
+                    <button
+                      onclick={() => openDeleteModal(group.id)}
+                      class="inline-flex h-10 w-10 items-center justify-center rounded-[8px] text-gray-500 transition-colors hover:bg-red-50 hover:text-red-600"
+                      title="Delete group"
+                    >
+                      <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M19 7l-.867 12.142A2 2 0 0116.138 21H7.862a2 2 0 01-1.995-1.858L5 7m5 4v6m4-6v6m1-10V4a1 1 0 00-1-1h-4a1 1 0 00-1 1v3M4 7h16"></path>
+                      </svg>
+                    </button>
+                  {/if}
+
                   <button
-                    onclick={() => openDeleteModal(group.id)}
-                    class="p-1.5 text-gray-500 hover:text-red-600 hover:bg-red-50 rounded transition-colors"
-                    title="Delete group"
+                    type="button"
+                    onclick={() => toggleGroup(group.id)}
+                    aria-expanded={isGroupExpanded(group.id)}
+                    aria-controls="working-group-members-{group.id}"
+                    class="inline-flex h-10 items-center gap-2 rounded-[8px] border border-[#d8f3e4] bg-white px-3 text-sm font-semibold text-[#137f4c] shadow-[0_8px_18px_rgba(31,42,68,0.06)] transition-colors hover:bg-[#f0fdf4]"
                   >
-                    <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                      <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M19 7l-.867 12.142A2 2 0 0116.138 21H7.862a2 2 0 01-1.995-1.858L5 7m5 4v6m4-6v6m1-10V4a1 1 0 00-1-1h-4a1 1 0 00-1 1v3M4 7h16"></path>
+                    {isGroupExpanded(group.id) ? 'Hide members' : 'View members'}
+                    <svg class="h-4 w-4 transition-transform {isGroupExpanded(group.id) ? 'rotate-180' : ''}" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
+                      <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 9l6 6 6-6"></path>
                     </svg>
                   </button>
                 </div>
-              {/if}
-            </div>
-
-            <!-- Group Description (if exists) -->
-            {#if group.description}
-              <div class="markdown-content text-sm text-gray-500">
-                {@html parseMarkdown(group.description)}
               </div>
-            {/if}
+            </div>
 
-            <!-- Members Card -->
-            {#if group.participants && group.participants.length > 0}
-              <div class="bg-white rounded-lg border border-gray-200 divide-y divide-gray-200">
-                {#each group.participants as participant}
-                  <div class="p-3 hover:bg-gray-50 transition-colors">
-                    <div class="flex items-center justify-between">
-                      <div class="flex items-center gap-3">
-                        <Avatar
-                          user={participant}
-                          size="sm"
-                          clickable={true}
-                        />
-                        <div class="min-w-0">
-                          <button
-                            onclick={() => push(`/participant/${participant.address}`)}
-                            class="text-sm font-medium text-gray-900 hover:{$categoryTheme.text} transition-colors truncate"
-                          >
-                            {participant.name || `${participant.address?.slice(0, 6)}...${participant.address?.slice(-4)}`}
-                          </button>
-                        </div>
-                      </div>
-                      <div class="flex items-center gap-2">
+            {#if isGroupExpanded(group.id)}
+              <div id="working-group-members-{group.id}" class="border-t border-[#eef1f4] bg-white/45 p-3 sm:p-4">
+                {#if group.participants && group.participants.length > 0}
+                  <div class="space-y-2">
+                    {#each group.participants as participant}
+                      <div class="member-card flex items-center justify-between gap-2 rounded-[8px] bg-white/78 p-2">
                         <button
-                          onclick={() => push(`/participant/${participant.address}`)}
-                          class="text-xs {$categoryTheme.text} hover:text-green-700 font-medium"
+                          onclick={() => openParticipant(participant)}
+                          class="flex min-w-0 flex-1 items-center gap-3 text-left"
                         >
-                          View →
+                          <Avatar user={{ ...participant, steward: true }} size="sm" clickable={false} />
+                          <span class="truncate text-sm font-medium text-gray-900">{participantName(participant)}</span>
                         </button>
+
                         {#if isSteward}
                           <button
                             onclick={() => handleRemoveParticipant(group.id, participant.id)}
-                            class="text-red-500 hover:text-red-700 p-1"
+                            class="inline-flex h-10 w-10 shrink-0 items-center justify-center rounded-[8px] text-gray-400 transition-colors hover:bg-red-50 hover:text-red-600"
                             title="Remove member"
                           >
-                            <svg class="w-4 h-4" fill="none" stroke="currentColor" viewBox="0 0 24 24">
+                            <svg class="h-4 w-4" fill="none" stroke="currentColor" viewBox="0 0 24 24" aria-hidden="true">
                               <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M6 18L18 6M6 6l12 12"></path>
                             </svg>
                           </button>
                         {/if}
                       </div>
-                    </div>
+                    {/each}
                   </div>
-                {/each}
-              </div>
-            {:else}
-              <div class="bg-white rounded-lg border border-gray-200 p-3 text-sm text-gray-500">
-                No members yet
+                {:else}
+                  <div class="rounded-[8px] border border-dashed border-[#e5e7eb] bg-white/70 p-3 text-sm text-gray-500">
+                    No members yet
+                  </div>
+                {/if}
               </div>
             {/if}
-          </div>
+          </article>
         {/each}
       </div>
     {/if}
   </div>
-</div>
+</section>
 
 <!-- Create/Edit Group Modal -->
 {#if showGroupModal}
@@ -380,39 +448,43 @@
       </div>
       <div class="px-6 py-4 space-y-4">
         <div>
-          <label class="block text-sm font-medium text-gray-700 mb-1">Name *</label>
+          <label for="working-group-name" class="block text-sm font-medium text-gray-700 mb-1">Name *</label>
           <input
+            id="working-group-name"
             type="text"
             bind:value={groupForm.name}
-            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-primary-500 focus:border-primary-500"
+            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-[#19A663] focus:border-[#19A663]"
             placeholder="Working Group Name"
           />
         </div>
         <div>
-          <label class="block text-sm font-medium text-gray-700 mb-1">Icon (Emoji)</label>
+          <label for="working-group-icon" class="block text-sm font-medium text-gray-700 mb-1">Icon (Emoji)</label>
           <input
+            id="working-group-icon"
             type="text"
             bind:value={groupForm.icon}
-            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-primary-500 focus:border-primary-500"
+            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-[#19A663] focus:border-[#19A663]"
             placeholder="👥"
             maxlength="10"
           />
         </div>
         <div>
-          <label class="block text-sm font-medium text-gray-700 mb-1">Description</label>
+          <label for="working-group-description" class="block text-sm font-medium text-gray-700 mb-1">Description</label>
           <textarea
+            id="working-group-description"
             bind:value={groupForm.description}
-            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-primary-500 focus:border-primary-500"
+            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-[#19A663] focus:border-[#19A663]"
             placeholder="Brief description of the working group"
             rows="2"
           ></textarea>
         </div>
         <div>
-          <label class="block text-sm font-medium text-gray-700 mb-1">Discord URL</label>
+          <label for="working-group-discord-url" class="block text-sm font-medium text-gray-700 mb-1">Discord URL</label>
           <input
+            id="working-group-discord-url"
             type="url"
             bind:value={groupForm.discord_url}
-            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-primary-500 focus:border-primary-500"
+            class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-[#19A663] focus:border-[#19A663]"
             placeholder="https://discord.gg/..."
           />
         </div>
@@ -427,7 +499,7 @@
         <button
           onclick={handleSaveGroup}
           disabled={savingGroup}
-          class="px-4 py-2 bg-primary-600 text-white rounded-md hover:bg-primary-700 transition-colors disabled:opacity-50"
+          class="px-4 py-2 bg-[#19A663] text-white rounded-md transition-colors hover:bg-[#137f4c] disabled:opacity-50"
         >
           {savingGroup ? 'Saving...' : (editingGroup ? 'Save Changes' : 'Create')}
         </button>
@@ -444,11 +516,12 @@
         <h3 class="text-lg font-semibold text-gray-800">Add Participant</h3>
       </div>
       <div class="px-6 py-4">
-        <label class="block text-sm font-medium text-gray-700 mb-1">Search by name or address</label>
+        <label for="working-group-user-search" class="block text-sm font-medium text-gray-700 mb-1">Search by name or address</label>
         <input
+          id="working-group-user-search"
           type="text"
           bind:value={searchQuery}
-          class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-primary-500 focus:border-primary-500"
+          class="w-full px-3 py-2 border border-gray-300 rounded-md focus:ring-[#19A663] focus:border-[#19A663]"
           placeholder="Type to search..."
         />
         {#if searching}
@@ -518,6 +591,59 @@
 {/if}
 
 <style>
+  .working-groups-shell {
+    -webkit-backdrop-filter: blur(12px);
+  }
+
+  .working-group-card {
+    box-shadow:
+      0 0 0 1px rgba(232, 235, 242, 0.9),
+      0 8px 18px rgba(31, 42, 68, 0.06);
+    transition-property: transform, box-shadow;
+    transition-duration: 160ms;
+    transition-timing-function: cubic-bezier(0.2, 0, 0, 1);
+  }
+
+  .working-group-card:hover {
+    transform: translateY(-1px);
+    box-shadow:
+      0 0 0 1px rgba(216, 243, 228, 0.95),
+      0 14px 26px rgba(31, 42, 68, 0.12);
+  }
+
+  .member-card {
+    transition-property: background-color;
+    transition-duration: 160ms;
+    transition-timing-function: cubic-bezier(0.2, 0, 0, 1);
+  }
+
+  .member-card:hover {
+    background-color: #f0fdf4;
+  }
+
+  .member-card :global(img) {
+    outline: 1px solid rgba(0, 0, 0, 0.1);
+  }
+
+  .working-group-description {
+    max-width: min(720px, 100%);
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+  }
+
+  .working-group-description :global(*) {
+    display: inline;
+  }
+
+  .working-group-description :global(br) {
+    display: none;
+  }
+
+  .working-group-description :global(p + p) {
+    margin-top: 0;
+  }
+
   .markdown-content :global(ul) {
     list-style-type: disc;
     margin-left: 1.5rem;
diff --git a/frontend/src/routes/StewardDashboard.svelte b/frontend/src/routes/StewardDashboard.svelte
index 91dd9e2d..4594e751 100644
--- a/frontend/src/routes/StewardDashboard.svelte
+++ b/frontend/src/routes/StewardDashboard.svelte
@@ -3,284 +3,244 @@
   import { push } from 'svelte-spa-router';
   import { userStore } from '../lib/userStore.js';
   import { stewardAPI } from '../lib/api.js';
-  import { format, formatDistanceToNow } from 'date-fns';
-  import { categoryTheme } from '../stores/category.js';
+  import { format } from 'date-fns';
   import Avatar from '../components/Avatar.svelte';
   import WorkingGroupsSection from '../components/WorkingGroupsSection.svelte';
+  import SectionHeader from '../components/ui/SectionHeader.svelte';
+  import CategoryIcon from '../components/portal/CategoryIcon.svelte';
 
-  let stats = $state({
-    pending_count: 0,
-    total_reviewed: 0,
-    last_review: null,
-    acceptance_rate: 0,
-    total_accepted: 0,
-    total_rejected: 0,
-    total_info_requested: 0
-  });
+  const pageGradientStyle = [
+    'background: radial-gradient(circle at 14% 8%, rgba(25, 166, 99, 0.2) 0%, transparent 30%)',
+    'radial-gradient(circle at 82% 12%, rgba(25, 166, 99, 0.12) 0%, transparent 28%)',
+    'linear-gradient(180deg, rgba(25, 166, 99, 0.07) 0%, rgba(255, 255, 255, 0) 100%)'
+  ].join(', ');
 
   let stewards = $state([]);
-  let loading = $state(true);
-  let error = $state(null);
   let stewardsLoading = $state(true);
   let isSteward = $derived($userStore.user?.steward ? true : false);
 
+  let stewardCards = $derived(stewards.filter((steward) => steward.role !== 'Reviewer'));
+  let reviewerCards = $derived(stewards.filter((steward) => steward.role === 'Reviewer'));
+
   onMount(async () => {
-    // Load stats and stewards for everyone
-    await Promise.all([
-      loadStats(),
-      loadStewards()
-    ]);
+    await loadStewards();
   });
 
-  async function loadStats() {
-    try {
-      loading = true;
-      error = null;
-      const response = await stewardAPI.getStats();
-      stats = response.data;
-    } catch (err) {
-      error = 'Failed to load dashboard statistics';
-      // Check if it's a permission error
-      if (err.response?.status === 403) {
-        error = 'You do not have permission to access steward tools';
-      }
-    } finally {
-      loading = false;
-    }
-  }
-
   async function loadStewards() {
     try {
       stewardsLoading = true;
-
-      // Get list of stewards directly
       const stewardsRes = await stewardAPI.getStewards();
-
-      // Ensure stewards is always an array
       stewards = stewardsRes.data || [];
-    } catch (err) {
-      // Keep stewards as empty array on error
+    } catch {
       stewards = [];
     } finally {
       stewardsLoading = false;
     }
   }
 
-  function formatDate(dateString) {
-    if (!dateString) return 'Never';
+  function formatJoined(dateString) {
+    if (!dateString) return 'Unknown';
     try {
-      const date = new Date(dateString);
-      return formatDistanceToNow(date, { addSuffix: true });
-    } catch (e) {
-      return dateString;
+      return format(new Date(dateString), 'MMM yyyy');
+    } catch {
+      return 'Unknown';
+    }
+  }
+
+  function displayName(person) {
+    if (person?.name) return person.name;
+    if (person?.address) return `${person.address.slice(0, 6)}...${person.address.slice(-4)}`;
+    return 'Unnamed steward';
+  }
+
+  function avatarUser(person) {
+    return { ...person, steward: true };
+  }
+
+  function openProfile(person) {
+    if (person?.address) {
+      push(`/participant/${person.address}`);
     }
   }
 </script>
 
-<div class="container mx-auto px-4 py-8">
-  <!-- Header -->
-  <h1 class="text-2xl font-bold text-gray-900 mb-6">Steward Dashboard</h1>
+<div class="relative -mx-3 -my-3 min-h-screen overflow-hidden bg-white px-3 py-8 sm:px-5 sm:py-10 md:px-8 md:py-12">
+  <div class="pointer-events-none absolute inset-0">
+    <div class="absolute inset-0" style={pageGradientStyle}></div>
+    <div class="absolute inset-0 bg-white/25"></div>
+  </div>
 
-  {#if loading}
-    <div class="flex justify-center items-center p-8">
-      <div class="animate-spin rounded-full h-10 w-10 border-b-2 border-primary-600"></div>
-    </div>
-  {:else if error && isSteward}
-    <div class="bg-red-50 border-l-4 border-red-400 p-4">
-      <div class="flex">
-        <div class="flex-shrink-0">
-          <svg class="h-5 w-5 text-red-400" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 20 20" fill="currentColor">
-            <path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd" />
-          </svg>
-        </div>
-        <div class="ml-3">
-          <p class="text-sm text-red-700">{error}</p>
+  <div class="relative z-10 space-y-6">
+    <header class="flex flex-col gap-5 md:flex-row md:items-end md:justify-between">
+      <div class="space-y-2">
+        <div class="flex items-start gap-3">
+          <CategoryIcon category="steward" mode="hexagon" size={44} />
+          <h1
+            class="steward-heading min-w-0 break-words text-[34px] font-semibold font-display leading-none text-black sm:text-[40px] md:text-[46px]"
+            style="letter-spacing: -1px;"
+          >
+            Steward Dashboard
+          </h1>
         </div>
+        <p class="max-w-2xl text-[14px] text-[#3f4b5f] sm:text-[15px]" style="letter-spacing: 0.2px;">
+          Track contribution review health, steward coverage, and working-group participation.
+        </p>
       </div>
-    </div>
-  {:else}
-    <div class="space-y-6">
-      <!-- Submission Statistics Cards - Show for everyone -->
-      <div class="space-y-4">
-        <div class="flex items-center justify-between">
-          <div class="flex items-center gap-2">
-            <div class="p-1.5 {$categoryTheme.badge.split(' ')[0]} rounded-lg">
-              <svg class="w-4 h-4 {$categoryTheme.text}" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5H7a2 2 0 00-2 2v12a2 2 0 002 2h10a2 2 0 002-2V7a2 2 0 00-2-2h-2M9 5a2 2 0 002 2h2a2 2 0 002-2M9 5a2 2 0 012-2h2a2 2 0 012 2m-6 9l2 2 4-4"></path>
-              </svg>
+
+      {#if isSteward}
+        <button
+          type="button"
+          onclick={() => push('/stewards/submissions')}
+          class="inline-flex min-h-11 w-full items-center justify-center gap-2 rounded-[8px] border border-[#19A663] bg-[#19A663] px-4 text-[13px] font-semibold text-white shadow-[0_8px_22px_rgba(25,166,99,0.22)] transition-transform hover:-translate-y-0.5 active:scale-[0.96] sm:w-auto"
+        >
+          Manage submissions
+          <img src="/assets/icons/arrow-right-line-white.svg" alt="" class="h-4 w-4" />
+        </button>
+      {/if}
+    </header>
+
+    <section class="glass-panel rounded-[10px] border border-white/70 bg-white/78 p-5 shadow-[0_18px_55px_rgba(38,48,75,0.15)] backdrop-blur-md sm:p-7 md:p-8">
+      <SectionHeader
+        title="Active Stewards"
+        subtitle="Current steward coverage separated by review responsibility."
+        showLink={false}
+      />
+
+      {#if stewardsLoading}
+        <div class="grid grid-cols-2 gap-3 sm:grid-cols-3 md:grid-cols-4 lg:grid-cols-5 xl:grid-cols-7 2xl:grid-cols-8">
+          {#each [1, 2, 3, 4, 5, 6] as _}
+            <div class="h-[154px] animate-pulse rounded-[8px] border border-[#eef1f4] bg-white/80 p-3">
+              <div class="mx-auto h-20 w-20 rounded-full bg-gray-200"></div>
+              <div class="mx-auto mt-4 h-3 w-24 rounded bg-gray-200"></div>
+              <div class="mx-auto mt-2 h-3 w-16 rounded bg-gray-100"></div>
             </div>
-            <h2 class="text-lg font-semibold text-gray-900">Contribution Submissions</h2>
-          </div>
-          {#if isSteward}
-            <button
-              onclick={() => push('/stewards/submissions')}
-              class="text-sm text-gray-500 hover:{$categoryTheme.text} transition-colors"
-            >
-              Manage submissions
-              <svg class="inline-block w-3 h-3 ml-1" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5l7 7-7 7"></path>
-              </svg>
-            </button>
-          {/if}
+          {/each}
         </div>
-        
-        <!-- Stats Grid -->
-        <div class="grid grid-cols-1 md:grid-cols-2 lg:grid-cols-4 gap-4">
-          <!-- Pending Submissions -->
-          <div class="bg-white shadow rounded-lg p-4">
-            <div class="flex items-center">
-              <div class="flex-shrink-0 p-3 rounded-lg mr-4 bg-yellow-50 text-yellow-500">
-                <svg class="w-6 h-6" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z"></path>
-                </svg>
-              </div>
-              <div class="flex-1 flex items-end justify-between">
-                <div>
-                  <p class="text-sm text-gray-500">Pending Review</p>
-                  <p class="text-2xl font-bold text-gray-900">{stats.pending_count}</p>
-                </div>
-                {#if stats.pending_count > 0 && isSteward}
-                  <button
-                    onclick={() => push('/stewards/submissions')}
-                    class="text-xs {$categoryTheme.text} hover:text-green-700 font-medium pb-1"
-                  >
-                    Review Now →
-                  </button>
-                {/if}
-              </div>
-            </div>
+      {:else if stewards.length === 0}
+        <div class="rounded-[8px] border border-dashed border-[#d8f3e4] bg-white/70 p-8 text-center">
+          <div class="mx-auto flex w-fit">
+            <CategoryIcon category="steward" mode="hexagon" size={54} />
           </div>
-          
-          <!-- Total Reviewed -->
-          <div class="bg-white shadow rounded-lg p-4">
+          <p class="mt-4 text-sm font-medium text-gray-900">No active stewards found</p>
+        </div>
+      {:else}
+        <div class="space-y-7">
+          <div class="space-y-3">
             <div class="flex items-center">
-              <div class="flex-shrink-0 p-3 rounded-lg mr-4 bg-green-50 text-green-500">
-                <svg class="w-6 h-6" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 12l2 2 4-4m6 2a9 9 0 11-18 0 9 9 0 0118 0z"></path>
-                </svg>
-              </div>
-              <div>
-                <p class="text-sm text-gray-500">Total Reviewed</p>
-                <p class="text-2xl font-bold text-gray-900">{stats.total_reviewed}</p>
-              </div>
+              <h3 class="text-base font-semibold text-gray-950">Stewards</h3>
             </div>
-          </div>
-          
-          <!-- Acceptance Rate -->
-          <div class="bg-white shadow rounded-lg p-4">
-            <div class="flex items-center mb-3">
-              <div class="flex-shrink-0 p-3 rounded-lg mr-4 bg-blue-50 text-blue-500">
-                <svg class="w-6 h-6" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 19v-6a2 2 0 00-2-2H5a2 2 0 00-2 2v6a2 2 0 002 2h2a2 2 0 002-2zm0 0V9a2 2 0 012-2h2a2 2 0 012 2v10m-6 0a2 2 0 002 2h2a2 2 0 002-2m0 0V5a2 2 0 012-2h2a2 2 0 012 2v14a2 2 0 01-2 2h-2a2 2 0 01-2-2z"></path>
-                </svg>
-              </div>
-              <div>
-                <p class="text-sm text-gray-500">Acceptance Rate</p>
-                <p class="text-2xl font-bold text-gray-900">{stats.acceptance_rate}%</p>
+
+            {#if stewardCards.length === 0}
+              <div class="rounded-[8px] border border-[#eef1f4] bg-white/78 p-5 text-sm text-gray-500">No stewards in this section.</div>
+            {:else}
+              <div class="grid grid-cols-2 gap-3 sm:grid-cols-3 md:grid-cols-4 lg:grid-cols-5 xl:grid-cols-7 2xl:grid-cols-8">
+                {#each stewardCards as steward (steward.id)}
+                  <article class="person-card rounded-[8px] bg-white/86">
+                    <button
+                      type="button"
+                      onclick={() => openProfile(steward)}
+                      class="block h-full w-full rounded-[8px] p-3 text-center"
+                    >
+                      <div class="person-avatar-frame steward-avatar-frame mx-auto rounded-full bg-white p-1">
+                        <Avatar user={avatarUser(steward)} size="full" clickable={false} />
+                      </div>
+                      <p class="mt-3 truncate text-sm font-semibold text-gray-950" title={displayName(steward)}>
+                        {displayName(steward)}
+                      </p>
+                      <p class="mt-1 text-xs font-medium text-[#6b7280]">Joined {formatJoined(steward.created_at)}</p>
+                    </button>
+                  </article>
+                {/each}
               </div>
-            </div>
-            <div class="w-full bg-gray-200 rounded-full h-1.5">
-              <div class="bg-green-600 h-1.5 rounded-full" style="width: {stats.acceptance_rate}%"></div>
-            </div>
+            {/if}
           </div>
-          
-          <!-- Last Review -->
-          <div class="bg-white shadow rounded-lg p-4">
+
+          <div class="space-y-3">
             <div class="flex items-center">
-              <div class="flex-shrink-0 p-3 rounded-lg mr-4 bg-purple-50 text-purple-500">
-                <svg class="w-6 h-6" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z"></path>
-                </svg>
-              </div>
-              <div>
-                <p class="text-sm text-gray-500">Last Review</p>
-                <p class="text-xl font-semibold text-gray-900">{formatDate(stats.last_review)}</p>
-              </div>
-            </div>
-          </div>
-        </div>
-        
-      </div>
-      
-      <div class="space-y-6">
-        <!-- Active Stewards -->
-        <div class="space-y-4">
-          <div class="flex items-center justify-between">
-            <div class="flex items-center gap-2">
-              <div class="p-1.5 {$categoryTheme.bgSecondary} rounded-lg">
-                <svg class="w-4 h-4 {$categoryTheme.text}" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 20h5v-2a3 3 0 00-5.356-1.857M17 20H7m10 0v-2c0-.656-.126-1.283-.356-1.857M7 20H2v-2a3 3 0 015.356-1.857M7 20v-2c0-.656.126-1.283.356-1.857m0 0a5.002 5.002 0 019.288 0M15 7a3 3 0 11-6 0 3 3 0 016 0zm6 3a2 2 0 11-4 0 2 2 0 014 0zM7 10a2 2 0 11-4 0 2 2 0 014 0z"></path>
-                </svg>
-              </div>
-              <h2 class="text-lg font-semibold text-gray-900">Active Stewards</h2>
-            </div>
-          </div>
-          
-          {#if stewardsLoading}
-            <div class="bg-white rounded-lg shadow-sm border {$categoryTheme.border} p-8">
-              <div class="flex justify-center">
-                <div class="animate-spin rounded-full h-8 w-8 border-b-2 border-primary-600"></div>
-              </div>
-            </div>
-          {:else if stewards.length === 0}
-            <div class="bg-white rounded-lg shadow-sm border {$categoryTheme.border} p-6">
-              <div class="text-center text-gray-500">
-                <svg class="mx-auto h-12 w-12 text-gray-400 mb-3" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                  <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M17 20h5v-2a3 3 0 00-5.356-1.857M17 20H7m10 0v-2c0-.656-.126-1.283-.356-1.857M7 20H2v-2a3 3 0 015.356-1.857M7 20v-2c0-.656.126-1.283.356-1.857m0 0a5.002 5.002 0 019.288 0M15 7a3 3 0 11-6 0 3 3 0 016 0zm6 3a2 2 0 11-4 0 2 2 0 014 0zM7 10a2 2 0 11-4 0 2 2 0 014 0z"></path>
-                </svg>
-                <p>No active stewards found</p>
-              </div>
+              <h3 class="text-base font-semibold text-gray-950">Reviewers</h3>
             </div>
-          {:else}
-            <div class="bg-white rounded-lg shadow-sm border {$categoryTheme.border} divide-y divide-gray-200">
-              {#each stewards as steward, index}
-                <div class="p-4 hover:bg-gray-50 transition-colors">
-                  <div class="flex items-center justify-between">
-                    <div class="flex items-center gap-3">
-                      <Avatar
-                        user={steward}
-                        size="sm"
-                        clickable={true}
-                      />
-                      <div class="min-w-0">
-                        <div class="flex items-center gap-2">
-                          <button
-                            onclick={() => push(`/participant/${steward.address}`)}
-                            class="text-sm font-medium text-gray-900 hover:{$categoryTheme.text} transition-colors truncate"
-                          >
-                            {steward.name || `${steward.address.slice(0, 6)}...${steward.address.slice(-4)}`}
-                          </button>
-                          {#if steward.role === 'Steward'}
-                            <span class="px-1.5 py-0.5 text-[10px] font-medium rounded bg-green-100 text-green-700">Steward</span>
-                          {:else if steward.role === 'Reviewer'}
-                            <span class="px-1.5 py-0.5 text-[10px] font-medium rounded bg-blue-100 text-blue-700">Reviewer</span>
-                          {/if}
-                        </div>
-                        <div class="flex items-center gap-1.5 text-xs text-gray-500">
-                          <span>Since {format(new Date(steward.created_at), 'MMM yyyy')}</span>
-                          {#if steward.permitted_categories?.length > 0}
-                            <span class="text-gray-300">·</span>
-                            <span class="text-gray-400">{steward.permitted_categories.join(', ')}</span>
-                          {/if}
-                        </div>
-                      </div>
-                    </div>
+
+            {#if reviewerCards.length === 0}
+              <div class="rounded-[8px] border border-[#eef1f4] bg-white/78 p-5 text-sm text-gray-500">No reviewers in this section.</div>
+            {:else}
+              <div class="grid grid-cols-3 gap-2.5 sm:grid-cols-4 md:grid-cols-6 xl:grid-cols-10">
+                {#each reviewerCards as reviewer (reviewer.id)}
+                  <article class="person-card reviewer-card rounded-[8px] bg-white/86">
                     <button
-                      onclick={() => push(`/participant/${steward.address}`)}
-                      class="text-xs {$categoryTheme.text} hover:text-green-700 font-medium"
+                      type="button"
+                      onclick={() => openProfile(reviewer)}
+                      class="block h-full w-full rounded-[8px] p-2 text-center"
                     >
-                      View →
+                      <div class="person-avatar-frame reviewer-avatar-frame mx-auto rounded-full bg-white p-0.5">
+                        <Avatar user={avatarUser(reviewer)} size="full" clickable={false} />
+                      </div>
+                      <p class="mt-2 truncate text-[12px] font-semibold leading-4 text-gray-950" title={displayName(reviewer)}>
+                        {displayName(reviewer)}
+                      </p>
+                      <p class="mt-0.5 text-[11px] font-medium leading-4 text-[#6b7280]">Joined {formatJoined(reviewer.created_at)}</p>
                     </button>
-                  </div>
-                </div>
-              {/each}
-            </div>
-          {/if}
-      </div>
-      
-      <!-- Working Groups Section -->
-      <WorkingGroupsSection />
-      </div>
-    </div>
-  {/if}
-</div>
\ No newline at end of file
+                  </article>
+                {/each}
+              </div>
+            {/if}
+          </div>
+        </div>
+      {/if}
+    </section>
+
+    <WorkingGroupsSection />
+  </div>
+</div>
+
+<style>
+  .steward-heading {
+    text-wrap: balance;
+  }
+
+  .glass-panel {
+    -webkit-backdrop-filter: blur(12px);
+  }
+
+  .person-card {
+    box-shadow:
+      0 0 0 1px rgba(232, 235, 242, 0.9),
+      0 8px 18px rgba(31, 42, 68, 0.06);
+    transition-property: transform, box-shadow;
+    transition-duration: 160ms;
+    transition-timing-function: cubic-bezier(0.2, 0, 0, 1);
+  }
+
+  .person-card:hover {
+    transform: translateY(-1px);
+    box-shadow:
+      0 0 0 1px rgba(216, 243, 228, 0.95),
+      0 14px 26px rgba(31, 42, 68, 0.12);
+  }
+
+  .person-avatar-frame {
+    box-shadow:
+      0 0 0 1px rgba(216, 243, 228, 0.9),
+      0 8px 18px rgba(25, 166, 99, 0.12);
+    transition-property: transform;
+    transition-duration: 160ms;
+    transition-timing-function: cubic-bezier(0.2, 0, 0, 1);
+  }
+
+  .person-card:hover .person-avatar-frame {
+    transform: scale(1.02);
+  }
+
+  .steward-avatar-frame {
+    height: 80px;
+    width: 80px;
+  }
+
+  .reviewer-avatar-frame {
+    height: 54px;
+    width: 54px;
+  }
+
+  .person-avatar-frame :global(img) {
+    outline: 1px solid rgba(0, 0, 0, 0.1);
+  }
+</style>

From c293fd1f2335c6b2afc4856d41dcf9f2271094a3 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 17:20:16 +0200
Subject: [PATCH 6/8] Address public access review feedback

---
 backend/api/metrics_views.py                  |  4 ++-
 .../tests/test_canceled_submissions.py        | 30 +++++++++++++++++++
 .../tests/test_steward_permissions.py         |  8 ++---
 backend/contributions/views.py                | 17 +++++++++++
 backend/leaderboard/tests/test_stats.py       | 30 +++++++++++++++++++
 backend/leaderboard/views.py                  | 14 +++++++++
 backend/users/serializers.py                  |  9 ++++++
 backend/users/tests/test_email_security.py    | 15 +++++++---
 backend/users/views.py                        |  7 +++--
 frontend/src/components/AuthButton.svelte     |  9 +-----
 frontend/src/components/Sidebar.svelte        |  2 --
 .../src/components/ui/SectionHeader.svelte    | 11 ++++---
 12 files changed, 128 insertions(+), 28 deletions(-)

diff --git a/backend/api/metrics_views.py b/backend/api/metrics_views.py
index ed458f30..cd078ce4 100644
--- a/backend/api/metrics_views.py
+++ b/backend/api/metrics_views.py
@@ -35,7 +35,9 @@ class OverviewMetricsView(APIView):
     Public investor overview payload.
 
     Served from the latest composite ``overview_payload`` MetricSnapshot that the
-    cron persists. Public page reads never fetch or aggregate source providers.
+    cron persists. If no snapshot exists, the view performs a live overview
+    rebuild with ``build_overview_payload()`` and returns the empty payload only
+    if that fallback fails.
     """
     permission_classes = [permissions.AllowAny]
 
diff --git a/backend/contributions/tests/test_canceled_submissions.py b/backend/contributions/tests/test_canceled_submissions.py
index b4a0a5af..e8f031b3 100644
--- a/backend/contributions/tests/test_canceled_submissions.py
+++ b/backend/contributions/tests/test_canceled_submissions.py
@@ -110,6 +110,36 @@ def test_daily_metrics_are_public_aggregate_counts(self):
         self.assertEqual(response.status_code, status.HTTP_200_OK)
         self.assertEqual(response.data['totals']['accepted'], 1)
 
+    def test_daily_metrics_rejects_inverted_date_range(self):
+        self.client.force_authenticate(user=None)
+
+        response = self.client.get(
+            '/api/v1/steward-submissions/daily-metrics/',
+            {
+                'group_by': 'day',
+                'start_date': '2026-02-01',
+                'end_date': '2026-01-01',
+            },
+        )
+
+        self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
+        self.assertEqual(response.data['detail'], 'start_date must be before or equal to end_date.')
+
+    def test_daily_metrics_rejects_too_large_public_date_range(self):
+        self.client.force_authenticate(user=None)
+
+        response = self.client.get(
+            '/api/v1/steward-submissions/daily-metrics/',
+            {
+                'group_by': 'day',
+                'start_date': '2020-01-01',
+                'end_date': '2022-01-01',
+            },
+        )
+
+        self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
+        self.assertEqual(response.data['detail'], 'Date range is too large for group_by=day.')
+
     def test_steward_stats_are_public_aggregate_counts_for_anonymous_users(self):
         self._create_submission(state='pending')
         self._create_submission(state='accepted', staff_reply='Accepted')
diff --git a/backend/contributions/tests/test_steward_permissions.py b/backend/contributions/tests/test_steward_permissions.py
index a800355c..1afb3a75 100644
--- a/backend/contributions/tests/test_steward_permissions.py
+++ b/backend/contributions/tests/test_steward_permissions.py
@@ -105,8 +105,8 @@ def setUp(self):
         
         self.client = APIClient()
     
-    def test_non_authenticated_cannot_access_steward_endpoints(self):
-        """Test that non-authenticated users cannot access steward endpoints."""
+    def test_non_authenticated_user_can_view_stats_but_not_protected_steward_endpoints(self):
+        """Test that anonymous users can view stats but not protected steward endpoints."""
         # Try to access steward submissions list
         response = self.client.get('/api/v1/steward-submissions/')
         self.assertEqual(response.status_code, status.HTTP_403_FORBIDDEN)
@@ -124,8 +124,8 @@ def test_non_authenticated_cannot_access_steward_endpoints(self):
         self.assertEqual(response.data['pending_count'], 1)
         self.assertEqual(response.data['total_reviewed'], 0)
     
-    def test_regular_user_cannot_access_steward_endpoints(self):
-        """Test that regular users cannot access steward endpoints."""
+    def test_regular_user_can_view_stats_but_not_protected_steward_endpoints(self):
+        """Test that regular users can view stats but not protected steward endpoints."""
         # Authenticate as regular user
         self.client.force_authenticate(user=self.regular_user)
         
diff --git a/backend/contributions/views.py b/backend/contributions/views.py
index 713efb5d..1cccb433 100644
--- a/backend/contributions/views.py
+++ b/backend/contributions/views.py
@@ -2495,6 +2495,23 @@ def daily_metrics(self, request):
             if end_date is None:
                 end_date = timezone.now().date()
 
+        if start_date > end_date:
+            return Response(
+                {'detail': 'start_date must be before or equal to end_date.'},
+                status=status.HTTP_400_BAD_REQUEST,
+            )
+
+        max_days_by_group = {
+            'day': 366,
+            'week': 366 * 5,
+            'month': 366 * 10,
+        }
+        if (end_date - start_date).days > max_days_by_group[group_by]:
+            return Response(
+                {'detail': f'Date range is too large for group_by={group_by}.'},
+                status=status.HTTP_400_BAD_REQUEST,
+            )
+
         start_datetime = day_start(start_date)
         end_datetime = day_start(end_date + timedelta(days=1))
 
diff --git a/backend/leaderboard/tests/test_stats.py b/backend/leaderboard/tests/test_stats.py
index 2de1a9e7..1677283a 100644
--- a/backend/leaderboard/tests/test_stats.py
+++ b/backend/leaderboard/tests/test_stats.py
@@ -142,6 +142,36 @@ def test_leaderboard_allows_public_read_access(self):
 
         self.assertEqual(response.status_code, 200)
 
+    def test_public_user_stats_do_not_expose_hidden_users(self):
+        hidden_user = self._create_user(
+            'hidden-stats@example.com',
+            '0x00000000000000000000000000000000000000aa',
+            visible=False,
+        )
+        self.client.force_authenticate(user=None)
+
+        response = self.client.get(f'/api/v1/leaderboard/user/{hidden_user.id}/')
+        self.assertEqual(response.status_code, 404)
+
+        response = self.client.get(
+            f'/api/v1/leaderboard/user_stats/by-address/{hidden_user.address}/'
+        )
+        self.assertEqual(response.status_code, 404)
+
+    def test_hidden_user_can_view_own_stats(self):
+        hidden_user = self._create_user(
+            'own-hidden-stats@example.com',
+            '0x00000000000000000000000000000000000000ab',
+            visible=False,
+        )
+        self.client.force_authenticate(user=hidden_user)
+
+        response = self.client.get(
+            f'/api/v1/leaderboard/user_stats/by-address/{hidden_user.address}/'
+        )
+
+        self.assertEqual(response.status_code, 200)
+
     def test_community_member_count_uses_accepted_community_contributions(self):
         now = timezone.now()
         community_user = self._create_user(
diff --git a/backend/leaderboard/views.py b/backend/leaderboard/views.py
index cf7dfe4c..298988c6 100644
--- a/backend/leaderboard/views.py
+++ b/backend/leaderboard/views.py
@@ -67,6 +67,16 @@ class LeaderboardViewSet(viewsets.ReadOnlyModelViewSet):
     ordering = ['rank']
     pagination_class = None  # Disable pagination to return all entries
 
+    def _can_view_user_stats(self, user):
+        request_user = self.request.user
+        return bool(
+            user.visible
+            or (
+                request_user.is_authenticated
+                and (request_user.id == user.id or request_user.is_staff)
+            )
+        )
+
     def get_queryset(self):
         """
         Filter leaderboard by type, user address, and handle ordering.
@@ -626,6 +636,8 @@ def user_stats(self, request, user_id=None):
             user = User.objects.get(pk=user_id)
         except User.DoesNotExist:
             return Response({'error': 'User not found'}, status=404)
+        if not self._can_view_user_stats(user):
+            return Response({'error': 'User not found'}, status=404)
         
         # Get category filter from query params
         category = request.query_params.get('category')
@@ -643,6 +655,8 @@ def user_stats_by_address(self, request, address=None):
             user = User.objects.get(address__iexact=address)
         except User.DoesNotExist:
             return Response({'error': 'User not found'}, status=404)
+        if not self._can_view_user_stats(user):
+            return Response({'error': 'User not found'}, status=404)
         
         # Get category filter from query params
         category = request.query_params.get('category')
diff --git a/backend/users/serializers.py b/backend/users/serializers.py
index b7699e92..099eb1ce 100644
--- a/backend/users/serializers.py
+++ b/backend/users/serializers.py
@@ -881,6 +881,15 @@ def to_representation(self, instance):
             ]:
                 data.pop(field, None)
 
+        if self.context.get('public_profile', False):
+            for field in [
+                'referral_code',
+                'referred_by_info',
+                'total_referrals',
+                'referral_details',
+            ]:
+                data.pop(field, None)
+
         return data
 
 
diff --git a/backend/users/tests/test_email_security.py b/backend/users/tests/test_email_security.py
index 33421fc1..f21d80af 100644
--- a/backend/users/tests/test_email_security.py
+++ b/backend/users/tests/test_email_security.py
@@ -153,6 +153,9 @@ def test_verified_email_shown_in_own_profile(self):
         self.assertEqual(response.status_code, status.HTTP_200_OK)
         self.assertEqual(response.data['email'], 'verified@example.com')
         self.assertTrue(response.data['is_email_verified'])
+        self.verified_user.refresh_from_db()
+        self.assertEqual(response.data['referral_code'], self.verified_user.referral_code)
+        self.assertIsNotNone(response.data['referred_by_info'])
     
     def test_unverified_email_not_exposed_in_public_profile(self):
         """Test that public user profile endpoint hides email fields."""
@@ -227,7 +230,7 @@ def test_public_profile_only_exposes_public_social_identifiers(self):
             self.assertNotIn(private_value, serialized)
 
     def test_verified_email_shown_on_own_public_profile_when_authenticated(self):
-        """Test that a user can see their own email on any profile endpoint."""
+        """Test that public profile endpoints do not include referral details."""
         self.authenticate(self.verified_user)
 
         response = self.client.get(f'/api/v1/users/by-address/{self.verified_user.address}/')
@@ -236,9 +239,13 @@ def test_verified_email_shown_on_own_public_profile_when_authenticated(self):
         self.assertTrue(response.data['is_email_verified'])
         self.assertTrue(response.data['is_banned'])
         self.assertEqual(response.data['ban_reason'], 'private moderation note')
-        self.verified_user.refresh_from_db()
-        self.assertEqual(response.data['referral_code'], self.verified_user.referral_code)
-        self.assertIsNotNone(response.data['referred_by_info'])
+        for field in [
+            'referral_code',
+            'referred_by_info',
+            'total_referrals',
+            'referral_details',
+        ]:
+            self.assertNotIn(field, response.data)
         self.assertEqual(response.data['github_connection']['platform_username'], 'verified-gh')
         self.assertEqual(response.data['twitter_connection']['platform_username'], 'verified-x')
         self.assertEqual(response.data['discord_connection']['platform_username'], 'verified-discord')
diff --git a/backend/users/views.py b/backend/users/views.py
index 00aef20c..3d13eb7d 100644
--- a/backend/users/views.py
+++ b/backend/users/views.py
@@ -100,8 +100,9 @@ def get_serializer_context(self):
         context = super().get_serializer_context()
         # Use light serializers for list view, full for detail/by_address
         context['use_light_serializers'] = self.action == 'list'
-        # Include referral_details only for detail/by_address views
-        context['include_referral_details'] = self.action in ['retrieve', 'by_address']
+        # Referral breakdowns belong on owner-only endpoints such as /users/me/.
+        context['include_referral_details'] = False
+        context['public_profile'] = self.action in ['retrieve', 'by_address']
         return context
 
     @action(detail=False, methods=['get'], url_path='by-address/(?P<address>[^/.]+)')
@@ -120,7 +121,7 @@ def by_address(self, request, address=None):
         # Override context for by_address to include full details
         context = self.get_serializer_context()
         context['use_light_serializers'] = False
-        context['include_referral_details'] = True
+        context['include_referral_details'] = False
         serializer = self.get_serializer(user, context=context)
         return Response(serializer.data)
     
diff --git a/frontend/src/components/AuthButton.svelte b/frontend/src/components/AuthButton.svelte
index 099f5dd3..1469d784 100644
--- a/frontend/src/components/AuthButton.svelte
+++ b/frontend/src/components/AuthButton.svelte
@@ -122,7 +122,7 @@
 
 <div class="auth-dropdown-container">
   <button 
-    class="auth-button {isAuthenticated ? 'connected' : ''}" 
+    class="auth-button {isAuthenticated ? 'connected' : '!min-w-[168px] !h-11 !px-5 !py-2.5 !text-[15px]'}"
     on:click={handleAuth}
     disabled={loading || storeLoading}
     data-auth-button
@@ -194,13 +194,6 @@
     font-size: 0.875rem;
   }
 
-  .auth-button:not(.connected) {
-    min-width: 168px;
-    height: 44px;
-    padding: 0.625rem 1.25rem;
-    font-size: 0.9375rem;
-  }
-
   .auth-button:hover {
     background-color: #1a1a24;
   }
diff --git a/frontend/src/components/Sidebar.svelte b/frontend/src/components/Sidebar.svelte
index 2e95d41e..5de62f6a 100644
--- a/frontend/src/components/Sidebar.svelte
+++ b/frontend/src/components/Sidebar.svelte
@@ -219,7 +219,6 @@
             </a>
             <a
               href="/leaderboard"
-              onclick={(e) => { e.preventDefault(); navigate('/leaderboard'); }}
               class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
                 isActive('/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
               }"
@@ -676,7 +675,6 @@
           </a>
           <a
             href="/leaderboard"
-            onclick={(e) => { e.preventDefault(); navigate('/leaderboard'); }}
             class="flex items-center border-l-[1.5px] px-3 py-2 text-[14px] font-medium text-black tracking-[0.28px] {
               isActive('/leaderboard') ? 'border-[#8D81E1]' : 'border-[#f5f5f5]'
             }"
diff --git a/frontend/src/components/ui/SectionHeader.svelte b/frontend/src/components/ui/SectionHeader.svelte
index 78b48e56..4ee668c7 100644
--- a/frontend/src/components/ui/SectionHeader.svelte
+++ b/frontend/src/components/ui/SectionHeader.svelte
@@ -1,5 +1,4 @@
 <script>
-  import { push } from 'svelte-spa-router';
   import { authState } from '../../lib/auth.js';
 
   let {
@@ -12,14 +11,13 @@
     requiresAuth = false,
   } = $props();
 
-  function handleLinkClick() {
+  function handleLinkClick(event) {
     if (requiresAuth && !$authState.isAuthenticated) {
+      event.preventDefault();
       sessionStorage.setItem('redirectAfterLogin', linkPath);
       const authButton = document.querySelector('[data-auth-button]');
       if (authButton) authButton.click();
-      return;
     }
-    push(linkPath);
   }
 </script>
 
@@ -31,7 +29,8 @@
     {/if}
   </div>
   {#if showLink && linkPath}
-    <button
+    <a
+      href={linkPath}
       onclick={handleLinkClick}
       class="flex items-center gap-1 text-[14px] text-[#6b6b6b] hover:text-black transition-colors flex-shrink-0"
       style="letter-spacing: 0.28px;"
@@ -40,6 +39,6 @@
       {#if showArrow}
         <img src="/assets/icons/arrow-right-line.svg" alt="" class="w-4 h-4">
       {/if}
-    </button>
+    </a>
   {/if}
 </div>

From 335a5edefe404eda1dcfa19b547a9efebb361f0d Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 17:36:36 +0200
Subject: [PATCH 7/8] Cap public user highlights limit

---
 backend/users/tests/test_email_security.py | 62 ++++++++++++++++++++++
 backend/users/views.py                     | 27 +++++++++-
 2 files changed, 88 insertions(+), 1 deletion(-)

diff --git a/backend/users/tests/test_email_security.py b/backend/users/tests/test_email_security.py
index f21d80af..c939c33b 100644
--- a/backend/users/tests/test_email_security.py
+++ b/backend/users/tests/test_email_security.py
@@ -133,6 +133,46 @@ def assert_requires_authentication(self, response):
             response.status_code,
             [status.HTTP_401_UNAUTHORIZED, status.HTTP_403_FORBIDDEN],
         )
+
+    def create_public_highlights(self, count):
+        from contributions.models import (
+            Category,
+            Contribution,
+            ContributionHighlight,
+            ContributionType,
+        )
+        from leaderboard.models import GlobalLeaderboardMultiplier
+
+        category, _ = Category.objects.get_or_create(
+            slug='builder',
+            defaults={'name': 'Builder'},
+        )
+        contribution_type, _ = ContributionType.objects.get_or_create(
+            slug='public-highlight-test',
+            defaults={'name': 'Public Highlight Test', 'category': category},
+        )
+        GlobalLeaderboardMultiplier.objects.get_or_create(
+            contribution_type=contribution_type,
+            defaults={
+                'multiplier_value': 1,
+                'valid_from': timezone.now() - timezone.timedelta(days=1),
+                'description': 'Public highlight test multiplier',
+            },
+        )
+
+        for index in range(count):
+            contribution = Contribution.objects.create(
+                user=self.verified_user,
+                contribution_type=contribution_type,
+                points=1,
+                contribution_date=timezone.now(),
+                title=f'Contribution {index}',
+            )
+            ContributionHighlight.objects.create(
+                contribution=contribution,
+                title=f'Highlight {index}',
+                description='Public highlight test',
+            )
     
     def test_unverified_email_not_exposed_in_own_profile(self):
         """Test that unverified email is not exposed when user views own profile."""
@@ -372,6 +412,28 @@ def test_hidden_users_are_not_publicly_enumerable(self):
         self.assertEqual(response.status_code, status.HTTP_200_OK)
         self.assertEqual(response.data['email'], 'hidden@example.com')
 
+    def test_public_highlights_reject_malformed_limit(self):
+        """Test public profile highlights handle invalid limits without server errors."""
+        response = self.client.get(
+            f'/api/v1/users/by-address/{self.verified_user.address}/highlights/',
+            {'limit': 'invalid'},
+        )
+
+        self.assertEqual(response.status_code, status.HTTP_400_BAD_REQUEST)
+        self.assertEqual(response.data['detail'], 'limit must be a non-negative integer.')
+
+    def test_public_highlights_cap_large_limit(self):
+        """Test public profile highlights enforce a maximum limit."""
+        self.create_public_highlights(21)
+
+        response = self.client.get(
+            f'/api/v1/users/by-address/{self.verified_user.address}/highlights/',
+            {'limit': '999'},
+        )
+
+        self.assertEqual(response.status_code, status.HTTP_200_OK)
+        self.assertEqual(len(response.data), 20)
+
     def test_public_profile_lookup_is_throttled(self):
         """Test public profile reads are rate-limited for anonymous clients."""
         cache.clear()
diff --git a/backend/users/views.py b/backend/users/views.py
index 3d13eb7d..fde39179 100644
--- a/backend/users/views.py
+++ b/backend/users/views.py
@@ -39,6 +39,26 @@ class UserViewSet(UserPoapMixin, viewsets.ReadOnlyModelViewSet):
     lookup_field = 'address'  # Change default lookup field from 'pk' to 'address'
     filter_backends = [filters.OrderingFilter]
     ordering_fields = ['date_joined', 'created_at']
+    public_highlights_default_limit = 5
+    public_highlights_max_limit = 20
+
+    def _parse_public_limit(self, default, max_limit):
+        raw_limit = self.request.query_params.get('limit', default)
+        try:
+            limit = int(raw_limit)
+        except (TypeError, ValueError):
+            return None, Response(
+                {'detail': 'limit must be a non-negative integer.'},
+                status=status.HTTP_400_BAD_REQUEST,
+            )
+
+        if limit < 0:
+            return None, Response(
+                {'detail': 'limit must be a non-negative integer.'},
+                status=status.HTTP_400_BAD_REQUEST,
+            )
+
+        return min(limit, max_limit), None
 
     def get_permissions(self):
         public_actions = {'retrieve', 'by_address', 'user_highlights', 'search'}
@@ -137,7 +157,12 @@ def user_highlights(self, request, address=None):
         if not self._can_view_user(user):
             raise Http404
 
-        limit = int(request.query_params.get('limit', 5))
+        limit, error_response = self._parse_public_limit(
+            self.public_highlights_default_limit,
+            self.public_highlights_max_limit,
+        )
+        if error_response is not None:
+            return error_response
         category = request.query_params.get('category')
 
         # Build the queryset for filtering

From 3f00304b73027c545719c27dffa17609086727a3 Mon Sep 17 00:00:00 2001
From: JoaquinBN <joaquinbressan@gmail.com>
Date: Tue, 23 Jun 2026 18:09:19 +0200
Subject: [PATCH 8/8] Fix route OG previews (#833)

---
 frontend/public/sitemap.xml          |  6 ++
 frontend/src/lib/routeMeta.js        | 10 +++
 frontend/src/tests/routeMeta.test.js | 99 +++++++++++++++++++++++++++-
 3 files changed, 113 insertions(+), 2 deletions(-)

diff --git a/frontend/public/sitemap.xml b/frontend/public/sitemap.xml
index b3455c0d..e3fa8394 100644
--- a/frontend/public/sitemap.xml
+++ b/frontend/public/sitemap.xml
@@ -66,6 +66,12 @@
     <changefreq>weekly</changefreq>
     <priority>0.8</priority>
   </url>
+  <url>
+    <loc>https://portal.genlayer.foundation/validators</loc>
+    <lastmod>2026-06-23</lastmod>
+    <changefreq>weekly</changefreq>
+    <priority>0.8</priority>
+  </url>
   <url>
     <loc>https://portal.genlayer.foundation/validators/waitlist/join</loc>
     <lastmod>2026-06-14</lastmod>
diff --git a/frontend/src/lib/routeMeta.js b/frontend/src/lib/routeMeta.js
index 4f321ce6..42de8d41 100644
--- a/frontend/src/lib/routeMeta.js
+++ b/frontend/src/lib/routeMeta.js
@@ -27,6 +27,7 @@ export const OG_IMAGES = {
   builderProject: ogImage('builder-project.png'),
   communityPoaps: ogImage('community-poaps.png'),
   participants: ogImage('participants.png'),
+  validators: ogImage('validators-participants.png'),
   validatorsParticipants: ogImage('validators-participants.png'),
   validatorsWaitlist: ogImage('validators-waitlist.png'),
   validatorsWallOfShame: ogImage('validators-wall-of-shame.png'),
@@ -231,6 +232,14 @@ export const ROUTE_META = {
     imageWidth: OG_IMAGES.participants.width,
     imageHeight: OG_IMAGES.participants.height,
   },
+  '/validators': {
+    title: 'GenLayer Validators',
+    description:
+      'Explore GenLayer validator programs, operator activity, contribution opportunities, leaderboards, and network reliability signals.',
+    image: OG_IMAGES.validators.src,
+    imageWidth: OG_IMAGES.validators.width,
+    imageHeight: OG_IMAGES.validators.height,
+  },
   '/validators/participants': {
     title: 'GenLayer Validator Participants',
     description:
@@ -300,6 +309,7 @@ export const STATIC_OG_ROUTES = [
   '/builders/resources',
   '/community/poaps',
   '/participants',
+  '/validators',
   '/validators/participants',
   '/validators/waitlist/join',
   '/validators/wall-of-shame',
diff --git a/frontend/src/tests/routeMeta.test.js b/frontend/src/tests/routeMeta.test.js
index de3e64c8..ac5a946b 100644
--- a/frontend/src/tests/routeMeta.test.js
+++ b/frontend/src/tests/routeMeta.test.js
@@ -1,8 +1,16 @@
 import { describe, expect, it } from 'vitest';
-import { existsSync, readFileSync } from 'node:fs';
+import { existsSync, readFileSync, readdirSync } from 'node:fs';
 import path from 'node:path';
 
-import { OG_IMAGES, SITE_URL, STATIC_OG_ROUTES, resolveRouteMeta } from '../lib/routeMeta.js';
+import {
+  NOINDEX_ROBOTS,
+  OG_IMAGES,
+  ROUTE_META,
+  ROUTE_META_ALIASES,
+  SITE_URL,
+  STATIC_OG_ROUTES,
+  resolveRouteMeta,
+} from '../lib/routeMeta.js';
 
 const expectedRouteImages = {
   '/': '/assets/og/portal.png',
@@ -20,6 +28,7 @@ const expectedRouteImages = {
   '/builders/resources': '/assets/og/builders-resources.png',
   '/community/poaps': '/assets/og/community-poaps.png',
   '/participants': '/assets/og/participants.png',
+  '/validators': '/assets/og/validators-participants.png',
   '/validators/participants': '/assets/og/validators-participants.png',
   '/validators/waitlist/join': '/assets/og/validators-waitlist.png',
   '/validators/wall-of-shame': '/assets/og/validators-wall-of-shame.png',
@@ -27,6 +36,41 @@ const expectedRouteImages = {
   '/privacy-policy': '/assets/og/privacy-policy.png',
 };
 
+const dynamicMetaRoutes = new Set([
+  '/builders/projects/:slug',
+  '/builders/startup-requests/:id',
+  '/community/poaps/:slug',
+  '/badge/:id',
+]);
+
+const routeParamSamples = {
+  address: '0x0000000000000000000000000000000000000000',
+  id: '42',
+  slug: 'sample-project',
+  token: 'sample-token',
+};
+
+function appRoutePaths() {
+  const app = readFileSync(path.join(process.cwd(), 'src', 'App.svelte'), 'utf8');
+  const routeBlock = app.match(/const routes = \{([\s\S]*?)\n\s*\};/)?.[1] || '';
+
+  return [...routeBlock.matchAll(/^\s*'([^']+)'\s*:/gm)]
+    .map((match) => match[1])
+    .filter((route) => route !== '*');
+}
+
+function concreteRoute(route) {
+  return route.replace(/:([A-Za-z0-9_]+)/g, (_, name) => routeParamSamples[name] || 'sample');
+}
+
+function hasSpecificRouteMeta(route) {
+  return (
+    Object.hasOwn(ROUTE_META, route) ||
+    Object.hasOwn(ROUTE_META_ALIASES, route) ||
+    dynamicMetaRoutes.has(route)
+  );
+}
+
 describe('route metadata', () => {
   it('uses final 1200x630 OG images instead of raw backdrops', () => {
     for (const image of Object.values(OG_IMAGES)) {
@@ -46,12 +90,51 @@ describe('route metadata', () => {
     }
   });
 
+  it('registers and routes every finished top-level OG asset', () => {
+    const assetDir = path.join(process.cwd(), 'public', 'assets', 'og');
+    const finalAssets = readdirSync(assetDir, { withFileTypes: true })
+      .filter((entry) => entry.isFile() && entry.name.endsWith('.png'))
+      .map((entry) => `/assets/og/${entry.name}`)
+      .sort();
+    const registeredImages = new Set(
+      Object.values(OG_IMAGES).map((image) => new URL(image.src).pathname)
+    );
+    const routedImages = new Set(
+      Object.keys(ROUTE_META).map((route) => new URL(resolveRouteMeta(route).image).pathname)
+    );
+
+    expect([...registeredImages].sort()).toEqual(finalAssets);
+
+    for (const image of registeredImages) {
+      expect(routedImages.has(image)).toBe(true);
+    }
+  });
+
   it('resolves route-specific images for key portal routes', () => {
     for (const [route, imagePath] of Object.entries(expectedRouteImages)) {
       expect(resolveRouteMeta(route).image).toContain(imagePath);
     }
   });
 
+  it('resolves complete specific or default preview metadata for every app route', () => {
+    for (const route of appRoutePaths()) {
+      const meta = resolveRouteMeta(concreteRoute(route));
+
+      expect(meta.title, route).toBeTruthy();
+      expect(meta.description, route).toBeTruthy();
+      expect(meta.image, route).toMatch(/^https:\/\/portal\.genlayer\.foundation\/assets\/og\/.+\.png$/);
+      expect(meta.imageWidth, route).toBe('1200');
+      expect(meta.imageHeight, route).toBe('630');
+      expect(meta.url, route).toMatch(/^https:\/\/portal\.genlayer\.foundation\//);
+      expect(meta.url, route).not.toContain('#');
+      expect(meta.robots, route).toBeTruthy();
+
+      if (!hasSpecificRouteMeta(route)) {
+        expect(meta.robots, route).toBe(NOINDEX_ROBOTS);
+      }
+    }
+  });
+
   it('uses non-hash canonical URLs for every public OG route', () => {
     for (const route of ['/', ...STATIC_OG_ROUTES]) {
       const meta = resolveRouteMeta(route);
@@ -83,6 +166,7 @@ describe('route metadata', () => {
       '/builders/resources',
       '/community/poaps',
       '/participants',
+      '/validators',
       '/validators/participants',
       '/validators/waitlist/join',
       '/validators/wall-of-shame',
@@ -130,4 +214,15 @@ describe('route metadata', () => {
     expect(robots).toContain('Allow: /community/poaps/');
     expect(robots).toContain('Disallow: /community/poaps/recover');
   });
+
+  it('generates static OG pages for every sitemap route', () => {
+    const sitemap = readFileSync(path.join(process.cwd(), 'public', 'sitemap.xml'), 'utf8');
+    const sitemapRoutes = [...sitemap.matchAll(/<loc>https:\/\/portal\.genlayer\.foundation(.*?)<\/loc>/g)]
+      .map((match) => match[1] || '/');
+    const staticRoutes = new Set(['/', ...STATIC_OG_ROUTES]);
+
+    for (const route of sitemapRoutes) {
+      expect(staticRoutes.has(route)).toBe(true);
+    }
+  });
 });