From 7b2fefd13de0e291d3a365c364c2b74c866a92bf Mon Sep 17 00:00:00 2001
From: Devin AI <devin-ai-integration[bot]@users.noreply.github.com>
Date: Fri, 22 May 2026 09:04:10 +0000
Subject: [PATCH 1/2] Fix 9 dashboard bugs: menu flicker, sync coverage, test
 gating, toast, ollama cloud models, key persistence, modal outside-click,
 validation, combo multi-select

---
 src/core/model/provider_catalog.json          |  30 +++
 src/core/model/sources/9router.json           |  39 +++-
 src/server/api/mod.rs                         |  19 +-
 src/server/api/provider_validate.rs           |  54 ++++-
 src/server/api/providers.rs                   |  25 ++-
 web/src/components/CombosPageClient.tsx       |  62 +++++-
 web/src/components/DbBackupsPageClient.tsx    | 198 +++++++++++-------
 web/src/components/EndpointPageClient.tsx     |  60 ++++--
 web/src/components/ProfilePageClient.tsx      |  60 ------
 .../providers/CompatibleModelsSection.tsx     |  12 +-
 .../components/providers/ConnectionsCard.tsx  |  43 +++-
 .../providers/PassthroughModelsSection.tsx    |   4 +-
 .../providers/ProviderDetailPageClient.tsx    | 118 +++++++++--
 .../providers/ProvidersPageClient.tsx         |  37 +++-
 .../components/usage/ProviderLimits/index.tsx |  31 ++-
 web/src/layouts/Layout.astro                  |  18 ++
 web/src/pages/dashboard/profile/index.astro   |  10 -
 .../shared/components/EditConnectionModal.tsx |  24 ++-
 web/src/shared/components/Modal.tsx           |   2 +-
 .../shared/components/ModelSelectModal.tsx    |  10 +-
 web/src/shared/components/PricingModal.tsx    |  29 ++-
 web/src/shared/components/Sidebar.tsx         |  24 +--
 .../components/layouts/DashboardLayout.tsx    |  32 ++-
 web/src/shared/components/styles/global.css   |  50 +++++
 24 files changed, 717 insertions(+), 274 deletions(-)
 delete mode 100644 web/src/components/ProfilePageClient.tsx
 delete mode 100644 web/src/pages/dashboard/profile/index.astro

diff --git a/src/core/model/provider_catalog.json b/src/core/model/provider_catalog.json
index 4554af97..b7ee121f 100644
--- a/src/core/model/provider_catalog.json
+++ b/src/core/model/provider_catalog.json
@@ -2200,25 +2200,55 @@
           "name": "Kimi K2.5",
           "kind": "llm"
         },
+        {
+          "id": "kimi-k2.6:cloud",
+          "name": "Kimi K2.6 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "glm-5",
           "name": "GLM 5",
           "kind": "llm"
         },
+        {
+          "id": "glm-5.1:cloud",
+          "name": "GLM 5.1 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "minimax-m2.5",
           "name": "MiniMax M2.5",
           "kind": "llm"
         },
+        {
+          "id": "minimax-m2.7:cloud",
+          "name": "MiniMax M2.7 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "glm-4.7-flash",
           "name": "GLM 4.7 Flash",
           "kind": "llm"
         },
+        {
+          "id": "deepseek-v4-flash:cloud",
+          "name": "DeepSeek V4 Flash (Cloud)",
+          "kind": "llm"
+        },
+        {
+          "id": "deepseek-v4-pro:cloud",
+          "name": "DeepSeek V4 Pro (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "qwen3.5",
           "name": "Qwen3.5",
           "kind": "llm"
+        },
+        {
+          "id": "qwen3.5:cloud",
+          "name": "Qwen3.5 (Cloud)",
+          "kind": "llm"
         }
       ]
     },
diff --git a/src/core/model/sources/9router.json b/src/core/model/sources/9router.json
index 94948ba5..ead40962 100644
--- a/src/core/model/sources/9router.json
+++ b/src/core/model/sources/9router.json
@@ -1,7 +1,7 @@
 {
   "source": "9router",
-  "ref": "v0.4.55",
-  "generatedAt": "2026-05-19T14:31:36.624Z",
+  "ref": "v0.4.59-1-ge1b821d",
+  "generatedAt": "2026-05-21T15:40:41.710Z",
   "providerIdToAlias": {
     "claude": "cc",
     "gemini": "gemini",
@@ -3209,25 +3209,55 @@
           "name": "Kimi K2.5",
           "kind": "llm"
         },
+        {
+          "id": "kimi-k2.6:cloud",
+          "name": "Kimi K2.6 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "glm-5",
           "name": "GLM 5",
           "kind": "llm"
         },
+        {
+          "id": "glm-5.1:cloud",
+          "name": "GLM 5.1 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "minimax-m2.5",
           "name": "MiniMax M2.5",
           "kind": "llm"
         },
+        {
+          "id": "minimax-m2.7:cloud",
+          "name": "MiniMax M2.7 (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "glm-4.7-flash",
           "name": "GLM 4.7 Flash",
           "kind": "llm"
         },
+        {
+          "id": "deepseek-v4-flash:cloud",
+          "name": "DeepSeek V4 Flash (Cloud)",
+          "kind": "llm"
+        },
+        {
+          "id": "deepseek-v4-pro:cloud",
+          "name": "DeepSeek V4 Pro (Cloud)",
+          "kind": "llm"
+        },
         {
           "id": "qwen3.5",
           "name": "Qwen3.5",
           "kind": "llm"
+        },
+        {
+          "id": "qwen3.5:cloud",
+          "name": "Qwen3.5 (Cloud)",
+          "kind": "llm"
         }
       ]
     },
@@ -4330,6 +4360,11 @@
           "id": "grok-3",
           "name": "Grok 3",
           "kind": "llm"
+        },
+        {
+          "id": "grok-2-image-1212",
+          "name": "Grok 2 Image",
+          "kind": "image"
         }
       ]
     },
diff --git a/src/server/api/mod.rs b/src/server/api/mod.rs
index b464474b..4d2fc38a 100644
--- a/src/server/api/mod.rs
+++ b/src/server/api/mod.rs
@@ -389,10 +389,25 @@ async fn list_providers_api(State(state): State<AppState>, headers: HeaderMap) -
     }
 
     let snapshot = state.db.snapshot();
-    let connections: Vec<_> = snapshot
+    let connections: Vec<Value> = snapshot
         .provider_connections
         .iter()
-        .map(redact_provider_connection)
+        .map(|c| {
+            // Stamp `hasApiKey` so the dashboard can render an "on file"
+            // pill without needing the secret itself. The key is still
+            // redacted out of the payload via redact_provider_connection.
+            let has_api_key = c.api_key.as_deref().is_some_and(|k| !k.is_empty())
+                || c.provider_specific_data
+                    .get("apiKey")
+                    .and_then(|v| v.as_str())
+                    .is_some_and(|s| !s.is_empty());
+            let mut value = serde_json::to_value(redact_provider_connection(c))
+                .unwrap_or_else(|_| json!({}));
+            if let Some(obj) = value.as_object_mut() {
+                obj.insert("hasApiKey".into(), Value::Bool(has_api_key));
+            }
+            value
+        })
         .collect();
     Json(json!({ "connections": connections })).into_response()
 }
diff --git a/src/server/api/provider_validate.rs b/src/server/api/provider_validate.rs
index 65656e2d..45888b47 100644
--- a/src/server/api/provider_validate.rs
+++ b/src/server/api/provider_validate.rs
@@ -272,9 +272,57 @@ async fn validate_provider(
             if base_url.ends_with("/messages") {
                 base_url = base_url[..base_url.len()-9].to_string();
             }
-            let url = if base_url.is_empty() { "https://api.anthropic.com/v1/messages".to_string() } else { format!("{}/messages", base_url) };
-            match client.post(&url).header("x-api-key", &api_key).header("anthropic-version", "2023-06-01").header("Authorization", format!("Bearer {api_key}")).send().await {
-                Ok(resp) => (resp.status().is_success(), None),
+            // Fall back to the provider's well-known Anthropic-compatible
+            // endpoint so a user who hasn't configured a custom node still
+            // gets a real validation instead of being routed at Anthropic.
+            let url = if !base_url.is_empty() {
+                format!("{}/messages", base_url)
+            } else {
+                match p {
+                    "glm" => "https://api.z.ai/api/anthropic/v1/messages".to_string(),
+                    "kimi" => "https://api.kimi.com/coding/v1/messages".to_string(),
+                    "minimax" => "https://api.minimax.io/anthropic/v1/messages".to_string(),
+                    "minimax-cn" => "https://api.minimaxi.com/anthropic/v1/messages".to_string(),
+                    _ => "https://api.anthropic.com/v1/messages".to_string(),
+                }
+            };
+            // GLM/Kimi/MiniMax accept either x-api-key or Bearer; send a
+            // minimal `ping` so the upstream actually executes auth (a HEAD
+            // or empty POST tends to return 4xx that isn't auth-related).
+            let body = json!({
+                "model": match p {
+                    "glm" => "glm-4.5-flash",
+                    "kimi" => "kimi-k2.5",
+                    "minimax" | "minimax-cn" => "minimax-m2",
+                    _ => "claude-3-5-haiku-20241022",
+                },
+                "max_tokens": 1,
+                "messages": [{"role": "user", "content": "ping"}],
+            });
+            match client.post(&url)
+                .header("x-api-key", &api_key)
+                .header("anthropic-version", "2023-06-01")
+                .header("Authorization", format!("Bearer {api_key}"))
+                .json(&body)
+                .send().await {
+                Ok(resp) => {
+                    let status = resp.status();
+                    // Treat any non-auth 2xx/4xx as proof the key works:
+                    // some upstreams 400 on the dummy body but still validate
+                    // the key. Only 401/403 mean the key is wrong.
+                    let code = status.as_u16();
+                    if code == 401 || code == 403 { (false, Some("Invalid API key".into())) }
+                    else if status.is_success() || (400..500).contains(&code) && code != 429 {
+                        let body_text = resp.text().await.unwrap_or_default();
+                        let body_lower = body_text.to_lowercase();
+                        let looks_auth = body_lower.contains("invalid api key")
+                            || body_lower.contains("unauthorized")
+                            || body_lower.contains("authentication failed");
+                        (!looks_auth, if looks_auth { Some("Invalid API key".into()) } else { None })
+                    } else {
+                        (status.is_success(), None)
+                    }
+                },
                 Err(e) => (false, Some(e.to_string())),
             }
         }
diff --git a/src/server/api/providers.rs b/src/server/api/providers.rs
index d03a0e2e..46e714c8 100644
--- a/src/server/api/providers.rs
+++ b/src/server/api/providers.rs
@@ -552,6 +552,7 @@ async fn test_model(
                 .into_response();
             }
 
+            // OpenAI-style response: { choices: [...] }
             let has_choices = parsed
                 .as_ref()
                 .and_then(|value| value.get("choices"))
@@ -559,10 +560,30 @@ async fn test_model(
                 .map(|choices| !choices.is_empty())
                 .unwrap_or(false);
 
+            // Claude / Anthropic-style response: { content: [...], stop_reason }
+            // forwarded through the proxy as-is. Treat a non-empty `content`
+            // array as a successful round-trip too (Bug 8).
+            let has_anthropic_content = parsed
+                .as_ref()
+                .and_then(|value| value.get("content"))
+                .and_then(Value::as_array)
+                .map(|content| !content.is_empty())
+                .unwrap_or(false);
+
+            // Gemini-style response: { candidates: [...] }
+            let has_gemini_candidates = parsed
+                .as_ref()
+                .and_then(|value| value.get("candidates"))
+                .and_then(Value::as_array)
+                .map(|c| !c.is_empty())
+                .unwrap_or(false);
+
+            let ok_completion = has_choices || has_anthropic_content || has_gemini_candidates;
+
             Json(TestModelResponse {
-                ok: has_choices,
+                ok: ok_completion,
                 latency_ms: Some(latency_ms),
-                error: (!has_choices)
+                error: (!ok_completion)
                     .then(|| "Provider returned no completion choices for this model".to_string()),
                 status: Some(status),
             })
diff --git a/web/src/components/CombosPageClient.tsx b/web/src/components/CombosPageClient.tsx
index 8729c339..7794e712 100644
--- a/web/src/components/CombosPageClient.tsx
+++ b/web/src/components/CombosPageClient.tsx
@@ -2,6 +2,8 @@
 
 import { useState, useEffect, useCallback } from "react";
 import { Card, Button, Modal, Input, CardSkeleton, ModelSelectModal, Toggle } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 import { useCopyToClipboard } from "@/shared/hooks/useCopyToClipboard";
 import { isOpenAICompatibleProvider, isAnthropicCompatibleProvider } from "@/shared/constants/providers";
 
@@ -49,6 +51,9 @@ export default function CombosPage() {
   const [editingCombo, setEditingCombo] = useState<Combo | null>(null);
   const [activeProviders, setActiveProviders] = useState<Provider[]>([]);
   const [comboStrategies, setComboStrategies] = useState<Record<string, any>>({});
+  const [deleteTarget, setDeleteTarget] = useState<Combo | null>(null);
+  const [deleting, setDeleting] = useState<boolean>(false);
+  const notify = useNotificationStore();
   const { copied, copy } = useCopyToClipboard();
 
   useEffect(() => {
@@ -89,12 +94,14 @@ export default function CombosPage() {
       if (res.ok) {
         await fetchData();
         setShowCreateModal(false);
+        notify.success(`Combo "${data.name}" created`);
       } else {
         const err = await res.json();
-        alert(err.error || "Failed to create combo");
+        notify.error(err.error || "Failed to create combo");
       }
     } catch (error) {
       console.log("Error creating combo:", error);
+      notify.error("Failed to create combo");
     }
   };
 
@@ -111,23 +118,34 @@ export default function CombosPage() {
       if (res.ok) {
         await fetchData();
         setEditingCombo(null);
+        notify.success(`Combo "${data.name}" updated`);
       } else {
         const err = await res.json();
-        alert(err.error || "Failed to update combo");
+        notify.error(err.error || "Failed to update combo");
       }
     } catch (error) {
       console.log("Error updating combo:", error);
+      notify.error("Failed to update combo");
     }
   };
 
-  const handleDelete = async (id: string) => {
-    if (!confirm("Delete this combo?")) return;
+  const handleDelete = (combo: Combo) => {
+    setDeleteTarget(combo);
+  };
+
+  const confirmDelete = async () => {
+    if (!deleteTarget) return;
+    setDeleting(true);
     try {
-      const res = await fetch(`/api/combos/${id}`, { method: "DELETE" });
+      const res = await fetch(`/api/combos/${deleteTarget.id}`, { method: "DELETE" });
       if (res.ok) {
-        setCombos(combos.filter(c => c.id !== id));
+        setCombos(combos.filter(c => c.id !== deleteTarget.id));
+        notify.success(`Combo "${deleteTarget.name}" deleted`);
+      } else {
+        notify.error("Failed to delete combo");
       }
     } catch (error) {
+      notify.error("Failed to delete combo");
       console.log("Error deleting combo:", error);
     }
   };
@@ -200,7 +218,7 @@ export default function CombosPage() {
               copied={copied}
               onCopy={copy}
               onEdit={() => setEditingCombo(combo)}
-              onDelete={() => handleDelete(combo.id)}
+              onDelete={() => handleDelete(combo)}
               roundRobinEnabled={comboStrategies[combo.name]?.fallbackStrategy === "round-robin"}
               onToggleRoundRobin={(enabled) => handleToggleRoundRobin(combo.name, enabled)}
             />
@@ -226,6 +244,21 @@ export default function CombosPage() {
         onSave={(data) => handleUpdate(editingCombo.id, data)}
         activeProviders={activeProviders}
       />
+
+      <ConfirmModal
+        isOpen={!!deleteTarget}
+        onClose={() => setDeleteTarget(null)}
+        onConfirm={async () => {
+          await confirmDelete();
+          setDeleteTarget(null);
+          setDeleting(false);
+        }}
+        title="Delete combo"
+        message={deleteTarget ? <>Are you sure you want to delete combo <code>{deleteTarget.name}</code>? This cannot be undone.</> : null}
+        confirmText="Delete"
+        variant="danger"
+        loading={deleting}
+      />
     </div>
   );
 }
@@ -718,10 +751,14 @@ function ComboFormModal({ isOpen, combo, onClose, onSave, activeProviders, kindF
     else setNameError("");
   };
 
+  // Toggle in/out of combo so the modal can stay open while operators
+  // pick several models, including unpicking ones added by mistake.
   const handleAddModel = (model: { value: string }) => {
-    if (!models.includes(model.value)) {
-      setModels([...models, model.value]);
-    }
+    setModels((prev) =>
+      prev.includes(model.value)
+        ? prev.filter((m) => m !== model.value)
+        : [...prev, model.value],
+    );
   };
 
   const handleRemoveModel = (index: number) => {
@@ -756,6 +793,7 @@ function ComboFormModal({ isOpen, combo, onClose, onSave, activeProviders, kindF
         isOpen={isOpen}
         onClose={onClose}
         title={isEdit ? "Edit Combo" : "Create Combo"}
+        size="lg"
       >
         <div className="flex flex-col gap-3">
           {/* Name */}
@@ -881,9 +919,11 @@ function ComboFormModal({ isOpen, combo, onClose, onSave, activeProviders, kindF
         isOpen={showModelSelect}
         onClose={() => setShowModelSelect(false)}
         onSelect={handleAddModel}
+        selectedModel={models}
+        closeOnSelect={false}
         activeProviders={activeProviders}
         modelAliases={modelAliases}
-        title="Add Model to Combo"
+        title="Add Models to Combo"
         kindFilter={kindFilter}
       />
     </>
diff --git a/web/src/components/DbBackupsPageClient.tsx b/web/src/components/DbBackupsPageClient.tsx
index 89eb11a6..d4b1b9d9 100644
--- a/web/src/components/DbBackupsPageClient.tsx
+++ b/web/src/components/DbBackupsPageClient.tsx
@@ -2,6 +2,7 @@
 
 import { useCallback, useEffect, useRef, useState } from "react";
 import { Button, Card } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
 
 // ──────────────────────────────────────────────────────────────────────
 // Types — mirror src/db/backups.rs and src/server/api/db_backups.rs.
@@ -67,6 +68,9 @@ export default function DbBackupsPageClient() {
   const [busy, setBusy] = useState(false);
   const [status, setStatus] = useState<StatusMessage | null>(null);
   const [pendingRestore, setPendingRestore] = useState<BackupInfo | null>(null);
+  const [pendingDelete, setPendingDelete] = useState<BackupInfo | null>(null);
+  const [pendingCleanup, setPendingCleanup] = useState<boolean>(false);
+  const [pendingImport, setPendingImport] = useState<File | null>(null);
   const fileInputRef = useRef<HTMLInputElement>(null);
 
   const fetchList = useCallback(async () => {
@@ -113,30 +117,37 @@ export default function DbBackupsPageClient() {
     }
   }, [fetchList]);
 
-  const handleDelete = useCallback(
-    async (id: string) => {
-      if (!confirm(`Delete backup ${id}?`)) return;
-      setBusy(true);
-      setStatus(null);
-      try {
-        const res = await fetch(`/api/db-backups/${encodeURIComponent(id)}`, { method: "DELETE" });
-        if (!res.ok) throw new Error(`Server returned ${res.status}`);
-        setStatus({ type: "success", text: "Backup deleted." });
-        await fetchList();
-      } catch (err) {
-        setStatus({
-          type: "error",
-          text: err instanceof Error ? `Failed to delete: ${err.message}` : "Failed to delete",
-        });
-      } finally {
-        setBusy(false);
-      }
-    },
-    [fetchList]
-  );
+  const handleDelete = useCallback((backup: BackupInfo) => {
+    setPendingDelete(backup);
+  }, []);
 
-  const handleCleanup = useCallback(async () => {
-    if (!confirm("Prune backups using the current retention settings?")) return;
+  const confirmDelete = useCallback(async () => {
+    const target = pendingDelete;
+    if (!target) return;
+    setPendingDelete(null);
+    setBusy(true);
+    setStatus(null);
+    try {
+      const res = await fetch(`/api/db-backups/${encodeURIComponent(target.id)}`, { method: "DELETE" });
+      if (!res.ok) throw new Error(`Server returned ${res.status}`);
+      setStatus({ type: "success", text: "Backup deleted." });
+      await fetchList();
+    } catch (err) {
+      setStatus({
+        type: "error",
+        text: err instanceof Error ? `Failed to delete: ${err.message}` : "Failed to delete",
+      });
+    } finally {
+      setBusy(false);
+    }
+  }, [pendingDelete, fetchList]);
+
+  const handleCleanup = useCallback(() => {
+    setPendingCleanup(true);
+  }, []);
+
+  const confirmCleanup = useCallback(async () => {
+    setPendingCleanup(false);
     setBusy(true);
     setStatus(null);
     try {
@@ -211,43 +222,43 @@ export default function DbBackupsPageClient() {
       const file = event.target.files?.[0];
       event.target.value = "";
       if (!file) return;
-      if (
-        !confirm(
-          `Import ${file.name}? This replaces the current database. A pre-import snapshot will be created automatically.`
-        )
-      ) {
-        return;
-      }
-      setBusy(true);
-      setStatus(null);
-      try {
-        const form = new FormData();
-        form.append("file", file);
-        const res = await fetch("/api/db-backups/import", { method: "POST", body: form });
-        if (!res.ok) {
-          const text = await res.text();
-          throw new Error(text || `Server returned ${res.status}`);
-        }
-        const json = await res.json();
-        setStatus({
-          type: "success",
-          text: `Imported ${file.name} — ${json?.providerCount ?? 0} providers, ${
-            json?.comboCount ?? 0
-          } combos, ${json?.apiKeyCount ?? 0} API keys.`,
-        });
-        await fetchList();
-      } catch (err) {
-        setStatus({
-          type: "error",
-          text: err instanceof Error ? `Import failed: ${err.message}` : "Import failed",
-        });
-      } finally {
-        setBusy(false);
-      }
+      setPendingImport(file);
     },
-    [fetchList]
+    []
   );
 
+  const confirmImport = useCallback(async () => {
+    const file = pendingImport;
+    if (!file) return;
+    setPendingImport(null);
+    setBusy(true);
+    setStatus(null);
+    try {
+      const form = new FormData();
+      form.append("file", file);
+      const res = await fetch("/api/db-backups/import", { method: "POST", body: form });
+      if (!res.ok) {
+        const text = await res.text();
+        throw new Error(text || `Server returned ${res.status}`);
+      }
+      const json = await res.json();
+      setStatus({
+        type: "success",
+        text: `Imported ${file.name} — ${json?.providerCount ?? 0} providers, ${
+          json?.comboCount ?? 0
+        } combos, ${json?.apiKeyCount ?? 0} API keys.`,
+      });
+      await fetchList();
+    } catch (err) {
+      setStatus({
+        type: "error",
+        text: err instanceof Error ? `Import failed: ${err.message}` : "Import failed",
+      });
+    } finally {
+      setBusy(false);
+    }
+  }, [pendingImport, fetchList]);
+
   const backups = data?.backups ?? [];
 
   return (
@@ -357,7 +368,7 @@ export default function DbBackupsPageClient() {
                         </Button>
                         <Button
                           variant="secondary"
-                          onClick={() => void handleDelete(b.id)}
+                          onClick={() => handleDelete(b)}
                           disabled={busy}
                         >
                           Delete
@@ -371,36 +382,61 @@ export default function DbBackupsPageClient() {
         </div>
       </Card>
 
-      {pendingRestore && (
-        <div
-          className="fixed inset-0 z-50 flex items-center justify-center bg-black/40"
-          onClick={() => setPendingRestore(null)}
-        >
-          <div
-            className="max-w-md rounded-lg bg-surface-card p-6 shadow-xl"
-            onClick={(e) => e.stopPropagation()}
-          >
-            <h2 className="text-lg font-semibold text-ink">Restore snapshot?</h2>
-            <p className="mt-2 text-sm text-body">
+      <ConfirmModal
+        isOpen={!!pendingRestore}
+        onClose={() => setPendingRestore(null)}
+        onConfirm={confirmRestore}
+        title="Restore snapshot?"
+        message={pendingRestore ? (
+          <>
+            <p>
               This will replace the current database with the contents of{" "}
               <span className="font-mono">{pendingRestore.id}</span>. A pre-restore safety
               snapshot will be created first.
             </p>
-            <p className="mt-2 text-sm text-body">
+            <p className="mt-2">
               {pendingRestore.providerCount} providers · {pendingRestore.comboCount} combos ·{" "}
               {pendingRestore.apiKeyCount} API keys.
             </p>
-            <div className="mt-4 flex justify-end gap-2">
-              <Button variant="secondary" onClick={() => setPendingRestore(null)}>
-                Cancel
-              </Button>
-              <Button onClick={() => void confirmRestore()} disabled={busy}>
-                Restore
-              </Button>
-            </div>
-          </div>
-        </div>
-      )}
+          </>
+        ) : null}
+        confirmText="Restore"
+        variant="danger"
+        loading={busy}
+      />
+
+      <ConfirmModal
+        isOpen={!!pendingDelete}
+        onClose={() => setPendingDelete(null)}
+        onConfirm={confirmDelete}
+        title="Delete backup?"
+        message={pendingDelete ? <>Delete snapshot <span className="font-mono">{pendingDelete.id}</span>? This cannot be undone.</> : null}
+        confirmText="Delete"
+        variant="danger"
+        loading={busy}
+      />
+
+      <ConfirmModal
+        isOpen={pendingCleanup}
+        onClose={() => setPendingCleanup(false)}
+        onConfirm={confirmCleanup}
+        title="Prune backups?"
+        message="Prune backups using the current retention settings? Snapshots beyond the retention window will be removed."
+        confirmText="Prune"
+        variant="danger"
+        loading={busy}
+      />
+
+      <ConfirmModal
+        isOpen={!!pendingImport}
+        onClose={() => setPendingImport(null)}
+        onConfirm={confirmImport}
+        title="Import database?"
+        message={pendingImport ? <>Import <span className="font-mono">{pendingImport.name}</span>? This replaces the current database. A pre-import snapshot will be created automatically.</> : null}
+        confirmText="Import"
+        variant="danger"
+        loading={busy}
+      />
     </div>
   );
 }
diff --git a/web/src/components/EndpointPageClient.tsx b/web/src/components/EndpointPageClient.tsx
index 47cf9938..192e2e57 100644
--- a/web/src/components/EndpointPageClient.tsx
+++ b/web/src/components/EndpointPageClient.tsx
@@ -3,6 +3,8 @@
 import { useState, useEffect, useRef } from "react";
 import type { ChangeEvent } from "react";
 import { Card, Button, Input, Modal, CardSkeleton, Toggle } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 import { useCopyToClipboard } from "@/shared/hooks/useCopyToClipboard";
 
 interface TunnelBenefit {
@@ -124,6 +126,12 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
   // API key visibility toggle state
   const [visibleKeys, setVisibleKeys] = useState<Set<string>>(new Set());
 
+  // Delete / pause confirmation targets (ConfirmModal replaces the old
+  // browser confirm() and matches the rest of the dashboard chrome).
+  const [deleteKeyTarget, setDeleteKeyTarget] = useState<ApiKey | null>(null);
+  const [pauseKeyTarget, setPauseKeyTarget] = useState<ApiKey | null>(null);
+
+  const notify = useNotificationStore();
   const { copied, copy } = useCopyToClipboard();
 
   // Auto-scroll install log
@@ -655,22 +663,24 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
     }
   };
 
-  const handleDeleteKey = async (id: string): Promise<void> => {
-    if (!confirm("Delete this API key?")) return;
-
+  const deleteKey = async (id: string): Promise<void> => {
     try {
       const res = await fetch(`/api/keys/${id}`, { method: "DELETE" });
       if (res.ok) {
-        setKeys(keys.filter((k) => k.id !== id));
+        setKeys((prev) => prev.filter((k) => k.id !== id));
         // Clean up visibility state
-        setVisibleKeys(prev => {
+        setVisibleKeys((prev) => {
           const next = new Set(prev);
           next.delete(id);
           return next;
         });
+        notify.success("API key deleted");
+      } else {
+        notify.error("Failed to delete API key");
       }
     } catch (error) {
       console.log("Error deleting key:", error);
+      notify.error("Failed to delete API key");
     }
   };
 
@@ -887,12 +897,8 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
                 message={
                   !requireLogin
                     ? "Require login is disabled — anyone can access your dashboard via tunnel."
-                    : "Dashboard uses the default password — change it in Profile settings."
+                    : "Dashboard uses the default password — set a strong one in your config."
                 }
-                action={{
-                  label: !requireLogin ? "Enable" : "Change password",
-                  href: "/dashboard/profile",
-                }}
               />
             )}
           </div>
@@ -1067,9 +1073,7 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
                     checked={key.isActive ?? true}
                     onChange={(checked: boolean) => {
                       if (key.isActive && !checked) {
-                        if (confirm(`Pause API key "${key.name}"?\n\nThis key will stop working immediately but can be resumed later.`)) {
-                          handleToggleKey(key.id, checked);
-                        }
+                        setPauseKeyTarget(key);
                       } else {
                         handleToggleKey(key.id, checked);
                       }
@@ -1077,7 +1081,7 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
                     title={key.isActive ? "Pause key" : "Resume key"}
                   />
                   <button
-                    onClick={() => handleDeleteKey(key.id)}
+                    onClick={() => setDeleteKeyTarget(key)}
                     className="p-2 hover:bg-red-500/10 rounded text-red-500 opacity-0 group-hover:opacity-100 transition-all"
                   >
                     <span className="material-symbols-outlined text-[18px]">delete</span>
@@ -1307,6 +1311,34 @@ export default function APIPageClient({ machineId }: APIPageClientProps) {
           </div>
         </div>
       </Modal>
+
+      <ConfirmModal
+        isOpen={!!deleteKeyTarget}
+        onClose={() => setDeleteKeyTarget(null)}
+        onConfirm={async () => {
+          if (!deleteKeyTarget) return;
+          await deleteKey(deleteKeyTarget.id);
+          setDeleteKeyTarget(null);
+        }}
+        title="Delete API key"
+        message={deleteKeyTarget ? <>Delete API key <code>{deleteKeyTarget.name}</code>? This cannot be undone.</> : null}
+        confirmText="Delete"
+        variant="danger"
+      />
+
+      <ConfirmModal
+        isOpen={!!pauseKeyTarget}
+        onClose={() => setPauseKeyTarget(null)}
+        onConfirm={async () => {
+          if (!pauseKeyTarget) return;
+          await handleToggleKey(pauseKeyTarget.id, false);
+          setPauseKeyTarget(null);
+        }}
+        title="Pause API key"
+        message={pauseKeyTarget ? <>Pause API key <code>{pauseKeyTarget.name}</code>? This key will stop working immediately but can be resumed later.</> : null}
+        confirmText="Pause"
+        variant="danger"
+      />
     </div>
   );
 }
diff --git a/web/src/components/ProfilePageClient.tsx b/web/src/components/ProfilePageClient.tsx
deleted file mode 100644
index e7278b98..00000000
--- a/web/src/components/ProfilePageClient.tsx
+++ /dev/null
@@ -1,60 +0,0 @@
-"use client";
-
-import { useState, useEffect } from "react";
-import { Card, Button } from "@/shared/components";
-
-interface User {
-  username?: string;
-  email?: string;
-  role?: string;
-}
-
-export default function ProfilePage() {
-  const [user, setUser] = useState<User | null>(null);
-  const [loading, setLoading] = useState<boolean>(true);
-
-  useEffect(() => {
-    fetchUser();
-  }, []);
-
-  const fetchUser = async () => {
-    try {
-      const res = await fetch("/api/user");
-      if (res.ok) {
-        const data = await res.json();
-        setUser(data);
-      }
-    } catch (error) {
-      console.error("Failed to fetch user:", error);
-    } finally {
-      setLoading(false);
-    }
-  };
-
-  if (loading) {
-    return <div className="text-center py-12">Loading...</div>;
-  }
-
-  return (
-    <div className="flex flex-col gap-6">
-      <h1 className="text-2xl font-bold">Profile</h1>
-
-      <Card padding="lg">
-        <div className="flex flex-col gap-4">
-          <div>
-            <label className="text-sm font-medium text-text-muted">Username</label>
-            <p className="text-lg">{user?.username || "N/A"}</p>
-          </div>
-          <div>
-            <label className="text-sm font-medium text-text-muted">Email</label>
-            <p className="text-lg">{user?.email || "N/A"}</p>
-          </div>
-          <div>
-            <label className="text-sm font-medium text-text-muted">Role</label>
-            <p className="text-lg">{user?.role || "User"}</p>
-          </div>
-        </div>
-      </Card>
-    </div>
-  );
-}
diff --git a/web/src/components/providers/CompatibleModelsSection.tsx b/web/src/components/providers/CompatibleModelsSection.tsx
index bbf5dab5..845d2a17 100644
--- a/web/src/components/providers/CompatibleModelsSection.tsx
+++ b/web/src/components/providers/CompatibleModelsSection.tsx
@@ -2,6 +2,7 @@
 
 import { useState } from "react";
 import { Button } from "@/shared/components";
+import { useNotificationStore } from "@/store/notificationStore";
 
 interface CompatibleModelRowProps {
   modelId: string;
@@ -99,6 +100,7 @@ export default function CompatibleModelsSection({ providerStorageAlias, provider
   const [importing, setImporting] = useState<boolean>(false);
   const [testingModelId, setTestingModelId] = useState<string | null>(null);
   const [modelTestResults, setModelTestResults] = useState<Record<string, "ok" | "error">>({});
+  const notify = useNotificationStore();
 
   const handleTestModel = async (modelId: string) => {
     if (testingModelId) return;
@@ -149,7 +151,7 @@ export default function CompatibleModelsSection({ providerStorageAlias, provider
     const modelId = newModel.trim();
     const resolvedAlias = resolveAlias(modelId);
     if (!resolvedAlias) {
-      alert("All suggested aliases already exist. Please choose a different model or remove conflicting aliases.");
+      notify.warning("All suggested aliases already exist. Please choose a different model or remove conflicting aliases.");
       return;
     }
 
@@ -174,12 +176,12 @@ export default function CompatibleModelsSection({ providerStorageAlias, provider
       const res = await fetch(`/api/providers/${activeConnection.id}/models`);
       const data = await res.json();
       if (!res.ok) {
-        alert(data.error || "Failed to import models");
+        notify.error(data.error || "Failed to import models");
         return;
       }
       const models = data.models || [];
       if (models.length === 0) {
-        alert("No models returned from /models.");
+        notify.warning("No models returned from /models.");
         return;
       }
       let importedCount = 0;
@@ -192,7 +194,9 @@ export default function CompatibleModelsSection({ providerStorageAlias, provider
         importedCount += 1;
       }
       if (importedCount === 0) {
-        alert("No new models were added.");
+        notify.info("No new models were added.");
+      } else {
+        notify.success(`Imported ${importedCount} model(s).`);
       }
     } catch (error) {
       console.log("Error importing models:", error);
diff --git a/web/src/components/providers/ConnectionsCard.tsx b/web/src/components/providers/ConnectionsCard.tsx
index a58289c7..13c7ad9b 100644
--- a/web/src/components/providers/ConnectionsCard.tsx
+++ b/web/src/components/providers/ConnectionsCard.tsx
@@ -2,6 +2,8 @@
 
 import { useState, useEffect, useCallback, useRef } from "react";
 import { Card, Badge, Button, Modal, Select, Toggle, EditConnectionModal } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 
 // ── CooldownTimer ──────────────────────────────────────────────
 interface CooldownTimerProps {
@@ -330,8 +332,11 @@ export default function ConnectionsCard({ providerId, isOAuth = false }: Connect
   const [showAddModal, setShowAddModal] = useState<boolean>(false);
   const [showEditModal, setShowEditModal] = useState<boolean>(false);
   const [selectedConnection, setSelectedConnection] = useState<Connection | null>(null);
+  const [deleteTarget, setDeleteTarget] = useState<Connection | null>(null);
+  const [deleting, setDeleting] = useState<boolean>(false);
   const [providerStrategy, setProviderStrategy] = useState<string | null>(null);
   const [providerStickyLimit, setProviderStickyLimit] = useState<string>("1");
+  const notify = useNotificationStore();
 
   const fetch_ = useCallback(async () => {
     try {
@@ -381,12 +386,28 @@ export default function ConnectionsCard({ providerId, isOAuth = false }: Connect
     } catch { await fetch_(); }
   };
 
-  const handleDelete = async (id: string) => {
-    if (!confirm("Delete this connection?")) return;
+  const handleDelete = (connection: Connection) => {
+    setDeleteTarget(connection);
+  };
+
+  const confirmDelete = async () => {
+    if (!deleteTarget) return;
+    setDeleting(true);
     try {
-      const res = await fetch(`/api/providers/${id}`, { method: "DELETE" });
-      if (res.ok) setConnections((prev) => prev.filter((c) => c.id !== id));
-    } catch (e) { console.log("delete error:", e); }
+      const res = await fetch(`/api/providers/${deleteTarget.id}`, { method: "DELETE" });
+      if (res.ok) {
+        setConnections((prev) => prev.filter((c) => c.id !== deleteTarget.id));
+        notify.success("Connection deleted");
+      } else {
+        notify.error("Failed to delete connection");
+      }
+    } catch (e) {
+      console.log("delete error:", e);
+      notify.error("Failed to delete connection");
+    } finally {
+      setDeleting(false);
+      setDeleteTarget(null);
+    }
   };
 
   const handleToggleActive = async (id: string, isActive: boolean) => {
@@ -469,7 +490,7 @@ export default function ConnectionsCard({ providerId, isOAuth = false }: Connect
                   onToggleActive={(isActive) => handleToggleActive(conn.id, isActive)}
                   onUpdateProxy={(poolId) => handleUpdateProxy(conn.id, poolId)}
                   onEdit={() => { setSelectedConnection(conn); setShowEditModal(true); }}
-                  onDelete={() => handleDelete(conn.id)}
+                  onDelete={() => handleDelete(conn)}
                 />
               ))}
             </div>
@@ -499,6 +520,16 @@ export default function ConnectionsCard({ providerId, isOAuth = false }: Connect
         onSave={handleUpdateConnection}
         onClose={() => setShowEditModal(false)}
       />
+      <ConfirmModal
+        isOpen={!!deleteTarget}
+        onClose={() => setDeleteTarget(null)}
+        onConfirm={confirmDelete}
+        title="Delete connection"
+        message={deleteTarget ? <>Are you sure you want to delete connection <code>{deleteTarget.name || deleteTarget.id}</code>? This cannot be undone.</> : null}
+        confirmText="Delete"
+        variant="danger"
+        loading={deleting}
+      />
     </>
   );
 }
diff --git a/web/src/components/providers/PassthroughModelsSection.tsx b/web/src/components/providers/PassthroughModelsSection.tsx
index 10e237d1..19ad7d6c 100644
--- a/web/src/components/providers/PassthroughModelsSection.tsx
+++ b/web/src/components/providers/PassthroughModelsSection.tsx
@@ -2,6 +2,7 @@
 
 import { useState } from "react";
 import { Button } from "@/shared/components";
+import { useNotificationStore } from "@/store/notificationStore";
 
 interface PassthroughModelRowProps {
   modelId: string;
@@ -97,6 +98,7 @@ interface PassthroughModelsSectionProps {
 export default function PassthroughModelsSection({ providerAlias, modelAliases, copied, onCopy, onSetAlias, onDeleteAlias }: PassthroughModelsSectionProps) {
   const [newModel, setNewModel] = useState<string>("");
   const [adding, setAdding] = useState<boolean>(false);
+  const notify = useNotificationStore();
 
   // Filter aliases for this provider - models are persisted via alias
   const providerAliases = Object.entries(modelAliases).filter(
@@ -122,7 +124,7 @@ export default function PassthroughModelsSection({ providerAlias, modelAliases,
     
     // Check if alias already exists
     if (modelAliases[defaultAlias]) {
-      alert(`Alias "${defaultAlias}" already exists. Please use a different model or edit existing alias.`);
+      notify.warning(`Alias "${defaultAlias}" already exists. Please use a different model or edit existing alias.`);
       return;
     }
     
diff --git a/web/src/components/providers/ProviderDetailPageClient.tsx b/web/src/components/providers/ProviderDetailPageClient.tsx
index f9119ab3..93180a10 100644
--- a/web/src/components/providers/ProviderDetailPageClient.tsx
+++ b/web/src/components/providers/ProviderDetailPageClient.tsx
@@ -3,6 +3,8 @@ import { useState, useEffect, useCallback } from "react";
 // import Link from "next/link";  // ported: next.js -> Astro+React
 // import Image from "next/image";  // ported: next.js -> Astro+React
 import { Card, Button, Badge, Input, Modal, CardSkeleton, OAuthModal, KiroOAuthWrapper, CursorAuthModal, IFlowCookieModal, GitLabAuthModal, Toggle, Select, EditConnectionModal, NoAuthProxyCard } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 import { OAUTH_PROVIDERS, APIKEY_PROVIDERS, FREE_PROVIDERS, FREE_TIER_PROVIDERS, WEB_COOKIE_PROVIDERS, getProviderAlias, isOpenAICompatibleProvider, isAnthropicCompatibleProvider, AI_PROVIDERS, THINKING_CONFIG } from "@/shared/constants/providers";
 import { getModelsByProviderId, useEnsureCatalog } from "@/shared/constants/models";
 import { useCopyToClipboard } from "@/shared/hooks/useCopyToClipboard";
@@ -58,6 +60,12 @@ export default function ProviderDetailPageClient() {
   const [kiloFreeModels, setKiloFreeModels] = useState([]);
   const [disabledModelIds, setDisabledModelIds] = useState([]);
   const { copied, copy } = useCopyToClipboard();
+  const notify = useNotificationStore();
+  const [deleteConnTarget, setDeleteConnTarget] = useState<any>(null);
+  const [deletingConn, setDeletingConn] = useState<boolean>(false);
+  const [deleteNodeTarget, setDeleteNodeTarget] = useState<{ name: string; type: string } | null>(null);
+  const [deletingNode, setDeletingNode] = useState<boolean>(false);
+  const [disableAllTarget, setDisableAllTarget] = useState<string[] | null>(null);
 
   const providerInfo = providerNode
     ? {
@@ -117,18 +125,31 @@ export default function ProviderDetailPageClient() {
     }
   };
 
-  const handleDisableAll = async (ids) => {
+  const handleDisableAll = (ids) => {
     if (!ids.length) return;
-    if (!confirm(`Disable all ${ids.length} model(s)?`)) return;
+    setDisableAllTarget(ids);
+  };
+
+  const confirmDisableAll = async () => {
+    const ids = disableAllTarget;
+    if (!ids || !ids.length) return;
     try {
       const res = await fetch("/api/models/disabled", {
         method: "POST",
         headers: { "Content-Type": "application/json" },
         body: JSON.stringify({ providerAlias: providerStorageAlias, ids }),
       });
-      if (res.ok) await fetchDisabledModels();
+      if (res.ok) {
+        await fetchDisabledModels();
+        notify.success(`Disabled ${ids.length} model(s)`);
+      } else {
+        notify.error("Failed to disable models");
+      }
     } catch (error) {
       console.log("Error disabling all models:", error);
+      notify.error("Failed to disable models");
+    } finally {
+      setDisableAllTarget(null);
     }
   };
 
@@ -326,7 +347,7 @@ export default function ProviderDetailPageClient() {
         await fetchAliases();
       } else {
         const data = await res.json();
-        alert(data.error || "Failed to set alias");
+        notify.error(data.error || "Failed to set alias");
       }
     } catch (error) {
       console.log("Error setting alias:", error);
@@ -346,15 +367,28 @@ export default function ProviderDetailPageClient() {
     }
   };
 
-  const handleDelete = async (id) => {
-    if (!confirm("Delete this connection?")) return;
+  const handleDelete = (connection) => {
+    setDeleteConnTarget(connection);
+  };
+
+  const confirmDeleteConnection = async () => {
+    const target = deleteConnTarget;
+    if (!target) return;
+    setDeletingConn(true);
     try {
-      const res = await fetch(`/api/providers/${id}`, { method: "DELETE" });
+      const res = await fetch(`/api/providers/${target.id}`, { method: "DELETE" });
       if (res.ok) {
-        setConnections(connections.filter(c => c.id !== id));
+        setConnections((prev) => prev.filter((c) => c.id !== target.id));
+        notify.success("Connection deleted");
+      } else {
+        notify.error("Failed to delete connection");
       }
     } catch (error) {
       console.log("Error deleting connection:", error);
+      notify.error("Failed to delete connection");
+    } finally {
+      setDeletingConn(false);
+      setDeleteConnTarget(null);
     }
   };
 
@@ -522,7 +556,7 @@ export default function ProviderDetailPageClient() {
           failed += 1;
         }
       }
-      if (failed > 0) alert(`Updated with ${failed} failed request(s).`);
+      if (failed > 0) notify.error(`Updated with ${failed} failed request(s).`);
       await fetchConnections();
       setShowBulkProxyModal(false);
     } finally {
@@ -538,7 +572,7 @@ export default function ProviderDetailPageClient() {
   const handleApplyOneToOne = () => {
     const activePools = proxyPools.filter((p) => p.isActive === true);
     if (activePools.length === 0) {
-      alert("No active proxy pools available.");
+      notify.warning("No active proxy pools available.");
       return;
     }
     const targets = connections.map((c, i) => ({
@@ -588,7 +622,7 @@ export default function ProviderDetailPageClient() {
                   setSelectedConnection(conn);
                   setShowEditModal(true);
                 }}
-                onDelete={() => handleDelete(conn.id)}
+                onDelete={() => handleDelete(conn)}
               />
             </div>
           </div>
@@ -963,17 +997,10 @@ export default function ProviderDetailPageClient() {
                 size="sm"
                 variant="secondary"
                 icon="delete"
-                onClick={async () => {
-                  if (!confirm(`Delete this ${isAnthropicCompatible ? "Anthropic" : "OpenAI"} Compatible node?`)) return;
-                  try {
-                    const res = await fetch(`/api/provider-nodes/${providerId}`, { method: "DELETE" });
-                    if (res.ok) {
-                      router.push("/dashboard/providers");
-                    }
-                  } catch (error) {
-                    console.log("Error deleting provider node:", error);
-                  }
-                }}
+                onClick={() => setDeleteNodeTarget({
+                  name: providerInfo?.name || providerId,
+                  type: isAnthropicCompatible ? "Anthropic" : "OpenAI",
+                })}
                 className="w-full sm:w-auto"
               >
                 Delete
@@ -1240,6 +1267,53 @@ export default function ProviderDetailPageClient() {
           onClose={() => setShowAddCustomModel(false)}
         />
       )}
+      <ConfirmModal
+        isOpen={!!deleteConnTarget}
+        onClose={() => setDeleteConnTarget(null)}
+        onConfirm={confirmDeleteConnection}
+        title="Delete connection"
+        message={deleteConnTarget ? <>Are you sure you want to delete connection <code>{deleteConnTarget.name || deleteConnTarget.email || deleteConnTarget.id}</code>? This cannot be undone.</> : null}
+        confirmText="Delete"
+        variant="danger"
+        loading={deletingConn}
+      />
+      <ConfirmModal
+        isOpen={!!deleteNodeTarget}
+        onClose={() => setDeleteNodeTarget(null)}
+        onConfirm={async () => {
+          if (!deleteNodeTarget) return;
+          setDeletingNode(true);
+          try {
+            const res = await fetch(`/api/provider-nodes/${providerId}`, { method: "DELETE" });
+            if (res.ok) {
+              notify.success("Compatible node deleted");
+              router.push("/dashboard/providers");
+            } else {
+              notify.error("Failed to delete node");
+            }
+          } catch (error) {
+            console.log("Error deleting provider node:", error);
+            notify.error("Failed to delete node");
+          } finally {
+            setDeletingNode(false);
+            setDeleteNodeTarget(null);
+          }
+        }}
+        title="Delete compatible node"
+        message={deleteNodeTarget ? <>Delete this {deleteNodeTarget.type} Compatible node <code>{deleteNodeTarget.name}</code>?</> : null}
+        confirmText="Delete"
+        variant="danger"
+        loading={deletingNode}
+      />
+      <ConfirmModal
+        isOpen={!!disableAllTarget}
+        onClose={() => setDisableAllTarget(null)}
+        onConfirm={confirmDisableAll}
+        title="Disable all models"
+        message={disableAllTarget ? <>Disable all <strong>{disableAllTarget.length}</strong> model(s) for this provider?</> : null}
+        confirmText="Disable all"
+        variant="danger"
+      />
     </div>
   );
 }
diff --git a/web/src/components/providers/ProvidersPageClient.tsx b/web/src/components/providers/ProvidersPageClient.tsx
index 7a637bf2..4dd3e5d9 100644
--- a/web/src/components/providers/ProvidersPageClient.tsx
+++ b/web/src/components/providers/ProvidersPageClient.tsx
@@ -204,8 +204,27 @@ export default function ProvidersPageClient() {
     );
   };
 
+  // Count connections per authType so we can grey out the Test All button
+  // when there's nothing to test (e.g. user hasn't added an OAuth account
+  // yet — pressing Test All would just spin uselessly).
+  const oauthCount = connections.filter((c) => c.authType === "oauth").length;
+  const freeCount = connections.filter((c) => c.authType === "free").length;
+  const apikeyCount = connections.filter((c) => c.authType === "apikey").length;
+
   const handleBatchTest = async (mode, providerId = null) => {
     if (testingMode) return;
+    if (mode === "oauth" && oauthCount === 0) {
+      notify.warning("No OAuth providers connected", "Nothing to test");
+      return;
+    }
+    if (mode === "free" && freeCount === 0) {
+      notify.warning("No free providers connected", "Nothing to test");
+      return;
+    }
+    if (mode === "apikey" && apikeyCount === 0) {
+      notify.warning("No API key providers connected", "Nothing to test");
+      return;
+    }
     setTestingMode(mode === "provider" ? providerId : mode);
     setTestResults(null);
     try {
@@ -376,13 +395,13 @@ export default function ProvidersPageClient() {
             <ModelAvailabilityBadge />
             <button
               onClick={() => handleBatchTest("oauth")}
-              disabled={!!testingMode}
-              className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 ${
+              disabled={!!testingMode || oauthCount === 0}
+              title={oauthCount === 0 ? "Connect an OAuth provider first" : "Test all OAuth connections"}
+              className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 disabled:cursor-not-allowed disabled:opacity-50 ${
                 testingMode === "oauth"
                   ? "bg-primary/20 border-primary/40 text-primary animate-pulse"
                   : "bg-bg border-border text-text-muted hover:text-text-main hover:border-primary/40"
               }`}
-              title="Test all OAuth connections"
               aria-label="Test all OAuth connections"
             >
               <span
@@ -418,13 +437,13 @@ export default function ProvidersPageClient() {
           </h2>
           <button
             onClick={() => handleBatchTest("free")}
-            disabled={!!testingMode}
-            className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 ${
+            disabled={!!testingMode || freeCount === 0}
+            title={freeCount === 0 ? "Enable a free provider first" : "Test all Free connections"}
+            className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 disabled:cursor-not-allowed disabled:opacity-50 ${
               testingMode === "free"
                 ? "bg-primary/20 border-primary/40 text-primary animate-pulse"
                 : "bg-bg border-border text-text-muted hover:text-text-main hover:border-primary/40"
             }`}
-            title="Test all Free connections"
             aria-label="Test all Free provider connections"
           >
             <span
@@ -469,13 +488,13 @@ export default function ProvidersPageClient() {
           </h2>
           <button
             onClick={() => handleBatchTest("apikey")}
-            disabled={!!testingMode}
-            className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 ${
+            disabled={!!testingMode || apikeyCount === 0}
+            title={apikeyCount === 0 ? "Add an API key provider first" : "Test all API Key connections"}
+            className={`flex w-full items-center justify-center gap-1.5 rounded-lg border px-3 py-2 text-xs font-medium transition-colors sm:w-auto sm:py-1.5 disabled:cursor-not-allowed disabled:opacity-50 ${
               testingMode === "apikey"
                 ? "bg-primary/20 border-primary/40 text-primary animate-pulse"
                 : "bg-bg border-border text-text-muted hover:text-text-main hover:border-primary/40"
             }`}
-            title="Test all API Key connections"
             aria-label="Test all API Key connections"
           >
             <span
diff --git a/web/src/components/usage/ProviderLimits/index.tsx b/web/src/components/usage/ProviderLimits/index.tsx
index e6dec910..a908bee9 100644
--- a/web/src/components/usage/ProviderLimits/index.tsx
+++ b/web/src/components/usage/ProviderLimits/index.tsx
@@ -7,6 +7,8 @@ import Toggle from "@/shared/components/Toggle";
 import { parseQuotaData, calculatePercentage } from "./utils";
 import Card from "@/shared/components/Card";
 import { EditConnectionModal } from "@/shared/components";
+import { ConfirmModal } from "@/shared/components/Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 import { USAGE_SUPPORTED_PROVIDERS, USAGE_APIKEY_PROVIDERS } from "@/shared/constants/providers";
 
 interface Connection {
@@ -54,6 +56,8 @@ export default function ProviderLimits() {
   const [countdown, setCountdown] = useState<number>(60);
   const [connectionsLoading, setConnectionsLoading] = useState<boolean>(true);
   const [deletingId, setDeletingId] = useState<string | null>(null);
+  const [deleteConfirmId, setDeleteConfirmId] = useState<string | null>(null);
+  const notify = useNotificationStore();
   const [togglingId, setTogglingId] = useState<string | null>(null);
   const [showEditModal, setShowEditModal] = useState<boolean>(false);
   const [selectedConnection, setSelectedConnection] = useState<Connection | null>(null);
@@ -164,8 +168,13 @@ export default function ProviderLimits() {
     [fetchQuota],
   );
 
-  const handleDeleteConnection = useCallback(async (id: string) => {
-    if (!confirm("Delete this connection?")) return;
+  const handleDeleteConnection = useCallback((id: string) => {
+    setDeleteConfirmId(id);
+  }, []);
+
+  const confirmDeleteConnection = useCallback(async () => {
+    const id = deleteConfirmId;
+    if (!id) return;
     setDeletingId(id);
     try {
       const res = await fetch(`/api/providers/${id}`, { method: "DELETE" });
@@ -186,13 +195,18 @@ export default function ProviderLimits() {
           delete next[id];
           return next;
         });
+        notify.success("Connection deleted");
+      } else {
+        notify.error("Failed to delete connection");
       }
     } catch (error) {
       console.error("Error deleting connection:", error);
+      notify.error("Failed to delete connection");
     } finally {
       setDeletingId(null);
+      setDeleteConfirmId(null);
     }
-  }, []);
+  }, [deleteConfirmId, notify]);
 
   const handleToggleConnectionActive = useCallback(async (id: string, isActive: boolean) => {
     setTogglingId(id);
@@ -779,6 +793,17 @@ export default function ProviderLimits() {
           setSelectedConnection(null);
         }}
       />
+
+      <ConfirmModal
+        isOpen={!!deleteConfirmId}
+        onClose={() => deletingId ? undefined : setDeleteConfirmId(null)}
+        onConfirm={confirmDeleteConnection}
+        title="Delete connection"
+        message="Are you sure you want to delete this connection? This action cannot be undone."
+        confirmText="Delete"
+        variant="danger"
+        loading={deletingId !== null}
+      />
     </div>
   );
 }
diff --git a/web/src/layouts/Layout.astro b/web/src/layouts/Layout.astro
index c4dec016..7a999c92 100644
--- a/web/src/layouts/Layout.astro
+++ b/web/src/layouts/Layout.astro
@@ -14,6 +14,7 @@ interface Props {
 }
 
 const { title: pageTitle = 'OpenProxy - AI Infrastructure Management' } = Astro.props;
+const isDashboard = Astro.url.pathname.startsWith('/dashboard');
 ---
 <!DOCTYPE html>
 <html lang="en">
@@ -65,6 +66,23 @@ const { title: pageTitle = 'OpenProxy - AI Infrastructure Management' } = Astro.
     </script>
   </head>
   <body class="font-sans antialiased">
+    {isDashboard && (
+      <div id="dashboard-skeleton" aria-hidden="true">
+        <aside class="ds-sidebar">
+          <div class="ds-sidebar-head" />
+          <div class="ds-sidebar-nav">
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+            <div class="ds-sidebar-item" />
+          </div>
+        </aside>
+        <main class="ds-main" />
+      </div>
+    )}
     <ThemeProvider client:load>
       <RuntimeI18nProvider client:load>
         <slot />
diff --git a/web/src/pages/dashboard/profile/index.astro b/web/src/pages/dashboard/profile/index.astro
deleted file mode 100644
index 28339a93..00000000
--- a/web/src/pages/dashboard/profile/index.astro
+++ /dev/null
@@ -1,10 +0,0 @@
----
-import Layout from '@/layouts/Layout.astro';
-import ProfilePageClient from '@/components/ProfilePageClient';
-import DashboardLayout from '@/shared/components/layouts/DashboardLayout';
----
-<Layout>
-  <DashboardLayout client:only="react">
-    <ProfilePageClient client:only="react" />
-  </DashboardLayout>
-</Layout>
\ No newline at end of file
diff --git a/web/src/shared/components/EditConnectionModal.tsx b/web/src/shared/components/EditConnectionModal.tsx
index 6fbc4dff..31ba350a 100644
--- a/web/src/shared/components/EditConnectionModal.tsx
+++ b/web/src/shared/components/EditConnectionModal.tsx
@@ -23,6 +23,8 @@ interface Connection {
   authType?: string;
   provider?: string;
   providerSpecificData?: ProviderSpecificData;
+  /** Server-side flag — true if a key is already on file (never includes the secret). */
+  hasApiKey?: boolean;
 }
 
 interface ProxyPool {
@@ -219,21 +221,35 @@ export default function EditConnectionModal({ isOpen, connection, proxyPools, on
                 type="password"
                 value={formData.apiKey}
                 onChange={(e) => setFormData({ ...formData, apiKey: e.target.value })}
-                placeholder="Enter new API key"
-                hint="Leave blank to keep the current API key."
+                placeholder={connection.hasApiKey ? "\u2022\u2022\u2022\u2022\u2022\u2022\u2022\u2022 (saved — leave blank to keep)" : "Enter new API key"}
+                hint={connection.hasApiKey
+                  ? "A key is already stored. Leave blank to keep it, or type a new one to replace."
+                  : "Required."}
                 className="flex-1"
               />
               <div className="pt-6">
-                <Button onClick={handleValidate} disabled={!formData.apiKey || validating || saving} variant="secondary">
-                  {validating ? "Checking..." : "Check"}
+                <Button
+                  onClick={connection.hasApiKey && !formData.apiKey ? handleTest : handleValidate}
+                  disabled={(!formData.apiKey && !connection.hasApiKey) || validating || saving || testing}
+                  variant="secondary"
+                >
+                  {validating || testing ? "Checking..." : "Check"}
                 </Button>
               </div>
             </div>
+            {connection.hasApiKey && !formData.apiKey && (
+              <Badge variant="info">Key on file</Badge>
+            )}
             {validationResult && (
               <Badge variant={validationResult === "success" ? "success" : "error"}>
                 {validationResult === "success" ? "Valid" : "Invalid"}
               </Badge>
             )}
+            {testResult && !validationResult && (
+              <Badge variant={testResult === "success" ? "success" : "error"}>
+                {testResult === "success" ? "Saved key works" : "Saved key failed test"}
+              </Badge>
+            )}
           </>
         )}
 
diff --git a/web/src/shared/components/Modal.tsx b/web/src/shared/components/Modal.tsx
index 1649f853..5b696bc7 100644
--- a/web/src/shared/components/Modal.tsx
+++ b/web/src/shared/components/Modal.tsx
@@ -24,7 +24,7 @@ export default function Modal({
   children,
   footer,
   size = "md",
-  closeOnOverlay = true,
+  closeOnOverlay = false,
   showCloseButton = true,
   showTrafficLights = true,
   className,
diff --git a/web/src/shared/components/ModelSelectModal.tsx b/web/src/shared/components/ModelSelectModal.tsx
index ed3c7218..c1fc2b68 100644
--- a/web/src/shared/components/ModelSelectModal.tsx
+++ b/web/src/shared/components/ModelSelectModal.tsx
@@ -62,7 +62,7 @@ interface ModelSelectModalProps {
   isOpen: boolean;
   onClose: () => void;
   onSelect: (model: Model) => void;
-  selectedModel?: string;
+  selectedModel?: string | string[];
   activeProviders?: ActiveProvider[];
   title?: string;
   modelAliases?: Record<string, string>;
@@ -420,7 +420,9 @@ export default function ModelSelectModal({
             </div>
             <div className="flex flex-wrap gap-1.5">
               {filteredCombos.map((combo) => {
-                const isSelected = selectedModel === combo.name;
+                const isSelected = Array.isArray(selectedModel)
+                  ? selectedModel.includes(combo.name)
+                  : selectedModel === combo.name;
                 return (
                   <button
                     key={combo.id}
@@ -460,7 +462,9 @@ export default function ModelSelectModal({
 
             <div className="flex flex-wrap gap-1.5">
               {group.models.map((model) => {
-                const isSelected = selectedModel === model.value;
+                const isSelected = Array.isArray(selectedModel)
+                  ? selectedModel.includes(model.value)
+                  : selectedModel === model.value;
                 const isPlaceholder = model.isPlaceholder;
                 return (
                   <button
diff --git a/web/src/shared/components/PricingModal.tsx b/web/src/shared/components/PricingModal.tsx
index dbdbbc4e..f898cfbd 100644
--- a/web/src/shared/components/PricingModal.tsx
+++ b/web/src/shared/components/PricingModal.tsx
@@ -2,6 +2,8 @@
 
 import { useState, useEffect } from "react";
 import { getDefaultPricing, formatCost } from "@/shared/constants/pricing";
+import { useNotificationStore } from "@/store/notificationStore";
+import { ConfirmModal } from "./Modal";
 
 interface PricingModalProps {
   isOpen: boolean;
@@ -13,6 +15,8 @@ export default function PricingModal({ isOpen, onClose, onSave }: PricingModalPr
   const [pricingData, setPricingData] = useState<Record<string, any>>({});
   const [loading, setLoading] = useState(true);
   const [saving, setSaving] = useState(false);
+  const [resetOpen, setResetOpen] = useState(false);
+  const notify = useNotificationStore();
 
   useEffect(() => {
     if (isOpen) {
@@ -68,28 +72,34 @@ export default function PricingModal({ isOpen, onClose, onSave }: PricingModalPr
         onClose();
       } else {
         const error = await response.json();
-        alert(`Failed to save pricing: ${error.error}`);
+        notify.error(`Failed to save pricing: ${error.error}`);
       }
     } catch (error) {
       console.error("Failed to save pricing:", error);
-      alert("Failed to save pricing");
+      notify.error("Failed to save pricing");
     } finally {
       setSaving(false);
     }
   };
 
-  const handleReset = async () => {
-    if (!confirm("Reset all pricing to defaults? This cannot be undone.")) return;
+  const handleReset = () => {
+    setResetOpen(true);
+  };
 
+  const confirmReset = async () => {
+    setResetOpen(false);
     try {
       const response = await fetch("/api/pricing", { method: "DELETE" });
       if (response.ok) {
         const defaults = getDefaultPricing();
         setPricingData(defaults);
+        notify.success("Pricing reset to defaults");
+      } else {
+        notify.error("Failed to reset pricing");
       }
     } catch (error) {
       console.error("Failed to reset pricing:", error);
-      alert("Failed to reset pricing");
+      notify.error("Failed to reset pricing");
     }
   };
 
@@ -209,6 +219,15 @@ export default function PricingModal({ isOpen, onClose, onSave }: PricingModalPr
           </div>
         </div>
       </div>
+      <ConfirmModal
+        isOpen={resetOpen}
+        onClose={() => setResetOpen(false)}
+        onConfirm={confirmReset}
+        title="Reset pricing?"
+        message="Reset all pricing to defaults? This cannot be undone."
+        confirmText="Reset"
+        variant="danger"
+      />
     </div>
   );
 }
diff --git a/web/src/shared/components/Sidebar.tsx b/web/src/shared/components/Sidebar.tsx
index baa917cd..583a0ba2 100644
--- a/web/src/shared/components/Sidebar.tsx
+++ b/web/src/shared/components/Sidebar.tsx
@@ -8,6 +8,7 @@ import { useCopyToClipboard } from "@/shared/hooks/useCopyToClipboard";
 import Button from "./Button";
 import AnthropicSpike from "./AnthropicSpike";
 import { ConfirmModal } from "./Modal";
+import { useNotificationStore } from "@/store/notificationStore";
 import React from "react";
 
 /**
@@ -96,6 +97,7 @@ export default function Sidebar({ onClose }: SidebarProps) {
   const [updateInfo, setUpdateInfo] = useState<{ latestVersion: string } | null>(null);
   const [showUpdateModal, setShowUpdateModal] = useState(false);
   const [isUpdating, setIsUpdating] = useState(false);
+  const notify = useNotificationStore();
   const [updateStatus, setUpdateStatus] = useState<UpdateStatus | null>(null);
   const [enableTranslator, setEnableTranslator] = useState(false);
   const { copied, copy } = useCopyToClipboard(2000);
@@ -132,7 +134,7 @@ export default function Sidebar({ onClose }: SidebarProps) {
       const res = await fetch("/api/version/update", { method: "POST" });
       if (!res.ok) {
         const data = await res.json().catch(() => ({}));
-        alert(data.message || "Update failed. Please run the install command manually.");
+        notify.error(data.message || "Update failed. Please run the install command manually.");
         setIsUpdating(false);
         return;
       }
@@ -352,26 +354,6 @@ export default function Sidebar({ onClose }: SidebarProps) {
                 </a>
               ) : null;
             })}
-
-            {/* Settings */}
-            <a
-              href="/dashboard/profile"
-              onClick={onClose}
-              className={cn(
-                NAV_ITEM_BASE,
-                isActive("/dashboard/profile") ? NAV_ITEM_ACTIVE : NAV_ITEM_INACTIVE,
-              )}
-            >
-              <span
-                className={cn(
-                  "material-symbols-outlined text-[18px]",
-                  isActive("/dashboard/profile") ? "fill-1" : ""
-                )}
-              >
-                settings
-              </span>
-              <span className="text-[13px]">Settings</span>
-            </a>
           </div>
         </nav>
 
diff --git a/web/src/shared/components/layouts/DashboardLayout.tsx b/web/src/shared/components/layouts/DashboardLayout.tsx
index f0fb6532..515841c6 100644
--- a/web/src/shared/components/layouts/DashboardLayout.tsx
+++ b/web/src/shared/components/layouts/DashboardLayout.tsx
@@ -13,24 +13,32 @@ interface DashboardLayoutProps {
 function getToastStyle(type: string) {
   if (type === "success") {
     return {
-      wrapper: "border-success-text/30 bg-success-bg text-success-text",
+      wrapper: "bg-surface border border-hairline before:bg-success-text",
+      iconColor: "text-success-text",
+      titleColor: "text-ink",
       icon: "check_circle",
     };
   }
   if (type === "error") {
     return {
-      wrapper: "border-[color:var(--color-danger)]/30 bg-[color:var(--color-danger)]/10 text-[color:var(--color-danger)]",
+      wrapper: "bg-surface border border-hairline before:bg-brand-coral",
+      iconColor: "text-brand-coral",
+      titleColor: "text-ink",
       icon: "error",
     };
   }
   if (type === "warning") {
     return {
-      wrapper: "border-amber-500/30 bg-amber-500/10 text-amber-600 dark:text-amber-400",
+      wrapper: "bg-surface border border-hairline before:bg-accent-amber",
+      iconColor: "text-accent-amber",
+      titleColor: "text-ink",
       icon: "warning",
     };
   }
   return {
-    wrapper: "border-brand-blue-deep/30 bg-brand-blue-200 text-brand-blue-deep",
+    wrapper: "bg-surface border border-hairline before:bg-brand-blue-deep",
+    iconColor: "text-brand-blue-deep",
+    titleColor: "text-ink",
     icon: "info",
   };
 }
@@ -43,6 +51,10 @@ export default function DashboardLayout({ children }: DashboardLayoutProps) {
   useEffect(() => {
     setMounted(true);
     setPathname(window.location.pathname);
+    document.body.classList.add("dashboard-ready");
+    return () => {
+      document.body.classList.remove("dashboard-ready");
+    };
   }, []);
 
   const notifications = useNotificationStore((state) => state.notifications);
@@ -56,19 +68,19 @@ export default function DashboardLayout({ children }: DashboardLayoutProps) {
           return (
             <div
               key={n.id}
-              className={`rounded-mini-md border px-3 py-2 shadow-modal backdrop-blur-sm ${style.wrapper}`}
+              className={`relative overflow-hidden rounded-mini-md pl-4 pr-3 py-3 shadow-modal before:absolute before:left-0 before:top-0 before:bottom-0 before:w-[3px] ${style.wrapper}`}
             >
-              <div className="flex items-start gap-2">
-                <span className="material-symbols-outlined text-[18px] leading-5">{style.icon}</span>
+              <div className="flex items-start gap-2.5">
+                <span className={`material-symbols-outlined text-[20px] leading-5 ${style.iconColor}`}>{style.icon}</span>
                 <div className="min-w-0 flex-1">
-                  {n.title ? <p className="text-xs font-semibold mb-0.5">{n.title}</p> : null}
-                  <p className="text-xs whitespace-pre-wrap break-words">{n.message}</p>
+                  {n.title ? <p className={`text-[13px] font-semibold mb-0.5 ${style.titleColor}`}>{n.title}</p> : null}
+                  <p className="text-[12px] leading-snug text-text-muted whitespace-pre-wrap break-words">{n.message}</p>
                 </div>
                 {n.dismissible ? (
                   <button
                     type="button"
                     onClick={() => removeNotification(n.id)}
-                    className="text-current/70 hover:text-current"
+                    className="text-text-muted hover:text-ink transition-colors"
                     aria-label="Dismiss notification"
                   >
                     <span className="material-symbols-outlined text-[16px]">close</span>
diff --git a/web/src/shared/components/styles/global.css b/web/src/shared/components/styles/global.css
index 7bbba312..5d1adb3f 100644
--- a/web/src/shared/components/styles/global.css
+++ b/web/src/shared/components/styles/global.css
@@ -790,3 +790,53 @@ button {
     linear-gradient(to right, rgba(250, 249, 245, 0.04) 1px, transparent 1px),
     linear-gradient(to bottom, rgba(250, 249, 245, 0.04) 1px, transparent 1px);
 }
+
+/* ============================================================
+   Dashboard SSR skeleton — prevents the brief "menu jump" on
+   first paint while the React dashboard layout hydrates. The
+   React layout adds .dashboard-ready on <body> once mounted,
+   which fades the skeleton out.
+   ============================================================ */
+#dashboard-skeleton {
+  position: fixed;
+  inset: 0;
+  display: flex;
+  background-color: var(--color-canvas);
+  z-index: 0;
+  pointer-events: none;
+  opacity: 1;
+  transition: opacity 200ms ease;
+}
+#dashboard-skeleton .ds-sidebar {
+  display: none;
+  width: 18rem;
+  flex-direction: column;
+  border-right: 1px solid var(--color-hairline-soft);
+  padding: 1.5rem 1rem;
+  gap: 0.75rem;
+}
+@media (min-width: 1024px) {
+  #dashboard-skeleton .ds-sidebar { display: flex; }
+}
+#dashboard-skeleton .ds-sidebar-head {
+  height: 2.5rem;
+  width: 60%;
+  border-radius: 8px;
+  background-color: var(--color-surface-card);
+}
+#dashboard-skeleton .ds-sidebar-nav {
+  display: flex;
+  flex-direction: column;
+  gap: 0.5rem;
+  margin-top: 0.5rem;
+}
+#dashboard-skeleton .ds-sidebar-item {
+  height: 1.75rem;
+  border-radius: 8px;
+  background-color: var(--color-surface-soft);
+}
+#dashboard-skeleton .ds-main { flex: 1 1 auto; }
+body.dashboard-ready #dashboard-skeleton {
+  opacity: 0;
+  pointer-events: none;
+}

From 17803a447c628fe7356cc9f7131436062ad98293 Mon Sep 17 00:00:00 2001
From: Devin AI <devin-ai-integration[bot]@users.noreply.github.com>
Date: Fri, 22 May 2026 09:42:47 +0000
Subject: [PATCH 2/2] fmt: cargo fmt on mod.rs hasApiKey block

---
 src/server/api/mod.rs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/server/api/mod.rs b/src/server/api/mod.rs
index 4d2fc38a..32362615 100644
--- a/src/server/api/mod.rs
+++ b/src/server/api/mod.rs
@@ -401,8 +401,8 @@ async fn list_providers_api(State(state): State<AppState>, headers: HeaderMap) -
                     .get("apiKey")
                     .and_then(|v| v.as_str())
                     .is_some_and(|s| !s.is_empty());
-            let mut value = serde_json::to_value(redact_provider_connection(c))
-                .unwrap_or_else(|_| json!({}));
+            let mut value =
+                serde_json::to_value(redact_provider_connection(c)).unwrap_or_else(|_| json!({}));
             if let Some(obj) = value.as_object_mut() {
                 obj.insert("hasApiKey".into(), Value::Bool(has_api_key));
             }