feat(auth-service): add certified favicon to rendered pages

[s-adamantine]

Summary

• Adds packages/auth-service/public/favicon.svg (the Certified brand mark) and wires <link rel="icon" href="/static/favicon.svg" type="image/svg+xml"> into every rendered <head>: login, recovery, account login (×2), account settings (×3), choose-handle (×2).
• No helper abstraction — the tag is static with no parameters, so inlining one line per page is lighter than exporting a helper.
• Demo app (packages/demo) intentionally not included in this PR.

Test plan

• pnpm dev:auth, open the hosted login page in a browser, verify the Certified mark appears in the browser tab.
• Click through to recovery, choose-handle, account settings, account login, and OTP entry — tab icon persists on every page.
• Confirm /static/favicon.svg responds 200 with image/svg+xml and no 404s in the dev server log.

Linear: HYPER-327

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Enhanced visual branding on authentication pages: sign-in, account recovery, handle selection, and account settings now show a dedicated favicon in the browser tab instead of a generic placeholder.

• Documentation

  • Default favicon is included and can be replaced to customize the icon shown on auth pages.

[railway-app]

This PR was not deployed automatically as @s-adamantine does not have access to the Railway project.

In order to get automatic PR deploys, please add @s-adamantine to your workspace on Railway.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
epds-demo	Ready	Preview, Comment	Apr 16, 2026 2:37pm

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 2132b830-4ca3-426f-862a-651554b79292

📥 Commits

Reviewing files that changed from the base of the PR and between e5e89d3 and f5ce469.

📒 Files selected for processing (2)

• packages/auth-service/src/routes/login-page.ts
• packages/auth-service/src/routes/recovery.ts

✅ Files skipped from review due to trivial changes (2)

• packages/auth-service/src/routes/recovery.ts
• packages/auth-service/src/routes/login-page.ts

---

📝 Walkthrough

Walkthrough

Added <link rel="icon" href="/static/favicon.svg" type="image/svg+xml"> references to HTML templates for sign-in, OTP, handle selection, recovery, account settings, and error pages; added a changeset documenting the favicon injection and the default favicon.svg under packages/auth-service/public/.

Changes

Cohort / File(s)	Summary
Changeset Documentation \.changeset/auth-service-favicon.md	Added a changeset documenting a patch release that injects /static/favicon.svg into rendered page <head> elements and notes the default file location in packages/auth-service/public/.
Auth service templates (login / OTP / recovery / error) packages/auth-service/src/routes/account-login.ts, packages/auth-service/src/routes/recovery.ts, packages/auth-service/src/routes/login-page.ts	Inserted favicon <link rel="icon" href="/static/favicon.svg" type="image/svg+xml"> into the <head> of login, OTP, recovery, and their error page templates.
Auth service templates (settings / handle picker) packages/auth-service/src/routes/account-settings.ts, packages/auth-service/src/routes/choose-handle.ts	Inserted the same favicon <link> into the <head> of account settings, backup verification, deleted account pages, handle picker, and the standalone error template.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Poem

🐰✨
A tiny icon hops into view,
On login, recovery, and settings too.
Tabs gleam softly, one by one,
A rabbit's whisper — change is done.

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 8.33% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and concisely summarizes the main change: adding a favicon to auth-service rendered pages, which aligns with the changeset and file modifications.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch sharfy/hyper-327-add-certified-favicon

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coveralls-official]

Coverage Report for CI Build 24516337428

Coverage remained the same at 32.399%

Details

• Coverage remained the same as the base build.
• Patch coverage: No coverable lines changed in this PR.
• No coverage regressions found.

Uncovered Changes

No uncovered changes found.

Coverage Regressions

No coverage regressions found.

---

Coverage Stats

Relevant Lines:	1795
Covered Lines:	610
Line Coverage:	33.98%
Relevant Branches:	1060
Covered Branches:	315
Branch Coverage:	29.72%
Branches in Coverage %:	Yes
Coverage Strength:	2.66 hits per line

---

💛 - Coveralls

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.changeset/auth-service-favicon.md:
- Line 7: The changeset's Affects line currently reads "**Affects:** End users,
Operators" but must include "Client app developers" and be ordered "End users,
Client app developers, Operators"; update the Affects line in
.changeset/auth-service-favicon.md so it reads "**Affects:** End users, Client
app developers, Operators" to match the required schema.

In `@packages/auth-service/src/routes/recovery.ts`:
- Around line 263-265: renderOtpForm and renderError are missing the
favicon/title snippet added to renderRecoveryForm, causing the icon to disappear
on OTP/error pages; update renderOtpForm and renderError to include the same
head elements you added to renderRecoveryForm (the <link rel="icon" ...>,
<title>Account Recovery</title>, and the style insertion pattern using ${CSS}
and ${renderOptionalStyleTag(opts.customCss)}) so all recovery-related rendered
pages include the favicon and custom CSS consistently.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 4cf0283f-32a2-4120-bcac-10b689d48d93

📥 Commits

Reviewing files that changed from the base of the PR and between 2f3c27a and e5e89d3.

⛔ Files ignored due to path filters (1)

• packages/auth-service/public/favicon.svg is excluded by !**/*.svg

📒 Files selected for processing (6)

• .changeset/auth-service-favicon.md
• packages/auth-service/src/routes/account-login.ts
• packages/auth-service/src/routes/account-settings.ts
• packages/auth-service/src/routes/choose-handle.ts
• packages/auth-service/src/routes/login-page.ts
• packages/auth-service/src/routes/recovery.ts

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[Kzoeps]

looks good to me, but @aspiers needs to add @s-adamantine to railway members so that this pr is able to run the e2e ( just to be sure )