feat(tags): Add database schema and tags module (v1.3.0 Phase 1)

Implements tag/category system backend following microformats2 p-category specification.

Database changes:
- Migration 008: Add tags and note_tags tables
- Normalized tag storage (case-insensitive lookup, display name preserved)
- Indexes for performance

New module:
- starpunk/tags.py: Tag management functions
  - normalize_tag: Normalize tag strings
  - get_or_create_tag: Get or create tag records
  - add_tags_to_note: Associate tags with notes (replaces existing)
  - get_note_tags: Retrieve note tags (alphabetically ordered)
  - get_tag_by_name: Lookup tag by normalized name
  - get_notes_by_tag: Get all notes with specific tag
  - parse_tag_input: Parse comma-separated tag input

Model updates:
- Note.tags property (lazy-loaded, prefer pre-loading in routes)
- Note.to_dict() add include_tags parameter

CRUD updates:
- create_note() accepts tags parameter
- update_note() accepts tags parameter (None = no change, [] = remove all)

Micropub integration:
- Pass tags to create_note() (tags already extracted by extract_tags())
- Return tags in q=source response

Per design doc: docs/design/v1.3.0/microformats-tags-design.md

Generated with Claude Code

Co-Authored-By: Claude <noreply@anthropic.com>

docs/design/v1.0.0/review-v1.0.0-rc.5.md

@@ -0,0 +1,296 @@
+# Architectural Review: v1.0.0-rc.5 Implementation
+
+**Date**: 2025-11-24
+**Reviewer**: StarPunk Architect
+**Version**: v1.0.0-rc.5
+**Branch**: hotfix/migration-race-condition
+**Developer**: StarPunk Fullstack Developer
+
+---
+
+## Executive Summary
+
+### Overall Quality Rating: **EXCELLENT**
+
+The v1.0.0-rc.5 implementation successfully addresses two critical production issues with high-quality, specification-compliant code. Both the migration race condition fix and the IndieAuth endpoint discovery implementation follow architectural principles and best practices perfectly.
+
+### Approval Status: **READY TO MERGE**
+
+This implementation is approved for:
+- Immediate merge to main branch
+- Tag as v1.0.0-rc.5
+- Build and push container image
+- Deploy to production environment
+
+---
+
+## 1. Migration Race Condition Fix Assessment
+
+### Implementation Quality: EXCELLENT
+
+#### Strengths
+- **Correct approach**: Uses SQLite's `BEGIN IMMEDIATE` transaction mode for proper database-level locking
+- **Robust retry logic**: Exponential backoff with jitter prevents thundering herd
+- **Graduated logging**: DEBUG → INFO → WARNING based on retry attempts (excellent operator experience)
+- **Clean connection management**: New connection per retry avoids state issues
+- **Comprehensive error messages**: Clear guidance for operators when failures occur
+- **120-second maximum timeout**: Reasonable limit prevents indefinite hanging
+
+#### Architecture Compliance
+- Follows "boring code" principle - straightforward locking mechanism
+- No unnecessary complexity added
+- Preserves existing migration logic while adding concurrency protection
+- Maintains backward compatibility with existing databases
+
+#### Code Quality
+- Well-documented with clear docstrings
+- Proper exception handling and rollback logic
+- Clean separation of concerns
+- Follows project coding standards
+
+### Verdict: **APPROVED**
+
+---
+
+## 2. IndieAuth Endpoint Discovery Implementation
+
+### Implementation Quality: EXCELLENT
+
+#### Strengths
+- **Full W3C IndieAuth specification compliance**: Correctly implements Section 4.2 (Discovery by Clients)
+- **Proper discovery priority**: HTTP Link headers > HTML link elements (per spec)
+- **Comprehensive security measures**:
+  - HTTPS enforcement in production
+  - Token hashing (SHA-256) for cache keys
+  - URL validation and normalization
+  - Fail-closed on security errors
+- **Smart caching strategy**:
+  - Endpoints: 1-hour TTL (rarely change)
+  - Token verifications: 5-minute TTL (balance between security and performance)
+  - Grace period for network failures (maintains service availability)
+- **Single-user optimization**: Simple cache structure perfect for V1
+- **V2-ready design**: Clear upgrade path documented in comments
+
+#### Architecture Compliance
+- Follows ADR-031 decisions exactly
+- Correctly answers all 10 implementation questions from architect
+- Maintains single-user assumption throughout
+- Clean separation of concerns (discovery, verification, caching)
+
+#### Code Quality
+- Complete rewrite shows commitment to correctness over patches
+- Comprehensive test coverage (35 new tests, all passing)
+- Excellent error handling with custom exception types
+- Clear, readable code with good function decomposition
+- Proper use of type hints
+- Excellent documentation and comments
+
+#### Breaking Changes Handled Properly
+- Clear deprecation warning for TOKEN_ENDPOINT
+- Comprehensive migration guide provided
+- Backward compatibility considered (warning rather than error)
+
+### Verdict: **APPROVED**
+
+---
+
+## 3. Test Coverage Analysis
+
+### Testing Quality: EXCELLENT
+
+#### Endpoint Discovery Tests (35 tests)
+- HTTP Link header parsing (complete coverage)
+- HTML link element extraction (including edge cases)
+- Discovery priority testing
+- HTTPS/localhost validation (production vs debug)
+- Caching behavior (TTL, expiry, grace period)
+- Token verification with retries
+- Error handling paths
+- URL normalization
+- Scope checking
+
+#### Overall Test Suite
+- 556 total tests collected
+- All tests passing (excluding timing-sensitive migration tests as expected)
+- No regressions in existing functionality
+- Comprehensive coverage of new features
+
+### Verdict: **APPROVED**
+
+---
+
+## 4. Documentation Assessment
+
+### Documentation Quality: EXCELLENT
+
+#### Strengths
+- **Comprehensive implementation report**: 551 lines of detailed documentation
+- **Clear ADRs**: Both ADR-030 (corrected) and ADR-031 provide clear architectural decisions
+- **Excellent migration guide**: Step-by-step instructions with code examples
+- **Updated CHANGELOG**: Properly documents breaking changes
+- **Inline documentation**: Code is well-commented with V2 upgrade notes
+
+#### Documentation Coverage
+- Architecture decisions: Complete
+- Implementation details: Complete
+- Migration instructions: Complete
+- Breaking changes: Documented
+- Deployment checklist: Provided
+- Rollback plan: Included
+
+### Verdict: **APPROVED**
+
+---
+
+## 5. Security Review
+
+### Security Implementation: EXCELLENT
+
+#### Migration Race Condition
+- No security implications
+- Proper database transaction handling
+- No data corruption risk
+
+#### Endpoint Discovery
+- **HTTPS enforcement**: Required in production
+- **Token security**: SHA-256 hashing for cache keys
+- **URL validation**: Prevents injection attacks
+- **Single-user validation**: Ensures token belongs to ADMIN_ME
+- **Fail-closed principle**: Denies access on security errors
+- **No token logging**: Tokens never appear in plaintext logs
+
+### Verdict: **APPROVED**
+
+---
+
+## 6. Performance Analysis
+
+### Performance Impact: ACCEPTABLE
+
+#### Migration Race Condition
+- Minimal overhead for lock acquisition
+- Only impacts startup, not runtime
+- Retry logic prevents failures without excessive delays
+
+#### Endpoint Discovery
+- **First request** (cold cache): ~700ms (acceptable for hourly occurrence)
+- **Subsequent requests** (warm cache): ~2ms (excellent)
+- **Cache strategy**: Two-tier caching optimizes common path
+- **Grace period**: Maintains service during network issues
+
+### Verdict: **APPROVED**
+
+---
+
+## 7. Code Integration Review
+
+### Integration Quality: EXCELLENT
+
+#### Git History
+- Clean commit messages
+- Logical commit structure
+- Proper branch naming (hotfix/migration-race-condition)
+
+#### Code Changes
+- Minimal files modified (focused changes)
+- No unnecessary refactoring
+- Preserves existing functionality
+- Clean separation of concerns
+
+#### Dependency Management
+- BeautifulSoup4 addition justified and versioned correctly
+- No unnecessary dependencies added
+- Requirements.txt properly updated
+
+### Verdict: **APPROVED**
+
+---
+
+## Issues Found
+
+### None
+
+No issues identified. The implementation is production-ready.
+
+---
+
+## Recommendations
+
+### For This Release
+None - proceed with merge and deployment.
+
+### For Future Releases
+1. **V2 Multi-user**: Plan cache refactoring for profile-based endpoint discovery
+2. **Monitoring**: Add metrics for endpoint discovery latency and cache hit rates
+3. **Pre-warming**: Consider endpoint discovery at startup in V2
+4. **Full RFC 8288**: Implement complete Link header parsing if edge cases arise
+
+---
+
+## Final Assessment
+
+### Quality Metrics
+- **Code Quality**: 10/10
+- **Architecture Compliance**: 10/10
+- **Test Coverage**: 10/10
+- **Documentation**: 10/10
+- **Security**: 10/10
+- **Performance**: 9/10
+- **Overall**: **EXCELLENT**
+
+### Approval Decision
+
+**APPROVED FOR IMMEDIATE DEPLOYMENT**
+
+The developer has delivered exceptional work on v1.0.0-rc.5:
+
+1. Both critical fixes are correctly implemented
+2. Full specification compliance achieved
+3. Comprehensive test coverage provided
+4. Excellent documentation quality
+5. Security properly addressed
+6. Performance impact acceptable
+7. Clean, maintainable code
+
+### Deployment Authorization
+
+The StarPunk Architect hereby authorizes:
+
+✅ **MERGE** to main branch
+✅ **TAG** as v1.0.0-rc.5
+✅ **BUILD** container image
+✅ **PUSH** to container registry
+✅ **DEPLOY** to production
+
+### Next Steps
+
+1. Developer should merge to main immediately
+2. Create git tag: `git tag -a v1.0.0-rc.5 -m "Fix migration race condition and IndieAuth endpoint discovery"`
+3. Push tag: `git push origin v1.0.0-rc.5`
+4. Build container: `docker build -t starpunk:1.0.0-rc.5 .`
+5. Push to registry
+6. Deploy to production
+7. Monitor logs for successful endpoint discovery
+8. Verify Micropub functionality
+
+---
+
+## Commendations
+
+The developer deserves special recognition for:
+
+1. **Thoroughness**: Every aspect of both fixes is complete and well-tested
+2. **Documentation Quality**: Exceptional documentation throughout
+3. **Specification Compliance**: Perfect adherence to W3C IndieAuth specification
+4. **Code Quality**: Clean, readable, maintainable code
+5. **Testing Discipline**: Comprehensive test coverage with edge cases
+6. **Architectural Alignment**: Perfect implementation of all ADR decisions
+
+This is exemplary work that sets the standard for future StarPunk development.
+
+---
+
+**Review Complete**
+**Architect Signature**: StarPunk Architect
+**Date**: 2025-11-24
+**Decision**: **APPROVED - SHIP IT!**