Risks And Tradeoffs

Risks and Tradeoffs

Current risks

• Google OAuth is planned but not package-installed in this scaffold yet
• Redis is preferred but not currently installed on the VM
• Admin tooling is outlined but not package-integrated yet
• Listing CRUD and media upload pipeline are still scaffold-level only

Security tradeoffs

• Database-backed sessions and queues simplify bootstrap but are less scalable than Redis
• Placeholder pages reduce deployment friction now, but auth and submission surfaces must not be opened publicly until captcha and policy enforcement are finished

Operational tradeoffs

• Keeping the UI Blade-first protects speed and SEO, but richer internal dashboards should remain disciplined to avoid reintroducing SPA complexity
• Direct ad-slot reservation now prevents template lock-in later, but click/impression analytics are still a follow-on phase