Update all counts to 22 rules, 64 files — add hydration + caching to README table

Author: vibestackdev

README.md

@@ -2,7 +2,7 @@
 
 ### Stop fixing AI-generated bugs. Start shipping production apps.
 
-A **Next.js 15 + Supabase boilerplate** with **20 `.mdc` architecture rules** that physically prevent AI coding assistants from hallucinating insecure auth, deprecated packages, and broken patterns.
+A **Next.js 15 + Supabase boilerplate** with **22 `.mdc` architecture rules** that physically prevent AI coding assistants from hallucinating insecure auth, deprecated packages, and broken patterns.
 
 > **The problem:** AI models generate code that compiles perfectly but ships critical vulnerabilities — `getSession()` instead of `getUser()`, synchronous params that crash in Next.js 15, missing RLS policies that expose your database. These bugs are invisible until production.
 >
@@ -12,7 +12,7 @@ A **Next.js 15 + Supabase boilerplate** with **20 `.mdc` architecture rules** th
 
 ## 🏗️ What's Inside
 
-### 20 Architecture Rules (`.cursor/rules/`)
+### 22 Architecture Rules (`.cursor/rules/`)
 
 | Rule File | What It Prevents |
 |---|---|
@@ -36,6 +36,8 @@ A **Next.js 15 + Supabase boilerplate** with **20 `.mdc` architecture rules** th
 | `file-naming.mdc` | File/directory naming conventions + import order |
 | `database-design.mdc` | Schema patterns, UUID keys, RLS templates |
 | `env-management.mdc` | Secret classification + NEXT_PUBLIC_ safety rules |
+| `hydration-safety.mdc` | Prevents hydration mismatches (Math.random, window, Date) |
+| `caching-revalidation.mdc` | Correct caching defaults + revalidatePath after mutations |
 
 ### 4 MCP Integrations (`.cursor/mcp.json`)
 
@@ -110,7 +112,7 @@ Read [`docs/VIBE-CODING.md`](docs/VIBE-CODING.md) for the complete prompting fra
 
 | Feature | Vibe Stack | ShipFast ($169) | MakerKit ($299) |
 |---|:---:|:---:|:---:|
-| AI Architecture Rules | ✅ 20 rules | ❌ | ❌ |
+| AI Architecture Rules | ✅ 22 rules | ❌ | ❌ |
 | MCP Integrations | ✅ 4 servers | ❌ | ❌ |
 | n8n Automations | ✅ 3 workflows | ❌ | ❌ |
 | Next.js 15 + React 19 | ✅ | ✅ | ✅ |
@@ -130,7 +132,7 @@ This repo is the free foundation. The extended version includes the full boilerp
 
 | Tier | What You Get | Price |
 |---|---|---|
-| **Rules Pack** | All 20 .mdc rules + Vibe Coding guide | $29 |
+| **Rules Pack** | All 22 .mdc rules + Vibe Coding guide | $29 |
 | **Builder System** | Rules + 4 MCP configs + Architecture docs + SQL migrations | $69 |
 | **Complete Vault** | Everything + full boilerplate + Stripe + email + Masterclass | $149 |
 

src/app/page.tsx

@@ -3,7 +3,7 @@ import Link from 'next/link'
 const features = [
   {
     icon: '🛡️',
-    title: '20 Architecture Rules',
+    title: '22 Architecture Rules',
     desc: 'Battle-tested .mdc rules that catch AI hallucinations before they hit production. Covers auth, params, RLS, Stripe, performance, and OWASP Top 10.',
   },
   {
@@ -34,8 +34,8 @@ const features = [
 ]
 
 const stats = [
-  { value: '20', label: 'Architecture Rules' },
-  { value: '62', label: 'Production Files' },
+  { value: '22', label: 'Architecture Rules' },
+  { value: '64', label: 'Production Files' },
   { value: '4', label: 'MCP Servers' },
   { value: '0', label: 'Hallucinations Shipped' },
 ]
@@ -117,7 +117,7 @@ export default function HomePage() {
             marginBottom: '2.5rem',
           }}
         >
-          20 architecture rules that physically prevent Cursor from generating
+          22 architecture rules that physically prevent Cursor from generating
           insecure auth, deprecated packages, and broken Next.js 15 patterns.
           Clone it. Open in Cursor. Ship production apps.
         </p>