Fix new chat's message box position and fix popover layout

.github/ISSUE_TEMPLATE/bug.yml

@@ -0,0 +1,145 @@
+name: Bug report
+description: Report a user-facing bug or regression.
+labels:
+  - "type: bug"
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for taking the time to report this.
+
+        **Privacy note:** Please don’t paste secrets, tokens, or private logs.
+        If you can reproduce in a minimal way, that’s ideal. If you can’t, still file the issue.
+
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      description: What’s broken, and what’s the user impact?
+      placeholder: One or two sentences.
+    validations:
+      required: true
+
+  - type: textarea
+    id: current_behavior
+    attributes:
+      label: What happened (current behavior)
+      description: What did you observe?
+      placeholder: Describe what happened.
+    validations:
+      required: false
+
+  - type: textarea
+    id: expected_behavior
+    attributes:
+      label: Expected behavior
+      description: Optional.
+      placeholder: What should happen?
+    validations:
+      required: false
+
+  - type: textarea
+    id: reproduction_steps
+    attributes:
+      label: Reproduction steps
+      description: Optional. If you can reproduce, list steps here.
+      placeholder: |
+        1. …
+        2. …
+        3. …
+    validations:
+      required: false
+
+  - type: dropdown
+    id: severity
+    attributes:
+      label: Severity
+      description: Optional. Best guess is fine.
+      options:
+        - blocker
+        - high
+        - medium
+        - low
+        - unsure
+    validations:
+      required: false
+
+  - type: dropdown
+    id: frequency
+    attributes:
+      label: Frequency
+      description: Optional. Best guess is fine.
+      options:
+        - always
+        - often
+        - sometimes
+        - once
+        - unsure
+    validations:
+      required: false
+
+  - type: input
+    id: version
+    attributes:
+      label: Happier version
+      description: App/CLI version (if known).
+      placeholder: e.g. 0.12.3 or "main @ <commit sha>"
+    validations:
+      required: false
+
+  - type: input
+    id: platform
+    attributes:
+      label: Platform
+      description: OS/device details.
+      placeholder: e.g. macOS 15.2, Windows 11, iOS 18, Ubuntu 24.04
+    validations:
+      required: false
+
+  - type: input
+    id: server_version
+    attributes:
+      label: Server version
+      description: Optional. If relevant, the server version you’re connected to.
+      placeholder: e.g. 0.12.3
+    validations:
+      required: false
+
+  - type: dropdown
+    id: deployment_type
+    attributes:
+      label: Deployment type
+      description: Optional. If you know it.
+      options:
+        - cloud
+        - self-hosted
+        - enterprise
+        - unsure
+    validations:
+      required: false
+
+  - type: textarea
+    id: what_changed
+    attributes:
+      label: What changed recently?
+      description: Optional. Updates, config changes, new hardware, etc.
+      placeholder: e.g. Updated from 0.12.2 → 0.12.3, changed model settings, switched networks.
+    validations:
+      required: false
+
+  - type: input
+    id: diagnostic_id
+    attributes:
+      label: Diagnostics ID
+      description: Optional. If you submitted an in-app bug report, paste the diagnostic id line here (include the `diagnostic_id:` prefix).
+      placeholder: "diagnostic_id: 00000000-0000-0000-0000-000000000000"
+    validations:
+      required: false
+
+  - type: textarea
+    id: extra
+    attributes:
+      label: Additional context
+      description: Screenshots, links to related issues/PRs, anything else.
+    validations:
+      required: false

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,9 @@
+blank_issues_enabled: true
+contact_links:
+  - name: Happier docs
+    url: https://happier.dev
+    about: Product docs and guides.
+  - name: Security issue
+    url: https://github.com/happier-dev/happier/security/policy
+    about: Please report security vulnerabilities privately.
+

.github/ISSUE_TEMPLATE/feature.yml

@@ -0,0 +1,71 @@
+name: Feature request
+description: Propose a user-facing feature or improvement.
+labels:
+  - "type: feature"
+body:
+  - type: markdown
+    attributes:
+      value: |
+        Thanks for proposing an improvement.
+
+        **Privacy note:** Please don’t paste secrets, tokens, or private logs.
+
+  - type: textarea
+    id: problem
+    attributes:
+      label: Problem statement
+      description: What user problem are we solving? Who is impacted?
+      placeholder: |
+        As a …, I want …, so that …
+    validations:
+      required: true
+
+  - type: textarea
+    id: proposal
+    attributes:
+      label: Proposed solution
+      description: Optional. If you have an idea, describe what we should build/change.
+    validations:
+      required: false
+
+  - type: textarea
+    id: acceptance
+    attributes:
+      label: Acceptance criteria
+      description: Optional. How do we know we’re done? A short checklist is ideal.
+      placeholder: |
+        - [ ] …
+        - [ ] …
+    validations:
+      required: false
+
+  - type: textarea
+    id: non_goals
+    attributes:
+      label: Non-goals (optional)
+      description: What is explicitly out of scope?
+      placeholder: |
+        - …
+    validations:
+      required: false
+
+  - type: dropdown
+    id: priority
+    attributes:
+      label: Priority (optional)
+      description: Best guess is fine; maintainers may adjust.
+      options:
+        - P0
+        - P1
+        - P2
+        - P3
+    validations:
+      required: false
+
+  - type: textarea
+    id: notes
+    attributes:
+      label: Additional context (optional)
+      description: Links, mockups, references, related issues.
+    validations:
+      required: false

.github/ISSUE_TEMPLATE/task.yml

@@ -0,0 +1,30 @@
+name: Task / Chore
+description: Internal cleanup, refactor, infra, or small scoped work.
+labels:
+  - "type: task"
+body:
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      placeholder: What are we doing?
+    validations:
+      required: true
+
+  - type: textarea
+    id: scope
+    attributes:
+      label: Scope / checklist
+      placeholder: |
+        - [ ] …
+        - [ ] …
+    validations:
+      required: false
+
+  - type: textarea
+    id: context
+    attributes:
+      label: Context (optional)
+      description: Links to code, issues, or background.
+    validations:
+      required: false

.github/actions/release-actor-guard/action.yml

@@ -18,6 +18,10 @@ inputs:
     description: GitHub App private key used to check team membership (optional; when omitted, guard falls back to repo-admin check)
     required: false
     default: ""
+  trusted_actors:
+    description: "Comma-separated list of explicitly trusted actors (e.g. a release bot) that can bypass team membership checks"
+    required: false
+    default: ""
 
 runs:
   using: composite
@@ -65,12 +69,25 @@ runs:
         ACTOR: ${{ steps.params.outputs.actor }}
         ORG: ${{ steps.params.outputs.org }}
         TEAM_SLUG: ${{ steps.params.outputs.team_slug }}
+        INPUT_TRUSTED_ACTORS: ${{ inputs.trusted_actors }}
         APP_TOKEN: ${{ steps.app_token.outputs.token }}
         REPO: ${{ github.repository }}
         REPO_TOKEN: ${{ github.token }}
       run: |
         set -euo pipefail
 
+        trusted_csv="${INPUT_TRUSTED_ACTORS:-}"
+        if [ -n "${trusted_csv}" ]; then
+          IFS=',' read -r -a trusted <<< "${trusted_csv}"
+          for raw in "${trusted[@]}"; do
+            actor="$(echo "${raw}" | xargs)"
+            if [ -n "${actor}" ] && [ "${actor}" = "${ACTOR}" ]; then
+              echo "Actor '${ACTOR}' is explicitly trusted; allowing release workflow."
+              exit 0
+            fi
+          done
+        fi
+
         fallback_repo_admin() {
           if [ -z "${REPO_TOKEN:-}" ]; then
             echo "Missing repo token for release actor guard fallback." >&2
@@ -81,7 +98,8 @@ runs:
             exit 1
           fi
 
-          endpoint="https://api.github.com/repos/${REPO}/collaborators/${ACTOR}/permission"
+          actor_enc="$(jq -nr --arg v "${ACTOR}" '$v|@uri')"
+          endpoint="https://api.github.com/repos/${REPO}/collaborators/${actor_enc}/permission"
           resp_file="$(mktemp)"
           status="$(curl -sS \
             --connect-timeout 10 \
@@ -116,7 +134,8 @@ runs:
           exit 0
         fi
 
-        endpoint="https://api.github.com/orgs/${ORG}/teams/${TEAM_SLUG}/memberships/${ACTOR}"
+        actor_enc="$(jq -nr --arg v "${ACTOR}" '$v|@uri')"
+        endpoint="https://api.github.com/orgs/${ORG}/teams/${TEAM_SLUG}/memberships/${actor_enc}"
         resp_file="$(mktemp)"
         status="$(curl -sS \
           --connect-timeout 10 \