API routes have no Cache-Control headers. Every request hits the server even for infrequently-changing data.\n\nAdd Cache-Control: public, max-age=60 to /api/health. Cache-Control: public, max-age=30 to /api/metrics. Cache-Control: no-store to all auth routes.\n\nAcceptance Criteria: A second request to /api/health within 60 seconds is served from CDN cache.\n\nFiles: app/api/health/route.ts (Modify), app/api/metrics/route.ts (Modify), auth routes (Modify)
API routes have no Cache-Control headers. Every request hits the server even for infrequently-changing data.\n\nAdd Cache-Control: public, max-age=60 to /api/health. Cache-Control: public, max-age=30 to /api/metrics. Cache-Control: no-store to all auth routes.\n\nAcceptance Criteria: A second request to /api/health within 60 seconds is served from CDN cache.\n\nFiles: app/api/health/route.ts (Modify), app/api/metrics/route.ts (Modify), auth routes (Modify)